Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Debian Number Of NVD 8838 CRITICAL 973 HIGH 3883 MEDIUM 3639 LOW 343
URL https://www.debian.org/
Explanation It will be supported for about 5 years after release, including the LTS period.
After 5 years, you will need to use a company that provides paid support or update to a newer version.
Tag
  • Linux

Add Information URL
No Type Name URL
1 https://www.debian.org/releases/index.en.html
2 https://wiki.debian.org/LTS
3 https://www.debian.org/lts/security/
4 https://wiki.debian.org/DebianReleases
5 https://wiki.debian.org/LTS/Extended
6 https://www.debian.org/security/

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
131 Debian 12 12.7 Aug. 31, 2024 Jan. 1, 2023 7 149 115 10
132 Debian 11 11.11 Aug. 31, 2024 Aug. 14, 2021 124 641 478 23
133 Debian 10 10.13 Sept. 10, 2022 July 6, 2019 Aug. 31, 2022 326 1404 1210 111
134 Debian 9 9.13 July 18, 2020 June 17, 2017 June 30, 2022 569 1739 1553 134
135 Debian 8 8.0 April 25, 2015 June 17, 2018 June 30, 2020 498 1437 1431 106
136 Debian 7 7.1 May 4, 2013 April 25, 2016 May 31, 2018 112 494 587 62
137 Debian 5 5.0.9 Feb. 14, 2009 Feb. 6, 2012 5 70 85 25
138 Debian 4 4.0 April 8, 2007 Feb. 15, 2010 5 92 72 10
139 Debian 3 3.0.23 July 19, 2002 March 31, 2008 7 86 74 24
140 Debian 2 2.5.3-3 July 24, 1998 June 30, 2003 0 48 27 15
141 Debian 1 1.3.1 May 17, 1996 Jan. 1, 2000 365 1656 1388 115
142 Debian 0 0.93 Jan. 1, 1900 Jan. 1, 2000 0 8 1 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
131 7.8
-
HIGH
Local
Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclosur… NVD-CWE-noinfo
CVE-2023-23583 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
2024-11-21 16:46
2023-11-15
Show GitHub Exploit DB Packet Storm
132 9.8
-
CRITICAL
Network
Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer. CWE-416
 Use After Free
CVE-2023-46850 cpe:2.3:o:debian:debian_linux:12.0:* 2024-11-21 17:29
2023-11-11
Show GitHub Exploit DB Packet Storm
133 7.5
-
HIGH
Network
Using the --fragment option in certain configuration setups OpenVPN version 2.6.0 to 2.6.6 allows an attacker to trigger a divide by zero behaviour which could cause an application crash, leading to … CWE-369
 Divide By Zero
CVE-2023-46849 cpe:2.3:o:debian:debian_linux:12.0:* 2024-11-21 17:29
2023-11-11
Show GitHub Exploit DB Packet Storm
134 8.8
-
HIGH
Network
Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CWE-416
 Use After Free
CVE-2023-5996 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
2024-11-21 17:42
2023-11-9
Show GitHub Exploit DB Packet Storm
135 6.1
-
MEDIUM
Network
Roundcube 1.5.x before 1.5.6 and 1.6.x before 1.6.5 allows XSS via a Content-Type or Content-Disposition header (used for attachment preview or download). CWE-79
Cross-site Scripting
CVE-2023-47272 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
cpe:2.3:o:debian:debian_linux:10.0:*
2024-11-21 17:30
2023-11-6
Show GitHub Exploit DB Packet Storm
136 4.3
-
MEDIUM
Network
Incorrect security UI in Picture In Picture in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform domain spoofing via a crafted local HTML page. (Chromium security severity: L… CWE-346
 Origin Validation Error
CVE-2023-5859 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
2024-11-21 17:42
2023-11-2
Show GitHub Exploit DB Packet Storm
137 8.8
-
HIGH
Network
Use after free in Side Panel in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a cra… CWE-416
 Use After Free
CVE-2023-5856 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
2024-11-21 17:42
2023-11-2
Show GitHub Exploit DB Packet Storm
138 6.1
-
MEDIUM
Network
Inappropriate implementation in Payments in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to bypass XSS preventions via a malicious file. (Chromium security severity: High) CWE-79
Cross-site Scripting
CVE-2023-5480 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
2024-11-21 17:41
2023-11-2
Show GitHub Exploit DB Packet Storm
139 4.3
-
MEDIUM
Network
Inappropriate implementation in WebApp Provider in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Low) CWE-346
 Origin Validation Error
CVE-2023-5858 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
2024-11-21 17:42
2023-11-2
Show GitHub Exploit DB Packet Storm
140 8.8
-
HIGH
Network
Inappropriate implementation in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially execute arbitrary code via a malicious file. (Chromium security severity: M… NVD-CWE-noinfo
CVE-2023-5857 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
2024-11-21 17:42
2023-11-2
Show GitHub Exploit DB Packet Storm