High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-02-27	CVE-2020-6386	Use After Free vulnerability in multiple products Use after free in speech in Google Chrome prior to 80.0.3987.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject redhat debian CWE-416	8.8
2020-02-27	CVE-2020-6384	Use After Free vulnerability in multiple products Use after free in WebAudio in Google Chrome prior to 80.0.3987.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject redhat debian CWE-416	8.8
2020-02-27	CVE-2020-6383	Type Confusion vulnerability in multiple products Type confusion in V8 in Google Chrome prior to 80.0.3987.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject redhat debian CWE-843	8.8
2020-02-26	CVE-2020-9274	Access of Uninitialized Pointer vulnerability in multiple products An issue was discovered in Pure-FTPd 1.0.49. network low complexity pureftpd debian fedoraproject canonical CWE-824	7.5
2020-02-25	CVE-2020-9383	Out-of-bounds Read vulnerability in multiple products An issue was discovered in the Linux kernel 3.16 through 5.5.6. local low complexity linux debian opensuse canonical netapp CWE-125	7.1
2020-02-24	CVE-2020-9369	Resource Exhaustion vulnerability in multiple products Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service (disk consumption from temporary files, and a flood of notifications to listmasters) via a series of requests with malformed parameters. network low complexity sympa fedoraproject debian CWE-400	7.5
2020-02-24	CVE-2019-20044	Improper Check for Dropped Privileges vulnerability in multiple products In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. local low complexity zsh fedoraproject debian apple CWE-273	7.8
2020-02-23	CVE-2020-9355	danfruehauf NetworkManager-ssh before 1.2.11 allows privilege escalation because extra options are mishandled. network low complexity networkmanager-ssh-project debian	7.5
2020-02-22	CVE-2020-8813	OS Command Injection vulnerability in multiple products graph_realtime.php in Cacti 1.2.8 allows remote attackers to execute arbitrary OS commands via shell metacharacters in a cookie, if a guest user has the graph real-time privilege. network low complexity cacti fedoraproject opmantek opensuse debian CWE-78	8.8
2020-02-21	CVE-2012-1093	Link Following vulnerability in Debian Linux and X11-Common The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation. local low complexity debian CWE-59	7.8