Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2018-01-18	CVE-2018-2668	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). network low complexity oracle mariadb debian canonical netapp redhat	6.5
2018-01-18	CVE-2018-2665	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). network low complexity oracle mariadb debian canonical netapp redhat	6.5
2018-01-18	CVE-2018-2640	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). network low complexity oracle mariadb debian canonical netapp redhat	6.5
2018-01-18	CVE-2018-2622	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). network low complexity oracle mariadb debian canonical netapp redhat	6.5
2018-01-18	CVE-2018-2612	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). network low complexity oracle mariadb netapp canonical debian	6.5
2018-01-18	CVE-2018-2581	Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). network low complexity oracle redhat netapp	4.7
2018-01-04	CVE-2017-5753	Information Exposure Through Discrepancy vulnerability in multiple products Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. local high complexity intel canonical debian oracle synology opensuse suse arm pepperl-fuchs netapp phoenixcontact siemens vmware CWE-203	5.6
2018-01-04	CVE-2017-5715	Information Exposure Through Discrepancy vulnerability in multiple products Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. local high complexity intel arm canonical netapp siemens debian oracle CWE-203	5.6
2017-12-18	CVE-2017-14583	Improper Input Validation vulnerability in Netapp Clustered Data Ontap 9.0/9.2 NetApp Clustered Data ONTAP versions 9.x prior to 9.1P10 and 9.2P2 are susceptible to a vulnerability which allows an attacker to cause a Denial of Service (DoS) in SMB environments. network low complexity netapp CWE-20	6.5
2017-12-01	CVE-2017-15707	Improper Input Validation vulnerability in multiple products In Apache Struts 2.5 to 2.5.14, the REST Plugin is using an outdated JSON-lib library which is vulnerable and allow perform a DoS attack using malicious request with specially crafted JSON payload. local low complexity apache netapp oracle CWE-20	6.2