High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-21	CVE-2020-1967	NULL Pointer Dereference vulnerability in multiple products Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS extension. network low complexity openssl debian freebsd fedoraproject oracle netapp broadcom opensuse jdedwards tenable CWE-476	7.5
2020-04-17	CVE-2020-11793	Use After Free vulnerability in multiple products A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash). network low complexity wpewebkit webkitgtk canonical fedoraproject opensuse CWE-416	8.8
2020-04-17	CVE-2020-11868	Origin Validation Error vulnerability in multiple products ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissions are rescheduled even when a packet lacks a valid origin timestamp. network low complexity ntp redhat netapp debian opensuse CWE-346	7.5
2020-04-15	CVE-2020-2959	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). network low complexity oracle opensuse	8.6
2020-04-15	CVE-2020-2958	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local high complexity oracle opensuse	7.5
2020-04-15	CVE-2020-2929	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local low complexity oracle opensuse	7.8
2020-04-15	CVE-2020-2914	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local high complexity oracle opensuse	7.0
2020-04-15	CVE-2020-2913	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local high complexity oracle opensuse	7.0
2020-04-15	CVE-2020-2911	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local high complexity oracle opensuse	7.5
2020-04-15	CVE-2020-2908	Incorrect Conversion between Numeric Types vulnerability in multiple products Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local low complexity oracle opensuse CWE-681	8.2