High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-15	CVE-2020-2907	Type Confusion vulnerability in multiple products Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local high complexity oracle opensuse CWE-843	7.5
2020-04-15	CVE-2020-2905	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local low complexity oracle opensuse	8.2
2020-04-15	CVE-2020-2902	Out-of-bounds Write vulnerability in multiple products Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local low complexity oracle opensuse CWE-787	8.8
2020-04-15	CVE-2020-2816	Vulnerability in the Java SE product of Oracle Java SE (component: JSSE). network low complexity oracle netapp canonical debian opensuse	7.5
2020-04-15	CVE-2020-2805	Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). network high complexity oracle netapp debian fedoraproject opensuse canonical	8.3
2020-04-15	CVE-2020-2803	Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). network high complexity oracle netapp debian fedoraproject opensuse canonical	8.3
2020-04-15	CVE-2020-2758	Use After Free vulnerability in multiple products Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local low complexity oracle opensuse CWE-416	8.2
2020-04-15	CVE-2020-2742	Integer Overflow or Wraparound vulnerability in multiple products Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local low complexity oracle opensuse CWE-190	8.2
2020-04-14	CVE-2020-5260	Insufficiently Protected Credentials vulnerability in multiple products Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. network low complexity git git-scm debian canonical fedoraproject opensuse CWE-522	7.5
2020-04-14	CVE-2020-11741	Missing Initialization of Resource vulnerability in multiple products An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (with active profiling) to obtain sensitive information about other guests, cause a denial of service, or possibly gain privileges. local low complexity xen fedoraproject debian opensuse CWE-909	8.8