High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-23	CVE-2019-11287	Use of Externally-Controlled Format String vulnerability in multiple products Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. network low complexity pivotal-software vmware fedoraproject redhat debian CWE-134	7.5
2019-11-22	CVE-2019-18610	Missing Authorization vulnerability in multiple products An issue was discovered in manager.c in Sangoma Asterisk through 13.x, 16.x, 17.x and Certified Asterisk 13.21 through 13.21-cert4. network low complexity digium debian CWE-862	8.8
2019-11-22	CVE-2019-18976	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in res_pjsip_t38.c in Sangoma Asterisk through 13.x and Certified Asterisk through 13.21-x. network low complexity digium debian CWE-476	7.5
2019-11-21	CVE-2014-5255	Race Condition vulnerability in multiple products xcfa before 5.0.1 creates temporary files insecurely which could allow local users to launch a symlink attack and overwrite arbitrary files. local high complexity xcfa-project debian CWE-362	7.0
2019-11-21	CVE-2019-19204	Out-of-bounds Read vulnerability in multiple products An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. network low complexity oniguruma-project debian fedoraproject CWE-125	7.5
2019-11-21	CVE-2019-5087	Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools 1.0.7. network low complexity xcftools-project debian CWE-190	8.8
2019-11-21	CVE-2019-5086	Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools, version 1.0.7. network low complexity xcftools-project debian CWE-190	8.8
2019-11-21	CVE-2014-1936	Improper Input Validation vulnerability in multiple products rc before 1.7.1-5 insecurely creates temporary files. network low complexity rc-project debian CWE-20	7.5
2019-11-21	CVE-2012-3543	Improper Input Validation vulnerability in multiple products mono 2.10.x ASP.NET Web Form Hash collision DoS network low complexity mono-project canonical debian CWE-20	7.5
2019-11-21	CVE-2012-2350	Improper Input Validation vulnerability in multiple products pam_shield before 0.9.4: Default configuration does not perform protective action network low complexity pam-shield-project debian CWE-20	7.5