Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-06-22	CVE-2020-4030	In FreeRDP before version 2.1.2, there is an out of bounds read in TrioParse. network low complexity freerdp fedoraproject opensuse canonical debian	6.5
2020-06-22	CVE-2020-11099	In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_license_packet. network low complexity freerdp opensuse fedoraproject canonical debian	6.5
2020-06-22	CVE-2020-11098	In FreeRDP before version 2.1.2, there is an out-of-bound read in glyph_cache_put. network low complexity freerdp fedoraproject opensuse canonical debian	6.5
2020-06-22	CVE-2020-11097	In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. network low complexity freerdp fedoraproject opensuse canonical debian	5.4
2020-06-22	CVE-2020-11096	In FreeRDP before version 2.1.2, there is a global OOB read in update_read_cache_bitmap_v3_order. network low complexity freerdp fedoraproject opensuse canonical debian	6.5
2020-06-22	CVE-2020-11095	In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. network low complexity freerdp fedoraproject opensuse canonical debian	5.4
2020-06-21	CVE-2020-14954	Injection vulnerability in multiple products Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. network high complexity mutt debian neomutt fedoraproject canonical opensuse CWE-74	5.9
2020-06-18	CVE-2020-13882	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products CISOfy Lynis before 3.0.0 has Incorrect Access Control because of a TOCTOU race condition. local high complexity cisofy fedoraproject CWE-367	4.2
2020-06-18	CVE-2020-14422	Use of Insufficiently Random Values vulnerability in multiple products Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which might allow a remote attacker to cause a denial of service if an application is affected by the performance of a dictionary containing IPv4Interface or IPv6Interface objects, and this attacker can cause many dictionary entries to be created. network high complexity opensuse python fedoraproject oracle CWE-330	5.9
2020-06-18	CVE-2020-3350	Race Condition vulnerability in multiple products A vulnerability in the endpoint software of Cisco AMP for Endpoints and Clam AntiVirus could allow an authenticated, local attacker to cause the running software to delete arbitrary files on the system. local high complexity cisco fedoraproject debian canonical CWE-362	6.3