High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-07-15	CVE-2020-14565	Unspecified vulnerability in Oracle Unified Directory 11.1.2.3.0/12.2.1.3.0/12.2.1.4.0 Vulnerability in the Oracle Unified Directory product of Oracle Fusion Middleware (component: Security). network low complexity oracle	8.1
2020-07-15	CVE-2020-14561	Unspecified vulnerability in Oracle Food and Beverage Applications 9.1.0 Vulnerability in the Oracle Hospitality Reporting and Analytics product of Oracle Food and Beverage Applications (component: Installation). local low complexity oracle	7.3
2020-07-15	CVE-2020-14543	Unspecified vulnerability in Oracle Hospitality Reporting and Analytics 9.1 Vulnerability in the Oracle Hospitality Reporting and Analytics product of Oracle Food and Beverage Applications (component: Installation). local low complexity oracle	7.3
2020-07-15	CVE-2020-14536	Unspecified vulnerability in Oracle products Vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager product of Oracle Commerce (component: Workbench). network high complexity oracle	7.4
2020-07-15	CVE-2020-14535	Unspecified vulnerability in Oracle Commerce Service Center Vulnerability in the Oracle Commerce Service Center product of Oracle Commerce (component: Commerce Service Center). network high complexity oracle	7.4
2020-07-15	CVE-2020-14534	Unspecified vulnerability in Oracle Applications Framework 12.2.9 Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite (component: Popups). network low complexity oracle	8.2
2020-07-15	CVE-2020-8203	Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20. network high complexity lodash oracle	7.4
2020-07-14	CVE-2020-13935	Infinite Loop vulnerability in multiple products The payload length in a WebSocket frame was not correctly validated in Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M1 to 9.0.36, 8.5.0 to 8.5.56 and 7.0.27 to 7.0.104. network low complexity apache debian netapp opensuse canonical mcafee oracle CWE-835	7.5
2020-07-14	CVE-2020-13934	Memory Leak vulnerability in multiple products An h2c direct connection to Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M5 to 9.0.36 and 8.5.1 to 8.5.56 did not release the HTTP/1.1 processor after the upgrade to HTTP/2. network low complexity apache debian netapp opensuse canonical oracle CWE-401	7.5
2020-07-13	CVE-2019-20907	Infinite Loop vulnerability in multiple products In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because _proc_pax lacks header validation. network low complexity python opensuse debian fedoraproject canonical netapp oracle CWE-835	7.5