CVE-2022-22965

all versions

A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. Th

9.8CRITICAL

CVE-2022-22963

all versions

In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for

9.8CRITICAL

CVE-2022-1154

all versions

Use after free in utf_ptr2char in GitHub repository vim/vim prior to 8.2.4646.

7.8HIGH

CVE-2022-0322

all versions

A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP network protocol in the Linux kern

5.5MEDIUM

CVE-2021-4203

all versions

A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen

6.8MEDIUM

CVE-2022-0002

all versions

Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potential

6.5MEDIUM

CVE-2022-0001

all versions

Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to

6.5MEDIUM

CVE-2021-3737

all versions

A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who

7.5HIGH

CVE-2021-3744

all versions

A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allo

5.5MEDIUM

CVE-2021-3743

all versions

An out-of-bounds (OOB) memory read flaw was found in the Qualcomm IPC router protocol in the Linux kernel. A missing sanity check

7.1HIGH

CVE-2022-22947

all versions

In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gate

10.0CRITICAL

CVE-2021-4002

all versions

A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some regions of memory twice us

4.4MEDIUM

CVE-2021-3772

all versions

A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks

6.5MEDIUM

CVE-2022-25636

all versions

net/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.6.10 allows local users to gain privileges because of a heap out-o

7.8HIGH

CVE-2021-20322

all versions

A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was fo

7.4HIGH

CVE-2021-3773

all versions

A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in t

9.8CRITICAL

CVE-2021-3752

all versions

A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and discon

7.1HIGH

CVE-2022-0286

all versions

A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead to local denial of service.

5.5MEDIUM

CVE-2021-4083

all versions

A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way u

7.0HIGH

CVE-2021-45486

all versions

In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is v

3.5LOW

CVE-2021-45485

all versions

In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain us

7.5HIGH

CVE-2021-43818

all versions

lxml is a library for processing XML and HTML in the Python language. Prior to version 4.6.5, the HTML Cleaner in lxml.html lets c

8.2HIGH

CVE-2021-43976

all versions

In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can con

4.6MEDIUM

CVE-2021-43389

all versions

An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr func

5.5MEDIUM

CVE-2020-27820

all versions

A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose() handler could happen if removing devic

4.7MEDIUM

CVE-2021-42739

all versions

The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c a

6.7MEDIUM

CVE-2021-21781

all versions

An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel v5.4.66 and v5.4.54. The latest ve

3.3LOW

CVE-2021-37159

all versions

hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the N

6.4MEDIUM

CVE-2021-3612

all versions

An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in the w

7.8HIGH

CVE-2020-4788

all versions

IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L

4.7MEDIUM

CVE-2020-0404

all versions

In uvc_scan_chain_forward of uvc_driver.c, there is a possible linked list corruption due to an unusual root cause. This could lea

5.5MEDIUM