CVE-2021-30640

>= 7.4.0 and <= 7.7.1

A vulnerability in the JNDI Realm of Apache Tomcat allows an attacker to authenticate using variations of a valid user name and/or

6.5MEDIUM

CVE-2021-25215

>= 7.4.0 and <= 7.7.1

In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Pr

7.5HIGH

CVE-2021-20265

>= 7.4.0 and <= 7.7.1

A flaw was found in the way memory resources were freed in the unix_stream_recvmsg function in the Linux kernel when a signal was

5.5MEDIUM

CVE-2021-27365

>= 7.4.0 and <= 7.7.1

An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constrain

7.8HIGH

CVE-2021-27364

>= 7.4.0 and <= 7.7.1

An issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/scsi_transport_iscsi.c is adversely affected by the abili

7.1HIGH

CVE-2021-3156

>= 7.4.0 and <= 7.7.1

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalatio

7.8HIGH

CVE-2020-29661

>= 7.4.0 and <= 7.7.1

A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-aft

7.8HIGH

CVE-2020-12723

>= 7.4.0 and <= 7.7.1

regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls

7.5HIGH

CVE-2020-10878

>= 7.4.0 and <= 7.7.1

Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular

8.6HIGH

CVE-2020-10543

>= 7.4.0 and <= 7.7.1

Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an i

8.2HIGH

CVE-2016-6796

all versions

A malicious web application running on Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 an

7.5HIGH

CVE-2016-6797

>= 7.4.0 and <= 7.7.1

The ResourceLinkFactory implementation in Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70

7.5HIGH

CVE-2016-6794

>= 7.4.0 and <= 7.7.1

When a SecurityManager is configured, a web application's ability to read system properties should be controlled by the SecurityMa

5.3MEDIUM

CVE-2016-5018

>= 7.4.0 and <= 7.7.1

In Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 a malicious web ap

9.1CRITICAL

CVE-2016-0762

>= 7.4.0 and <= 7.7.1

The Realm implementations in Apache Tomcat versions 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and

5.9MEDIUM