Leap

DATE	CVE	VULNERABILITY TITLE	RISK
2019-03-09	CVE-2019-9640	Out-of-bounds Read vulnerability in multiple products An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. network low complexity php canonical debian opensuse netapp redhat CWE-125	5.0
2019-03-09	CVE-2019-9639	Missing Initialization of Resource vulnerability in multiple products An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. network low complexity php debian canonical opensuse netapp redhat CWE-909	5.0
2019-03-09	CVE-2019-9638	Out-of-bounds Read vulnerability in multiple products An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. network low complexity php debian canonical opensuse netapp redhat CWE-125	5.0
2019-03-09	CVE-2019-9637	Permissions, Privileges, and Access Controls vulnerability in PHP An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. network low complexity php debian canonical opensuse netapp CWE-264	5.0
2019-03-08	CVE-2019-9636	Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc) during NFKC normalization. network low complexity python fedoraproject opensuse debian canonical redhat oracle critical	9.8
2019-03-07	CVE-2019-7175	Memory Leak vulnerability in multiple products In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c. network low complexity imagemagick opensuse debian canonical CWE-401	5.0
2019-03-07	CVE-2018-14498	Out-of-bounds Read vulnerability in multiple products get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit BMP in which one or more of the color indices is out of range for the number of palette entries. network low complexity mozilla libjpeg-turbo fedoraproject debian opensuse CWE-125	6.5
2019-03-05	CVE-2019-9213	NULL Pointer Dereference vulnerability in multiple products In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. local low complexity linux debian redhat opensuse canonical CWE-476	5.5
2019-02-28	CVE-2019-9215	In Live555 before 2019.02.27, malformed headers lead to invalid memory access in the parseAuthorizationHeader function. network low complexity live555 opensuse debian	7.5
2019-02-28	CVE-2019-9209	Off-by-one Error vulnerability in multiple products In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and related dissectors could crash. local low complexity wireshark debian canonical opensuse CWE-193	5.5