High

DATE	CVE	VULNERABILITY TITLE	RISK
2017-06-16	CVE-2017-9735	Information Exposure Through Discrepancy vulnerability in multiple products Jetty through 9.4.x is prone to a timing channel in util/security/Password.java, which makes it easier for remote attackers to obtain access by observing elapsed times before rejection of incorrect passwords. network low complexity eclipse debian oracle CWE-203	7.5
2017-05-23	CVE-2016-9842	The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers. network low complexity zlib opensuse debian canonical oracle redhat apple nodejs	8.8
2017-05-23	CVE-2016-9840	inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic. network low complexity zlib opensuse debian canonical oracle redhat apple nodejs	8.8
2017-05-04	CVE-2017-3730	NULL Pointer Dereference vulnerability in multiple products In OpenSSL 1.1.0 before 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. network low complexity openssl oracle CWE-476	7.5
2017-04-25	CVE-2017-3434	Unspecified vulnerability in Oracle One-To-One Fulfillment 12.1.1/12.1.2/12.1.3 Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite (subcomponent: Audience workbench). network low complexity oracle	7.1
2017-04-25	CVE-2017-3356	Unspecified vulnerability in Oracle Marketing Vulnerability in the Oracle Marketing component of Oracle E-Business Suite (subcomponent: User Interface). network low complexity oracle	7.1
2017-04-25	CVE-2017-3355	Unspecified vulnerability in Oracle Marketing Vulnerability in the Oracle Marketing component of Oracle E-Business Suite (subcomponent: User Interface). network low complexity oracle	7.1
2017-04-25	CVE-2017-3347	Unspecified vulnerability in Oracle Marketing Vulnerability in the Oracle Marketing component of Oracle E-Business Suite (subcomponent: User Interface). network low complexity oracle	7.1
2017-04-25	CVE-2017-3345	Unspecified vulnerability in Oracle Marketing Vulnerability in the Oracle Marketing component of Oracle E-Business Suite (subcomponent: User Interface). network low complexity oracle	7.1
2017-04-25	CVE-2017-3342	Unspecified vulnerability in Oracle Marketing Vulnerability in the Oracle Marketing component of Oracle E-Business Suite (subcomponent: User Interface). network low complexity oracle	7.1