debian

10,149 tracked vulnerabilities.

CVE-2022-0351 HIGH
vim < 8.2 - Memory Corruption via Buffer Underflow
Jan 25, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-23035 MEDIUM
Xen >=4.6.0 - Use-After-Free in Passed-Through Device IRQ Cleanup
Jan 25, 2022
CVSS 4.6
EPSS 0.00
CVE-2022-23034 MEDIUM
Xen 3.2.0-4.12.x - Denial of Service via Grant Mapping Reference Count Underflow
Jan 25, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-23033 HIGH
Xen >=4.12.0 - Improper Resource Shutdown or Release in p2m Mapping Removal
Jan 25, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-23852 CRITICAL
libexpat < 2.4.4 - Integer Overflow in XML_GetBuffer
Jan 24, 2022
CVSS 9.8
EPSS 0.05
CVE-2022-23837 HIGH
Sidekiq < 5.2.10 and >=6.0.0 <6.4.0 - Denial of Service via Unlimited Stats Request
Jan 21, 2022
CVSS 7.5
EPSS 0.05
CVE-2022-0319 MEDIUM
vim < 8.2.4154 - Out-of-bounds Read
Jan 21, 2022
CVSS 5.5
EPSS 0.01
CVE-2022-0318 CRITICAL
vim < 8.2.4151 - Heap-based Buffer Overflow
Jan 21, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-21704 MEDIUM
log4js < 6.4.0 - Incorrect Default Permissions in Log File Creation
Jan 19, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-21699 HIGH
IPython < 5.10.0 - Arbitrary Code Execution via Cross-User Temporary File Mismanagement
Jan 19, 2022
CVSS 8.2
EPSS 0.01
CVE-2022-23221 CRITICAL
H2 Console <2.1.210 - RCE
Jan 19, 2022
CVSS 9.8
EPSS 0.65
CVE-2022-21366 MEDIUM
Oracle GraalVM 20.3.4, 21.3.0 and Oracle JDK/JRE 11.0.13, 17.0.1 - Unauthenticated Partial Denial of Service in ImageIO
Jan 19, 2022
CVSS 5.3
EPSS 0.03
CVE-2022-21365 MEDIUM
Oracle GraalVM Enterprise Edition 20.3.4 and 21.3.0 - Unauthenticated Partial Denial of Service via ImageIO
Jan 19, 2022
CVSS 5.3
EPSS 0.03
CVE-2022-21360 MEDIUM
Oracle GraalVM Enterprise Edition 20.3.4 and 21.3.0 - Unauthenticated Partial Denial of Service via ImageIO
Jan 19, 2022
CVSS 5.3
EPSS 0.03
CVE-2022-21349 MEDIUM
Oracle GraalVM Enterprise Edition 20.3.4 and 21.3.0 - Unauthenticated Partial Denial of Service in 2D Component
Jan 19, 2022
CVSS 5.3
EPSS 0.03
CVE-2022-21341 MEDIUM
Oracle GraalVM Enterprise Edition 20.3.4 and 21.3.0 - Unauthenticated Partial Denial of Service via Serialization
Jan 19, 2022
CVSS 5.3
EPSS 0.04
CVE-2022-21340 MEDIUM
Oracle Openjdk < 11.70.1 - Denial of Service
Jan 19, 2022
CVSS 5.3
EPSS 0.08
CVE-2022-21305 MEDIUM
Oracle GraalVM and JDK - Unauthenticated Data Manipulation via Hotspot Component
Jan 19, 2022
CVSS 5.3
EPSS 0.03
CVE-2022-21299 MEDIUM
Oracle GraalVM 7u321, 8u311, 11.0.13, 17.0.1, 20.3.4, 21.3.0 - Unauthenticated Partial Denial of Service via JAXP
Jan 19, 2022
CVSS 5.3
EPSS 0.03
CVE-2022-21296 MEDIUM
Oracle GraalVM Enterprise Edition 20.3.4 and 21.3.0 - Unauthenticated Unauthorized Data Read via JAXP
Jan 19, 2022
CVSS 5.3
EPSS 0.03
CVE-2022-21294 MEDIUM
Oracle GraalVM 20.3.4, 21.3.0 & Java SE 7u321, 8u311, 11.0.13, 17.0.1 - Partial DoS via Multiple Protocols
Jan 19, 2022
CVSS 5.3
EPSS 0.03
CVE-2022-21293 MEDIUM
Oracle GraalVM and JDK - Unauthenticated Partial Denial of Service via Multiple Protocols
Jan 19, 2022
CVSS 5.3
EPSS 0.08
CVE-2022-21291 MEDIUM
Oracle GraalVM 20.3.4 and 21.3.0 - Unauthenticated Data Manipulation via Hotspot Component
Jan 19, 2022
CVSS 5.3
EPSS 0.03
CVE-2022-21283 MEDIUM
Oracle GraalVM 20.3.4, 21.3.0 & Java SE 11.0.13, 17.0.1 - Partial DoS via Multiple Protocols
Jan 19, 2022
CVSS 5.3
EPSS 0.04
CVE-2022-21282 MEDIUM
Oracle GraalVM Enterprise Edition 20.3.4 and 21.3.0 - Unauthenticated Data Exposure via JAXP
Jan 19, 2022
CVSS 5.3
EPSS 0.03