High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-02-19	CVE-2019-5758	Out-of-bounds Write vulnerability in multiple products Incorrect object lifecycle management in Blink in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian redhat fedoraproject CWE-787	8.8
2019-02-19	CVE-2019-5757	Incorrect Type Conversion or Cast vulnerability in multiple products An incorrect object type assumption in SVG in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. network low complexity google debian redhat fedoraproject CWE-704	8.8
2019-02-19	CVE-2019-5756	Use After Free vulnerability in multiple products Inappropriate memory management when caching in PDFium in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. network low complexity google debian redhat fedoraproject CWE-416	8.8
2019-02-19	CVE-2019-5755	Numeric Errors vulnerability in multiple products Incorrect handling of negative zero in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. network low complexity google debian redhat fedoraproject CWE-189	8.1
2019-02-17	CVE-2019-8383	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An issue was discovered in AdvanceCOMP through 2.1. local low complexity advancemame debian fedoraproject redhat CWE-119	7.8
2019-02-17	CVE-2019-8379	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in AdvanceCOMP through 2.1. local low complexity advancemame debian fedoraproject redhat CWE-476	7.8
2019-02-15	CVE-2019-6974	Use After Free vulnerability in multiple products In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race condition, leading to a use-after-free. network high complexity linux debian canonical f5 redhat CWE-416	8.1
2019-02-09	CVE-2019-7659	Out-of-bounds Write vulnerability in multiple products Genivia gSOAP 2.7.x and 2.8.x before 2.8.75 allows attackers to cause a denial of service (application abort) or possibly have unspecified other impact if a server application is built with the -DWITH_COOKIES flag. network high complexity genivia debian CWE-787	8.1
2019-02-09	CVE-2019-7653	Uncontrolled Search Path Element vulnerability in multiple products The Debian python-rdflib-tools 4.2.2-1 package for RDFLib 4.2.2 has CLI tools that can load Python modules from the current working directory, allowing code injection, because "python -m" looks in this directory, as demonstrated by rdf2dot. network low complexity rdflib-project debian canonical CWE-427	7.5
2019-02-08	CVE-2019-7638	Out-of-bounds Read vulnerability in multiple products SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Map1toN in video/SDL_pixels.c. network low complexity libsdl debian opensuse fedoraproject canonical CWE-125	8.8