debian

10,127 tracked vulnerabilities.

CVE-2022-42906 HIGH
powerline-gitstatus < 1.3.2 - Remote Code Execution via Malicious Git Repository Configuration
Oct 13, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-42902 HIGH
Linaro LAVA < 2022.10 - Unauthenticated Remote Code Execution via Improper Input Sanitization in lavatable.py
Oct 13, 2022
CVSS 8.8
EPSS 0.02
CVE-2022-37601 CRITICAL
webpack.js loader-utils <1.4.1 and >=2.0.0 <2.0.3 - Prototype Pollution via parseQuery Function
Oct 12, 2022
CVSS 9.8
EPSS 0.19
CVE-2022-41404 HIGH
ini4j <= 0.5.4 - Denial of Service via BasicProfile fetch() Method
Oct 11, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-3140 MEDIUM
LibreOffice <7.4.1 and <7.3.6 - Macro Execution via Office URI Scheme
Oct 11, 2022
CVSS 6.3
EPSS 0.01
CVE-2022-20422 HIGH
Android - Local Privilege Escalation via Race Condition in emulation_proc_handler
Oct 11, 2022
CVSS 7.0
EPSS 0.00
CVE-2022-20421 HIGH
Android - Use-After-Free in binder_inc_ref_for_node
Oct 11, 2022
CVSS 7.8
EPSS 0.06
CVE-2022-33748 MEDIUM
Xen >= 4.0 - Denial of Service via Lock Order Inversion in Transitive Grant Copy Handling
Oct 11, 2022
CVSS 5.6
EPSS 0.00
CVE-2022-33747 LOW
Xen - Unbounded Memory Consumption via P2M Mapping Manipulation
Oct 11, 2022
CVSS 3.8
EPSS 0.00
CVE-2022-33746 MEDIUM
Xen 4.13.0-4.16.0 - Denial of Service via P2M Pool Freeing
Oct 11, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-37616 CRITICAL
xmldom < 0.8.3 - Prototype Pollution via p Variable in copy Function
Oct 11, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-3435 MEDIUM
Linux Kernel - Out-of-Bounds Read in IPv4 Handler fib_nh_match
Oct 08, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-2929 MEDIUM
ISC DHCP 1.0-4.4.3 and 4.1-ESV-R1-4.1-ESV-R16-P1 - Denial of Service via Oversized FQDN Labels
Oct 07, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-2928 MEDIUM
ISC DHCP 4.4.0-4.4.3 and 4.1-ESV-R1-4.1-ESV-R16-P1 - Denial of Service via Reference Counter Overflow
Oct 07, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-41853 HIGH
HSQLDB <2.7.1 - Remote Code Execution via Untrusted SQL Method Calls
Oct 06, 2022
CVSS 8.0
EPSS 0.70
CVE-2022-42004 HIGH
jackson-databind < 2.13.4 - Resource Exhaustion via Deeply Nested Arrays
Oct 02, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-42003 HIGH
FasterXML jackson-databind < 2.12.7.1 - Resource Exhaustion via Deep Wrapper Array Nesting
Oct 02, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-41850 MEDIUM
Linux kernel <5.19.12 - Use After Free
Sep 30, 2022
CVSS 4.7
EPSS 0.00
CVE-2022-41849 MEDIUM
Linux kernel <5.19.12 - Use After Free
Sep 30, 2022
CVSS 4.2
EPSS 0.00
CVE-2022-3352 HIGH
vim < 9.0.0614 - Use-After-Free
Sep 29, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-31629 MEDIUM
PHP <7.4.31, 8.0.24, 8.1.11 - Info Disclosure
Sep 28, 2022
CVSS 6.5
EPSS 0.15
CVE-2022-31628 LOW
PHP <7.4.31, 8.0.24, 8.1.11 - Use After Free
Sep 28, 2022
CVSS 2.3
EPSS 0.00
CVE-2022-1270 HIGH
GraphicsMagick - Heap Buffer Overflow in MIFF Parser
Sep 28, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-39261 HIGH
Twig < 1.44.7, 2.x < 2.15.3, 3.x < 3.4.3 - Path Traversal via Namespace Bypass
Sep 28, 2022
CVSS 7.5
EPSS 0.10
CVE-2022-32166 MEDIUM
Cloudbase Open vSwitch 0.90.0-2.5.0 - Heap Buffer Over-Read in Flow Minimask Comparison
Sep 28, 2022
CVSS 6.1
EPSS 0.01
Products
debian_linux 9,979 advanced_package_tool 21 dpkg 14 shadow 8 lintian 6 apt 5 devscripts 3 horde 3 reportbug 3 apt-cacher 2 aptlinex 2 cifs-utils 2 dpkg-dev 2 fsp 2 horde_groupware 2 mime-support 2 netkit 2 python-apt 2 python-dns 2 qpopper 2 xsabre 2 yubiserver 2 FreedomBox 1 adequate 1 amaya 1 apache 1 apache2 1 apt-listchanges 1 apt-setup 1 axiom 1
Quick Filters
Critical CVEs With Exploits In CISA KEV