High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-06-27	CVE-2019-5813	Use After Free vulnerability in multiple products Use after free in V8 in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google opensuse debian fedoraproject CWE-416	8.8
2019-06-27	CVE-2019-5811	Incorrect handling of CORS in ServiceWorker in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass same origin policy via a crafted HTML page. network low complexity google opensuse debian fedoraproject	8.8
2019-06-27	CVE-2019-5809	Use After Free vulnerability in multiple products Use after free in file chooser in Google Chrome prior to 74.0.3729.108 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. network low complexity google opensuse debian fedoraproject CWE-416	8.8
2019-06-27	CVE-2019-5808	Use After Free vulnerability in multiple products Use after free in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google opensuse debian fedoraproject CWE-416	8.8
2019-06-27	CVE-2019-5807	Out-of-bounds Write vulnerability in multiple products Object lifetime issue in V8 in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google opensuse debian fedoraproject CWE-787	8.8
2019-06-27	CVE-2019-5806	Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in ANGLE in Google Chrome on Windows prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google opensuse debian fedoraproject CWE-190	8.8
2019-06-26	CVE-2019-12979	Improper Initialization vulnerability in multiple products ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c. local low complexity imagemagick debian canonical opensuse CWE-665	7.8
2019-06-26	CVE-2018-20847	Integer Overflow or Wraparound vulnerability in multiple products An improper computation of p_tx0, p_tx1, p_ty0 and p_ty1 in the function opj_get_encoding_parameters in openjp2/pi.c in OpenJPEG through 2.3.0 can lead to an integer overflow. network low complexity uclouvain debian CWE-190	8.8
2019-06-26	CVE-2019-11272	Insufficiently Protected Credentials vulnerability in multiple products Spring Security, versions 4.2.x up to 4.2.12, and older unsupported versions support plain text passwords using PlaintextPasswordEncoder. network low complexity vmware debian CWE-522	7.3
2019-06-25	CVE-2019-12817	Out-of-bounds Write vulnerability in multiple products arch/powerpc/mm/mmu_context_book3s64.c in the Linux kernel before 5.1.15 for powerpc has a bug where unrelated processes may be able to read/write to one another's virtual memory under certain conditions via an mmap above 512 TB. local high complexity canonical linux fedoraproject debian opensuse redhat CWE-787	7.0