High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-15	CVE-2020-2742	Integer Overflow or Wraparound vulnerability in multiple products Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). local low complexity oracle opensuse CWE-190	8.2
2020-04-15	CVE-2020-2739	Unspecified vulnerability in Oracle Webcenter Sites 12.2.1.3.0 Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware (component: Advanced UI). network low complexity oracle	7.4
2020-04-15	CVE-2020-2735	Unspecified vulnerability in Oracle Database Server Vulnerability in the Java VM component of Oracle Database Server. network high complexity oracle	8.0
2020-04-15	CVE-2019-2880	Unspecified vulnerability in Oracle Retail Store Inventory Management 16.0 Vulnerability in the Oracle Retail Store Inventory Management product of Oracle Retail Applications (component: Security). network low complexity oracle	8.8
2020-04-09	CVE-2020-11655	Improper Initialization vulnerability in multiple products SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a malformed window-function query because the AggInfo object's initialization is mishandled. network low complexity sqlite netapp debian canonical oracle siemens tenable CWE-665	7.5
2020-04-07	CVE-2020-11620	Deserialization of Untrusted Data vulnerability in multiple products FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.jelly.impl.Embedded (aka commons-jelly). network high complexity fasterxml debian netapp oracle CWE-502	8.1
2020-04-07	CVE-2020-11619	Deserialization of Untrusted Data vulnerability in multiple products FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.springframework.aop.config.MethodLocatingFactoryBean (aka spring-aop). network high complexity fasterxml debian netapp oracle CWE-502	8.1
2020-04-07	CVE-2020-11612	Allocation of Resources Without Limits or Throttling vulnerability in multiple products The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. network low complexity netty debian fedoraproject netapp oracle CWE-770	7.5
2020-03-31	CVE-2020-11113	Deserialization of Untrusted Data vulnerability in multiple products FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.openjpa.ee.WASRegistryManagedRuntime (aka openjpa). network low complexity fasterxml debian netapp oracle CWE-502	8.8
2020-03-31	CVE-2020-11112	Deserialization of Untrusted Data vulnerability in multiple products FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.proxy.provider.remoting.RmiProvider (aka apache/commons-proxy). network low complexity fasterxml debian netapp oracle CWE-502	8.8