High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-15	CVE-2019-12519	Out-of-bounds Write vulnerability in multiple products An issue was discovered in Squid through 4.7. network low complexity squid-cache debian canonical opensuse CWE-787	7.5
2020-04-15	CVE-2019-12524	Missing Authentication for Critical Function vulnerability in multiple products An issue was discovered in Squid through 4.7. network low complexity squid-cache debian canonical CWE-306	7.5
2020-04-15	CVE-2020-11729	Session Fixation vulnerability in multiple products An issue was discovered in DAViCal Andrew's Web Libraries (AWL) through 0.60. network low complexity davical debian CWE-384	7.5
2020-04-15	CVE-2020-2805	Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). network high complexity oracle netapp debian fedoraproject opensuse canonical	8.3
2020-04-15	CVE-2020-2803	Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). network high complexity oracle netapp debian fedoraproject opensuse canonical	8.3
2020-04-14	CVE-2020-5260	Insufficiently Protected Credentials vulnerability in multiple products Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. network low complexity git git-scm debian canonical fedoraproject opensuse CWE-522	7.5
2020-04-14	CVE-2020-11741	Missing Initialization of Resource vulnerability in multiple products An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (with active profiling) to obtain sensitive information about other guests, cause a denial of service, or possibly gain privileges. local low complexity xen fedoraproject debian opensuse CWE-909	8.8
2020-04-14	CVE-2020-11739	Race Condition vulnerability in multiple products An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service or possibly gain privileges because of missing memory barriers in read-write unlock paths. local high complexity xen fedoraproject debian opensuse CWE-362	7.8
2020-04-13	CVE-2020-6455	Out-of-bounds Read vulnerability in multiple products Out of bounds read in WebSQL in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian fedoraproject opensuse CWE-125	8.8
2020-04-13	CVE-2020-6454	Use After Free vulnerability in multiple products Use after free in extensions in Google Chrome prior to 81.0.4044.92 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. network low complexity google fedoraproject debian opensuse CWE-416	8.8