Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2019-09-26	CVE-2019-10092	Cross-site Scripting vulnerability in multiple products In Apache HTTP Server 2.4.0-2.4.39, a limited cross-site scripting issue was reported affecting the mod_proxy error page. network low complexity apache opensuse debian redhat fedoraproject canonical netapp oracle CWE-79	6.1
2019-09-25	CVE-2019-13627	Information Exposure Through Discrepancy vulnerability in multiple products It was discovered that there was a ECDSA timing attack in the libgcrypt20 cryptographic library. local high complexity canonical opensuse libgcrypt20-project CWE-203	6.3
2019-09-23	CVE-2019-16713	Memory Leak vulnerability in multiple products ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrated by PingImage in MagickCore/constitute.c. network low complexity imagemagick canonical opensuse debian CWE-401	6.5
2019-09-23	CVE-2019-16712	Memory Leak vulnerability in multiple products ImageMagick 7.0.8-43 has a memory leak in Huffman2DEncodeImage in coders/ps3.c, as demonstrated by WritePS3Image. network low complexity imagemagick opensuse CWE-401	6.5
2019-09-23	CVE-2019-16711	Memory Leak vulnerability in multiple products ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in coders/ps2.c. network low complexity imagemagick debian opensuse canonical CWE-401	6.5
2019-09-23	CVE-2019-16710	Memory Leak vulnerability in multiple products ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrated by AcquireMagickMemory in MagickCore/memory.c. network low complexity imagemagick debian opensuse canonical CWE-401	6.5
2019-09-23	CVE-2019-16709	Memory Leak vulnerability in multiple products ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrated by XCreateImage. network low complexity imagemagick opensuse canonical CWE-401	6.5
2019-09-23	CVE-2019-16708	Memory Leak vulnerability in multiple products ImageMagick 7.0.8-35 has a memory leak in magick/xwindow.c, related to XCreateImage. network low complexity imagemagick canonical opensuse debian CWE-401	6.5
2019-09-19	CVE-2019-11779	Uncontrolled Recursion vulnerability in multiple products In Eclipse Mosquitto 1.5.0 to 1.6.5 inclusive, if a malicious MQTT client sends a SUBSCRIBE packet containing a topic that consists of approximately 65400 or more '/' characters, i.e. network low complexity eclipse canonical opensuse fedoraproject debian CWE-674	6.5
2019-09-13	CVE-2019-15031	Improper Synchronization vulnerability in multiple products In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via an interrupt. local low complexity linux redhat canonical opensuse CWE-662	4.4