Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-05-15	CVE-2020-12888	Improper Handling of Exceptional Conditions vulnerability in multiple products The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled memory space. local high complexity linux fedoraproject opensuse debian canonical netapp CWE-755	5.3
2020-05-15	CVE-2020-11524	Out-of-bounds Write vulnerability in multiple products libfreerdp/codec/interleaved.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an Out-of-bounds Write. network high complexity freerdp canonical opensuse CWE-787	6.6
2020-05-15	CVE-2020-11523	Integer Overflow or Wraparound vulnerability in multiple products libfreerdp/gdi/region.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an Integer Overflow. network high complexity freerdp debian canonical opensuse CWE-190	6.6
2020-05-15	CVE-2020-11522	Out-of-bounds Read vulnerability in multiple products libfreerdp/gdi/gdi.c in FreeRDP > 1.0 through 2.0.0-rc4 has an Out-of-bounds Read. network low complexity freerdp debian canonical opensuse CWE-125	6.5
2020-05-15	CVE-2020-11521	Integer Overflow or Wraparound vulnerability in multiple products libfreerdp/codec/planar.c in FreeRDP version > 1.0 through 2.0.0-rc4 has an Out-of-bounds Write. network high complexity freerdp canonical opensuse debian CWE-190	6.6
2020-05-14	CVE-2020-0093	Out-of-bounds Read vulnerability in multiple products In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. local low complexity google debian canonical libexif-project opensuse CWE-125	5.0
2020-05-14	CVE-2020-1945	Exposure of Resource to Wrong Sphere vulnerability in multiple products Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information. local high complexity apache canonical fedoraproject opensuse oracle CWE-668	6.3
2020-05-13	CVE-2020-8020	A Improper Neutralization of Input During Web Page Generation vulnerability in open-build-service allows remote attackers to store arbitrary JS code to cause XSS. network low complexity opensuse debian	6.1
2020-05-11	CVE-2020-11864	libEMF (aka ECMA-234 Metafile Library) through 1.0.11 allows denial of service (issue 2 of 2). local low complexity libemf-project opensuse fedoraproject	5.5
2020-05-11	CVE-2020-11863	libEMF (aka ECMA-234 Metafile Library) through 1.0.11 allows denial of service (issue 1 of 2). local low complexity libemf-project opensuse fedoraproject	5.5