High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-04-17	CVE-2019-9499	Improper Authentication vulnerability in multiple products The implementations of EAP-PWD in wpa_supplicant EAP Peer, when built against a crypto library missing explicit validation on imported elements, do not validate the scalar and element values in EAP-pwd-Commit. network high complexity w1-fi fedoraproject opensuse debian synology freebsd CWE-287	8.1
2019-04-17	CVE-2019-9498	Improper Authentication vulnerability in multiple products The implementations of EAP-PWD in hostapd EAP Server, when built against a crypto library missing explicit validation on imported elements, do not validate the scalar and element values in EAP-pwd-Commit. network high complexity w1-fi fedoraproject opensuse debian synology freebsd CWE-287	8.1
2019-04-08	CVE-2019-11008	Out-of-bounds Write vulnerability in multiple products In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer overflow in the function WriteXWDImage of coders/xwd.c, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file. network low complexity graphicsmagick opensuse debian canonical CWE-787	8.8
2019-04-08	CVE-2019-11007	Out-of-bounds Read vulnerability in multiple products In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap. network low complexity graphicsmagick opensuse debian canonical CWE-125	8.1
2019-03-21	CVE-2019-9896	Uncontrolled Search Path Element vulnerability in multiple products In PuTTY versions before 0.71 on Windows, local attackers could hijack the application by putting a malicious help file in the same directory as the executable. local low complexity putty opensuse CWE-427	7.8
2019-03-14	CVE-2019-9779	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. network low complexity gnu opensuse CWE-476	7.5
2019-03-14	CVE-2019-9778	Out-of-bounds Read vulnerability in multiple products An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. network low complexity gnu opensuse CWE-125	7.5
2019-03-14	CVE-2019-9777	Out-of-bounds Read vulnerability in multiple products An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. network low complexity gnu opensuse CWE-125	7.5
2019-03-14	CVE-2019-9776	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. network low complexity gnu opensuse CWE-476	7.5
2019-03-14	CVE-2019-9773	Out-of-bounds Write vulnerability in multiple products An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. network low complexity gnu opensuse CWE-787	7.5