High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-07-16	CVE-2019-13115	Integer Overflow or Wraparound vulnerability in multiple products In libssh2 before 1.9.0, kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c has an integer overflow that could lead to an out-of-bounds read in the way packets are read from the server. network low complexity libssh2 debian fedoraproject netapp f5 CWE-190	8.1
2019-07-16	CVE-2019-13616	Out-of-bounds Read vulnerability in multiple products SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c. network low complexity libsdl debian opensuse fedoraproject canonical redhat CWE-125	8.1
2019-07-16	CVE-2019-1010057	Out-of-bounds Write vulnerability in multiple products nfdump 1.6.16 and earlier is affected by: Buffer Overflow. local low complexity nfdump-project fedoraproject debian CWE-787	7.8
2019-07-15	CVE-2019-1010006	Integer Overflow or Wraparound vulnerability in multiple products Evince 3.26.0 is affected by buffer overflow. local low complexity gnome canonical debian opensuse CWE-190	7.8
2019-07-14	CVE-2019-13602	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media player through 3.0.7.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and crash) or possibly have unspecified other impact via a crafted .mp4 file. local low complexity videolan debian canonical opensuse CWE-191	7.8
2019-07-12	CVE-2019-13574	OS Command Injection vulnerability in multiple products In lib/mini_magick/image.rb in MiniMagick before 4.9.4, a fetched remote image filename could cause remote command execution because Image.open input is directly passed to Kernel#open, which accepts a '\|' character followed by a command. local low complexity minimagick-project debian CWE-78	7.8
2019-07-11	CVE-2019-0053	Out-of-bounds Write vulnerability in multiple products Insufficient validation of environment variables in the telnet client supplied in Junos OS can lead to stack-based buffer overflows, which can be exploited to bypass veriexec restrictions on Junos OS. local low complexity juniper debian CWE-787	7.8
2019-07-11	CVE-2019-12527	Out-of-bounds Write vulnerability in multiple products An issue was discovered in Squid 4.0.23 through 4.7. network low complexity squid-cache fedoraproject debian canonical redhat CWE-787	8.8
2019-07-11	CVE-2019-10193	Out-of-bounds Write vulnerability in multiple products A stack-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0.14 and 5.x before 5.0.4. network low complexity redislabs redhat debian canonical oracle CWE-787	7.2
2019-07-11	CVE-2019-10192	Out-of-bounds Write vulnerability in multiple products A heap-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0.14 and 5.x before 5.0.4. network low complexity redislabs redhat debian canonical oracle CWE-787	7.2