High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-03-09	CVE-2019-9638	Out-of-bounds Read vulnerability in multiple products An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. network low complexity php debian canonical opensuse netapp redhat CWE-125	7.5
2019-03-09	CVE-2019-9637	Permissions, Privileges, and Access Controls vulnerability in multiple products An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. network low complexity php debian canonical opensuse netapp CWE-264	7.5
2019-03-07	CVE-2019-7175	Memory Leak vulnerability in multiple products In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c. network low complexity imagemagick opensuse debian canonical CWE-401	7.5
2019-03-05	CVE-2018-19639	Unspecified vulnerability in Opensuse Supportutils 3.0.1095.51.1 If supportutils before version 3.1-5.7.1 is run with -v to perform rpm verification and the attacker manages to manipulate the rpm listing (e.g. local low complexity opensuse	7.8
2019-03-05	CVE-2018-19636	Improper Input Validation vulnerability in Opensuse Supportutils 3.0.1095.51.1 Supportutils, before version 3.1-5.7.1, when run with command line argument -A searched the file system for a ndspath binary. local low complexity opensuse CWE-20	7.8
2019-02-22	CVE-2019-9024	Out-of-bounds Read vulnerability in multiple products An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. network low complexity php debian canonical netapp opensuse CWE-125	7.5
2019-02-22	CVE-2019-9003	Use After Free vulnerability in multiple products In the Linux kernel before 4.20.5, attackers can trigger a drivers/char/ipmi/ipmi_msghandler.c use-after-free and OOPS by arranging for certain simultaneous execution of the code, as demonstrated by a "service ipmievd restart" loop. network low complexity linux netapp canonical opensuse CWE-416	7.5
2019-02-21	CVE-2018-20783	Out-of-bounds Read vulnerability in multiple products In PHP before 5.6.39, 7.x before 7.0.33, 7.1.x before 7.1.25, and 7.2.x before 7.2.13, a buffer over-read in PHAR reading functions may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse a .phar file. network low complexity php opensuse CWE-125	7.5
2019-02-21	CVE-2019-8980	Memory Leak vulnerability in multiple products A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows attackers to cause a denial of service (memory consumption) by triggering vfs_read failures. network low complexity linux canonical opensuse debian CWE-401	7.5
2019-02-18	CVE-2019-8912	Use After Free vulnerability in multiple products In the Linux kernel through 4.20.11, af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr. local low complexity linux redhat canonical opensuse CWE-416	7.8