High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-14	CVE-2012-1155	Information Exposure vulnerability in multiple products Moodle has a database activity export permission issue where the export function of the database activity module exports all entries even those from groups the user does not belong to network low complexity moodle fedoraproject redhat debian CWE-200	7.5
2019-11-13	CVE-2010-4661	Unrestricted Upload of File with Dangerous Type vulnerability in multiple products udisks before 1.0.3 allows a local user to load arbitrary Linux kernel modules. local low complexity udisks-project redhat debian opensuse fedoraproject CWE-434	7.8
2019-11-13	CVE-2019-18837	Link Following vulnerability in multiple products An issue was discovered in crun before 0.10.5. network low complexity crun-project fedoraproject CWE-59	8.6
2019-11-08	CVE-2019-10222	Improper Handling of Exceptional Conditions vulnerability in multiple products A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests. network low complexity ceph redhat fedoraproject CWE-755	7.5
2019-11-07	CVE-2019-18804	NULL Pointer Dereference vulnerability in multiple products DjVuLibre 3.5.27 has a NULL pointer dereference in the function DJVU::filter_fv at IW44EncodeCodec.cpp. network low complexity djvulibre-project debian fedoraproject canonical opensuse CWE-476	7.5
2019-11-04	CVE-2013-4251	Improper Privilege Management vulnerability in multiple products The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories. local low complexity scipy fedoraproject redhat debian CWE-269	7.8
2019-11-01	CVE-2013-4751	Improper Input Validation vulnerability in multiple products php-symfony2-Validator has loss of information during serialization network low complexity sensiolabs fedoraproject redhat CWE-20	8.1
2019-10-31	CVE-2019-18423	Off-by-one Error vulnerability in multiple products An issue was discovered in Xen through 4.12.x allowing ARM guest OS users to cause a denial of service via a XENMEM_add_to_physmap hypercall. network low complexity xen debian fedoraproject CWE-193	8.8
2019-10-31	CVE-2019-18422	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products An issue was discovered in Xen through 4.12.x allowing ARM guest OS users to cause a denial of service or gain privileges by leveraging the erroneous enabling of interrupts. network low complexity xen debian fedoraproject CWE-732	8.8
2019-10-31	CVE-2019-18421	Race Condition vulnerability in multiple products An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and demotion operations. network high complexity xen debian fedoraproject opensuse CWE-362	7.5