Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Debian Number Of NVD 8836 CRITICAL 973 HIGH 3882 MEDIUM 3638 LOW 343
URL https://www.debian.org/
Explanation It will be supported for about 5 years after release, including the LTS period.
After 5 years, you will need to use a company that provides paid support or update to a newer version.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://www.debian.org/releases/index.en.html
2 https://wiki.debian.org/LTS
3 https://www.debian.org/lts/security/
4 https://wiki.debian.org/DebianReleases
5 https://wiki.debian.org/LTS/Extended
6 https://www.debian.org/security/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
61 Debian 12 12.7 Aug. 31, 2024 Jan. 1, 2023 7 149 115 10
62 Debian 11 11.11 Aug. 31, 2024 Aug. 14, 2021 124 640 478 23
63 Debian 10 10.13 Sept. 10, 2022 July 6, 2019 Aug. 31, 2022 326 1404 1210 111
64 Debian 9 9.13 July 18, 2020 June 17, 2017 June 30, 2022 569 1739 1553 134
65 Debian 8 8.0 April 25, 2015 June 17, 2018 June 30, 2020 498 1437 1431 106
66 Debian 7 7.1 May 4, 2013 April 25, 2016 May 31, 2018 112 494 587 62
67 Debian 5 5.0.9 Feb. 14, 2009 Feb. 6, 2012 5 70 85 25
68 Debian 4 4.0 April 8, 2007 Feb. 15, 2010 5 92 72 10
69 Debian 3 3.0.23 July 19, 2002 March 31, 2008 7 86 74 24
70 Debian 2 2.5.3-3 July 24, 1998 June 30, 2003 0 48 27 15
71 Debian 1 1.3.1 May 17, 1996 Jan. 1, 2000 365 1655 1387 115
72 Debian 0 0.93 Jan. 1, 1900 Jan. 1, 2000 0 8 1 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
61 8.8
- 		HIGH
Network 		A bug in popup notifications delay calculation could have made it possible for an attacker to trick a user into granting permissions. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, an… NVD-CWE-noinfo
CVE-2024-0750 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:47
2024-01-23 		Show GitHub Exploit DB Packet Storm
62 4.3
- 		MEDIUM
Network 		A phishing site could have repurposed an `about:` dialog to show phishing content with an incorrect origin in the address bar. This vulnerability affects Firefox < 122 and Thunderbird < 115.7. CWE-346
 Origin Validation Error 		CVE-2024-0749 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:47
2024-01-23 		Show GitHub Exploit DB Packet Storm
63 6.5
- 		MEDIUM
Network 		When a parent page loaded a child in an iframe with `unsafe-inline`, the parent Content Security Policy could have overridden the child Content Security Policy. This vulnerability affects Firefox < 1… NVD-CWE-noinfo
CVE-2024-0747 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:47
2024-01-23 		Show GitHub Exploit DB Packet Storm
64 6.5
- 		MEDIUM
Network 		A Linux user opening the print preview dialog could have caused the browser to crash. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7. NVD-CWE-noinfo
CVE-2024-0746 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:47
2024-01-23 		Show GitHub Exploit DB Packet Storm
65 4.3
- 		MEDIUM
Network 		It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an incorrect timestamp used to prevent input after page load. This vulnerabilit… NVD-CWE-noinfo
CVE-2024-0742 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:47
2024-01-23 		Show GitHub Exploit DB Packet Storm
66 6.5
- 		MEDIUM
Network 		An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunder… CWE-787
 Out-of-bounds Write 		CVE-2024-0741 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:47
2024-01-23 		Show GitHub Exploit DB Packet Storm
67 8.1
- 		HIGH
Network 		Pillow through 10.1.0 allows PIL.ImageMath.eval Arbitrary Code Execution via the environment parameter, a different vulnerability than CVE-2022-22817 (which was about the expression parameter). CWE-94
Code Injection 		CVE-2023-50447 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:37
2024-01-20 		Show GitHub Exploit DB Packet Storm
68 9.8
- 		CRITICAL
Network 		A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, bu… CWE-787
 Out-of-bounds Write 		CVE-2023-6816 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:44
2024-01-18 		Show GitHub Exploit DB Packet Storm
69 7.4
- 		HIGH
Network 		Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java S… NVD-CWE-noinfo
CVE-2024-20952 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:53
2024-01-17 		Show GitHub Exploit DB Packet Storm
70 5.9
- 		MEDIUM
Network 		Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Scripting). Supported versions that are affected are Oracle Java … NVD-CWE-noinfo
CVE-2024-20926 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:53
2024-01-17 		Show GitHub Exploit DB Packet Storm