Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-06-03	CVE-2020-6495	Incorrect Default Permissions vulnerability in multiple products Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.97 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. network low complexity google debian opensuse CWE-276	6.5
2020-06-03	CVE-2020-6494	Incorrect security UI in payments in Google Chrome on Android prior to 83.0.4103.97 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. network low complexity google debian opensuse	6.5
2020-06-03	CVE-2019-20810	Memory Leak vulnerability in multiple products go7007_snd_init in drivers/media/usb/go7007/snd-go7007.c in the Linux kernel before 5.6 does not call snd_card_free for a failure path, which causes a memory leak, aka CID-9453264ef586. local low complexity linux opensuse canonical CWE-401	5.5
2020-06-01	CVE-2020-12867	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference in sanei_epson_net_read in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, aka GHSL-2020-075. local low complexity sane-project fedoraproject debian opensuse canonical CWE-476	5.5
2020-05-29	CVE-2020-11089	In FreeRDP before 2.1.0, there is an out-of-bound read in irp functions (parallel_process_irp_create, serial_process_irp_create, drive_process_irp_write, printer_process_irp_write, rdpei_recv_pdu, serial_process_irp_write). network low complexity freerdp opensuse debian	5.5
2020-05-29	CVE-2020-11088	In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_NegotiateMessage. network low complexity freerdp opensuse debian	5.4
2020-05-29	CVE-2020-11087	In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_AuthenticateMessage. network low complexity freerdp opensuse debian	5.4
2020-05-29	CVE-2020-11086	In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_ntlm_v2_client_challenge that reads up to 28 bytes out-of-bound to an internal structure. network low complexity freerdp opensuse debian	5.4
2020-05-29	CVE-2020-11039	In FreeRDP less than or equal to 2.0.0, when using a manipulated server with USB redirection enabled (nearly) arbitrary memory can be read and written due to integer overflows in length checks. network low complexity freerdp opensuse debian	6.8
2020-05-29	CVE-2020-11038	In FreeRDP less than or equal to 2.0.0, an Integer Overflow to Buffer Overflow exists. network low complexity freerdp opensuse debian	5.4