18.04

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-14	CVE-2020-5260	Insufficiently Protected Credentials vulnerability in multiple products Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. network low complexity git git-scm debian canonical fedoraproject opensuse CWE-522	7.5
2020-04-14	CVE-2020-11765	Off-by-one Error vulnerability in multiple products An issue was discovered in OpenEXR before 2.4.1. local low complexity openexr fedoraproject opensuse debian canonical apple CWE-193	5.5
2020-04-14	CVE-2020-11764	Out-of-bounds Write vulnerability in multiple products An issue was discovered in OpenEXR before 2.4.1. local low complexity openexr fedoraproject canonical opensuse debian apple CWE-787	5.5
2020-04-14	CVE-2020-11763	Out-of-bounds Write vulnerability in multiple products An issue was discovered in OpenEXR before 2.4.1. local low complexity openexr fedoraproject canonical opensuse debian apple CWE-787	5.5
2020-04-14	CVE-2020-11762	Out-of-bounds Write vulnerability in multiple products An issue was discovered in OpenEXR before 2.4.1. local low complexity openexr fedoraproject canonical opensuse debian apple CWE-787	5.5
2020-04-14	CVE-2020-11761	Out-of-bounds Read vulnerability in multiple products An issue was discovered in OpenEXR before 2.4.1. local low complexity openexr fedoraproject canonical debian apple CWE-125	5.5
2020-04-14	CVE-2020-11760	Out-of-bounds Read vulnerability in multiple products An issue was discovered in OpenEXR before 2.4.1. local low complexity openexr fedoraproject canonical opensuse debian apple CWE-125	5.5
2020-04-14	CVE-2020-11759	Integer Overflow or Wraparound vulnerability in multiple products An issue was discovered in OpenEXR before 2.4.1. local low complexity openexr fedoraproject canonical debian apple CWE-190	5.5
2020-04-14	CVE-2020-11758	Out-of-bounds Read vulnerability in multiple products An issue was discovered in OpenEXR before 2.4.1. local low complexity openexr fedoraproject canonical opensuse debian apple CWE-125	5.5
2020-04-13	CVE-2020-1730	NULL Pointer Dereference vulnerability in multiple products A flaw was found in libssh versions before 0.8.9 and before 0.9.4 in the way it handled AES-CTR (or DES ciphers if enabled) ciphers. network low complexity libssh canonical netapp redhat fedoraproject oracle CWE-476	5.3