Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2019-03-25	CVE-2018-16838	Improper Privilege Management vulnerability in multiple products A flaw was found in sssd Group Policy Objects implementation. network low complexity fedoraproject redhat CWE-269	5.4
2019-03-21	CVE-2019-9903	Out-of-bounds Write vulnerability in multiple products PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passing a crafted pdf file to the pdfunite binary. network low complexity freedesktop fedoraproject debian canonical redhat CWE-787	6.5
2019-03-21	CVE-2019-7222	The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak. local low complexity linux fedoraproject opensuse debian canonical netapp redhat	5.5
2019-03-21	CVE-2019-6501	Out-of-bounds Write vulnerability in multiple products In QEMU 3.1, scsi_handle_inquiry_reply in hw/scsi/scsi-generic.c allows out-of-bounds write and read operations. local low complexity qemu fedoraproject CWE-787	5.5
2019-03-21	CVE-2019-6454	Out-of-bounds Write vulnerability in multiple products An issue was discovered in sd-bus in systemd 239. local low complexity systemd-project opensuse netapp debian fedoraproject canonical redhat mcafee CWE-787	5.5
2019-03-21	CVE-2018-19872	Divide By Zero vulnerability in multiple products An issue was discovered in Qt 5.11. local low complexity qt opensuse fedoraproject CWE-369	5.5
2019-03-21	CVE-2018-18849	Out-of-bounds Read vulnerability in multiple products In Qemu 3.0.0, lsi_do_msgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by triggering an invalid msg_len value. local low complexity qemu opensuse fedoraproject canonical CWE-125	5.5
2019-03-13	CVE-2019-9741	CRLF Injection vulnerability in multiple products An issue was discovered in net/http in Go 1.11.5. network low complexity golang debian fedoraproject redhat CWE-93	6.1
2019-03-12	CVE-2019-9705	Allocation of Resources Without Limits or Throttling vulnerability in multiple products Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service (memory consumption) via a large crontab file because an unlimited number of lines is accepted. local low complexity cron-project debian fedoraproject CWE-770	5.5
2019-03-12	CVE-2019-9704	Unchecked Return Value vulnerability in multiple products Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service (daemon crash) via a large crontab file because the calloc return value is not checked. local low complexity cron-project fedoraproject debian CWE-252	5.5