Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-02-27	CVE-2020-3862	A denial of service issue was addressed with improved memory handling. network low complexity apple opensuse	6.5
2020-02-27	CVE-2020-7042	Use of Uninitialized Resource vulnerability in multiple products An issue was discovered in openfortivpn 1.11.0 when used with OpenSSL 1.0.2 or later. network low complexity openfortivpn-project fedoraproject opensuse CWE-908	5.3
2020-02-27	CVE-2020-7041	Improper Certificate Validation vulnerability in multiple products An issue was discovered in openfortivpn 1.11.0 when used with OpenSSL 1.0.2 or later. network low complexity openfortivpn-project fedoraproject opensuse CWE-295	5.3
2020-02-24	CVE-2020-1935	HTTP Request Smuggling vulnerability in multiple products In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99 the HTTP header parsing code used an approach to end-of-line parsing that allowed some invalid HTTP headers to be parsed as valid. network high complexity apache debian canonical opensuse netapp oracle CWE-444	4.8
2020-02-24	CVE-2019-17569	HTTP Request Smuggling vulnerability in multiple products The refactoring present in Apache Tomcat 9.0.28 to 9.0.30, 8.5.48 to 8.5.50 and 7.0.98 to 7.0.99 introduced a regression. network high complexity apache opensuse netapp debian oracle CWE-444	4.8
2020-02-24	CVE-2020-8130	OS Command Injection vulnerability in multiple products There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character `\|`. local high complexity ruby-lang debian canonical fedoraproject opensuse CWE-78	6.4
2020-02-20	CVE-2019-20479	Open Redirect vulnerability in multiple products A flaw was found in mod_auth_openidc before version 2.4.1. network low complexity openidc debian fedoraproject opensuse CWE-601	6.1
2020-02-14	CVE-2020-8992	Excessive Iteration vulnerability in multiple products ext4_protect_reserved_inode in fs/ext4/block_validity.c in the Linux kernel through 5.5.3 allows attackers to cause a denial of service (soft lockup) via a crafted journal size. local low complexity linux canonical opensuse netapp CWE-834	5.5
2020-02-11	CVE-2020-1711	Out-of-bounds Write vulnerability in multiple products An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2.12.0 before 4.2.1 handled a response coming from an iSCSI server while checking the status of a Logical Address Block (LBA) in an iscsi_co_block_status() routine. network high complexity qemu redhat debian opensuse CWE-787	6.0
2020-02-07	CVE-2020-1700	Resource Exhaustion vulnerability in multiple products A flaw was found in the way the Ceph RGW Beast front-end handles unexpected disconnects. network low complexity ceph redhat opensuse canonical CWE-400	6.5