10.14.2

DATE	CVE	VULNERABILITY TITLE	RISK
2019-10-03	CVE-2018-14465	Out-of-bounds Read vulnerability in multiple products The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print(). network low complexity tcpdump redhat debian opensuse fedoraproject f5 apple CWE-125	7.5
2019-10-03	CVE-2018-14464	Out-of-bounds Read vulnerability in multiple products The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs(). network low complexity tcpdump redhat debian opensuse fedoraproject apple CWE-125	7.5
2019-10-03	CVE-2018-14463	Out-of-bounds Read vulnerability in multiple products The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 2, a different vulnerability than CVE-2019-15167. network low complexity tcpdump redhat debian opensuse fedoraproject f5 apple CWE-125	7.5
2019-10-03	CVE-2018-14462	Out-of-bounds Read vulnerability in multiple products The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print(). network low complexity tcpdump redhat debian opensuse fedoraproject f5 apple CWE-125	7.5
2019-10-03	CVE-2018-14461	Out-of-bounds Read vulnerability in multiple products The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print(). network low complexity tcpdump redhat debian opensuse fedoraproject apple CWE-125	7.5
2019-08-09	CVE-2019-11042	Out-of-bounds Read vulnerability in multiple products When PHP EXIF extension is parsing EXIF information from an image, e.g. network low complexity php debian canonical apple opensuse redhat tenable CWE-125	7.1
2019-08-09	CVE-2019-11041	Out-of-bounds Read vulnerability in multiple products When PHP EXIF extension is parsing EXIF information from an image, e.g. network low complexity php debian canonical apple opensuse redhat tenable CWE-125	7.1
2019-07-26	CVE-2019-13565	An issue was discovered in OpenLDAP 2.x before 2.4.48. network low complexity openldap canonical debian opensuse f5 apple oracle	7.5
2019-07-26	CVE-2019-13057	An issue was discovered in the server in OpenLDAP before 2.4.48. network low complexity openldap canonical debian opensuse apple mcafee oracle	4.9
2019-04-03	CVE-2018-20506	Integer Overflow or Wraparound vulnerability in multiple products SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries in a "merge" operation that occurs after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases). network high complexity sqlite apple opensuse CWE-190	8.1