Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-15	CVE-2020-2762	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). network low complexity oracle fedoraproject netapp canonical	4.9
2020-04-15	CVE-2020-2761	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). network low complexity oracle fedoraproject netapp	4.9
2020-04-15	CVE-2020-2760	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). network low complexity oracle opensuse fedoraproject netapp canonical mariadb	5.5
2020-04-15	CVE-2020-2759	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). network low complexity oracle fedoraproject canonical netapp	4.9
2020-04-15	CVE-2020-2752	Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). network high complexity oracle mariadb fedoraproject opensuse netapp	5.3
2020-04-13	CVE-2020-1730	NULL Pointer Dereference vulnerability in multiple products A flaw was found in libssh versions before 0.8.9 and before 0.9.4 in the way it handled AES-CTR (or DES ciphers if enabled) ciphers. network low complexity libssh canonical netapp redhat fedoraproject oracle CWE-476	5.3
2020-04-10	CVE-2020-8832	Information Exposure vulnerability in multiple products The fix for the Linux kernel in Ubuntu 18.04 LTS for CVE-2019-14615 ("The Linux kernel did not properly clear data structures on context switches for certain Intel graphics processors.") was discovered to be incomplete, meaning that in versions of the kernel before 4.15.0-91.92, an attacker could use this vulnerability to expose sensitive information. local low complexity canonical netapp CWE-200	5.5
2020-04-08	CVE-2019-20636	Out-of-bounds Write vulnerability in multiple products In the Linux kernel before 5.4.12, drivers/input/input.c has out-of-bounds writes via a crafted keycode table, as demonstrated by input_set_keycode, aka CID-cb222aed03d7. local low complexity linux netapp CWE-787	6.7
2020-04-02	CVE-2020-1927	Open Redirect vulnerability in multiple products In Apache HTTP Server 2.4.0 to 2.4.41, redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an an unexpected URL within the request URL. network low complexity apache fedoraproject debian canonical opensuse netapp broadcom oracle CWE-601	6.1
2020-04-01	CVE-2020-1954	Apache CXF has the ability to integrate with JMX by registering an InstrumentationManager extension with the CXF bus. high complexity apache oracle netapp	5.3