Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-12-18	CVE-2020-35479	Cross-site Scripting vulnerability in multiple products MediaWiki before 1.35.1 allows XSS via BlockLogFormatter.php. network low complexity mediawiki debian fedoraproject CWE-79	6.1
2020-12-18	CVE-2020-35477	Always-Incorrect Control Flow Implementation vulnerability in multiple products MediaWiki before 1.35.1 blocks legitimate attempts to hide log entries in some situations. network low complexity mediawiki debian fedoraproject CWE-670	5.3
2020-12-16	CVE-2020-26259	XStream is a Java library to serialize objects to XML and back again. network high complexity xstream-project debian fedoraproject	6.8
2020-12-15	CVE-2020-29486	Allocation of Resources Without Limits or Throttling vulnerability in multiple products An issue was discovered in Xen through 4.14.x. local low complexity xen debian fedoraproject CWE-770	6.0
2020-12-15	CVE-2020-29485	Memory Leak vulnerability in multiple products An issue was discovered in Xen 4.6 through 4.14.x. local low complexity xen debian fedoraproject CWE-401	5.5
2020-12-15	CVE-2020-29484	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in Xen through 4.14.x. local low complexity xen debian fedoraproject CWE-476	6.0
2020-12-15	CVE-2020-29483	Use After Free vulnerability in multiple products An issue was discovered in Xen through 4.14.x. local low complexity xen debian fedoraproject CWE-416	6.5
2020-12-15	CVE-2020-29482	Untrusted Search Path vulnerability in multiple products An issue was discovered in Xen through 4.14.x. local low complexity xen debian fedoraproject CWE-426	6.0
2020-12-15	CVE-2020-29571	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in Xen through 4.14.x. local low complexity xen debian fedoraproject CWE-476	6.2
2020-12-15	CVE-2020-29570	Allocation of Resources Without Limits or Throttling vulnerability in multiple products An issue was discovered in Xen through 4.14.x. local low complexity xen debian fedoraproject CWE-770	6.2