debian

10,127 tracked vulnerabilities.

CVE-2022-3324 HIGH
vim/vim <9.0.0598 - Buffer Overflow
Sep 27, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-3303 MEDIUM
Linux Kernel < 6.0 - Denial of Service via SNDCTL_DSP_SYNC Ioctl Race Condition
Sep 27, 2022
CVSS 4.7
EPSS 0.00
CVE-2022-3201 MEDIUM
Google Chrome <105.0.5195.125 - CSRF
Sep 26, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-21797 HIGH
joblib < 1.2.0 - Arbitrary Code Execution via Parallel pre_dispatch eval()
Sep 26, 2022
CVSS 7.3
EPSS 0.00
CVE-2022-40188 HIGH
Knot Resolver < 5.5.3 - Denial of Service via Algorithmic Complexity
Sep 23, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-35252 LOW
curl < 7.85.0 - Denial of Service via Cookie Control Code Injection
Sep 23, 2022
CVSS 3.7
EPSS 0.00
CVE-2022-40146 HIGH
Apache Batik 1.14 - Server-Side Request Forgery via Jar URL
Sep 22, 2022
CVSS 7.5
EPSS 0.48
CVE-2022-38648 MEDIUM
Apache XML Graphics Batik 1.14 - SSRF
Sep 22, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-38398 MEDIUM
Apache XML Graphics Batik <1.14 - SSRF
Sep 22, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-1941 HIGH
ProtocolBuffers <3.16.1-4.21.5 - DoS
Sep 22, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-3256 HIGH
vim < 9.0.0530 - Use-After-Free
Sep 22, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-38178 HIGH
BIND >=9.9.12 <9.9.13 - Denial of Service via Malformed EdDSA Signature
Sep 21, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-38177 HIGH
BIND >=9.8.4 <9.16.32 - Use-After-Free via Malformed ECDSA Signature
Sep 21, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-2795 MEDIUM
DNS Resolver - DoS
Sep 21, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-41222 HIGH
Linux kernel <5.13.3 - Use After Free
Sep 21, 2022
CVSS 7.0
EPSS 0.00
CVE-2022-41218 MEDIUM
Linux kernel <5.19.10 - Use After Free
Sep 21, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-32886 HIGH
Safari < 16.0 - Out-of-bounds Write via Malicious Web Content
Sep 20, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-39958 HIGH
OWASP ModSecurity Core Rule Set 3.0.0-3.2.1 and 3.3.2 - Response Body Exfiltration via HTTP Range Header Bypass
Sep 20, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-39957 HIGH
OWASP ModSecurity Core Rule Set - Auth Bypass
Sep 20, 2022
CVSS 7.3
EPSS 0.01
CVE-2022-39956 HIGH
OWASP ModSecurity Core Rule Set 3.0.0-3.2.1 & 3.3.2 - Bypass via Character Encoding in MIME Headers
Sep 20, 2022
CVSS 7.3
EPSS 0.00
CVE-2022-39955 HIGH
OWASP ModSecurity Core Rule Set 3.0.0-3.2.1 and 3.3.2 - Rule Bypass via Multiple Charset Content-Type Header
Sep 20, 2022
CVSS 7.3
EPSS 0.01
CVE-2022-37032 CRITICAL
FRRouting < 8.4 - Out-of-bounds Read in BGP Capability Message Parser
Sep 19, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-28203 HIGH
MediaWiki < 1.35.6, 1.36.x < 1.36.4, 1.37.x < 1.37.2 - Denial of Service via Special:NewFiles Query
Sep 19, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-28201 MEDIUM
MediaWiki <1.35.6-1.37.2 - Info Disclosure
Sep 19, 2022
CVSS 4.4
EPSS 0.00
CVE-2022-3235 HIGH
vim < 9.0.0490 - Use-After-Free
Sep 18, 2022
CVSS 7.8
EPSS 0.00
Products
debian_linux 9,979 advanced_package_tool 21 dpkg 14 shadow 8 lintian 6 apt 5 devscripts 3 horde 3 reportbug 3 apt-cacher 2 aptlinex 2 cifs-utils 2 dpkg-dev 2 fsp 2 horde_groupware 2 mime-support 2 netkit 2 python-apt 2 python-dns 2 qpopper 2 xsabre 2 yubiserver 2 FreedomBox 1 adequate 1 amaya 1 apache 1 apache2 1 apt-listchanges 1 apt-setup 1 axiom 1
Quick Filters
Critical CVEs With Exploits In CISA KEV