High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-08-01	CVE-2018-8034	Improper Certificate Validation vulnerability in multiple products The host name verification when using TLS with the WebSocket client was missing. network low complexity apache debian canonical oracle CWE-295	7.5
2018-07-30	CVE-2018-10903	Improper Input Validation vulnerability in multiple products A flaw was found in python-cryptography versions between >=1.9.0 and <2.3. network low complexity cryptography canonical redhat CWE-20	7.5
2018-07-30	CVE-2017-7518	Improper Handling of Exceptional Conditions vulnerability in multiple products A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack. local low complexity redhat debian canonical linux CWE-755	7.8
2018-07-30	CVE-2016-9597	It was found that Red Hat JBoss Core Services erratum RHSA-2016:2957 for CVE-2016-3705 did not actually include the fix for the issue found in libxml2, making it vulnerable to a Denial of Service attack due to a Stack Overflow. network low complexity canonical xmlsoft debian hp opensuse	7.5
2018-07-29	CVE-2018-14734	Use After Free vulnerability in multiple products drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allows attackers to cause a denial of service (use-after-free). local low complexity linux canonical debian CWE-416	7.8
2018-07-28	CVE-2018-14682	Off-by-one Error vulnerability in multiple products An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. network low complexity cabextract cabextract-project debian canonical redhat CWE-193	8.8
2018-07-28	CVE-2018-14681	Out-of-bounds Write vulnerability in multiple products An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. network low complexity cabextract cabextract-project debian canonical redhat CWE-787	8.8
2018-07-28	CVE-2018-14678	Improper Initialization vulnerability in multiple products An issue was discovered in the Linux kernel through 4.17.11, as used in Xen through 4.11.x. local low complexity linux xen debian canonical CWE-665	7.8
2018-07-27	CVE-2018-1056	Out-of-bounds Read vulnerability in multiple products An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02 handled processing of ZIP files. local low complexity advancemame canonical debian CWE-125	7.8
2018-07-27	CVE-2017-15119	Resource Exhaustion vulnerability in multiple products The Network Block Device (NBD) server in Quick Emulator (QEMU) before 2.11 is vulnerable to a denial of service issue. network low complexity qemu canonical debian redhat CWE-400	8.6