High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-29	CVE-2020-2575	Use of Uninitialized Resource vulnerability in Oracle VM Virtualbox Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local high complexity oracle CWE-908	7.5
2020-04-28	CVE-2020-12243	Uncontrolled Recursion vulnerability in multiple products In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash). network low complexity openldap debian opensuse canonical netapp broadcom apple oracle CWE-674	7.5
2020-04-27	CVE-2020-7067	Out-of-bounds Read vulnerability in multiple products In PHP versions 7.2.x below 7.2.30, 7.3.x below 7.3.17 and 7.4.x below 7.4.5, if PHP is compiled with EBCDIC support (uncommon), urldecode() function can be made to access locations past the allocated memory, due to erroneously using signed numbers as array indexes. network low complexity php tenable oracle debian CWE-125	7.5
2020-04-21	CVE-2020-1967	NULL Pointer Dereference vulnerability in multiple products Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS extension. network low complexity openssl debian freebsd fedoraproject oracle netapp broadcom opensuse jdedwards tenable CWE-476	7.5
2020-04-15	CVE-2020-2964	Unspecified vulnerability in Oracle Financial Services Data Foundation 8.0.6/8.0.9 Vulnerability in the Oracle Financial Services Data Foundation product of Oracle Financial Services Applications (component: User Interface). network low complexity oracle	7.1
2020-04-15	CVE-2020-2963	Unspecified vulnerability in Oracle Weblogic Server Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). network low complexity oracle	7.2
2020-04-15	CVE-2020-2959	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). network low complexity oracle opensuse	8.6
2020-04-15	CVE-2020-2958	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local high complexity oracle opensuse	7.5
2020-04-15	CVE-2020-2956	Unspecified vulnerability in Oracle Human Resources Vulnerability in the Oracle Human Resources product of Oracle E-Business Suite (component: Hierarchy Diagrammers). network low complexity oracle	8.1
2020-04-15	CVE-2020-2945	Unspecified vulnerability in Oracle Financial Services Deposit Insurance Calculations for Liquidity Risk Management 8.0.7/8.0.8 Vulnerability in the Oracle Financial Services Deposit Insurance Calculations for Liquidity Risk Management product of Oracle Financial Services Applications (component: User Interfaces). network low complexity oracle	7.1