Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2017-01-30	CVE-2016-2518	Out-of-bounds Read vulnerability in multiple products The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote attackers to cause an out-of-bounds reference via an addpeer request with a large hmode value. network low complexity ntp debian netapp oracle redhat freebsd siemens CWE-125	5.3
2017-01-30	CVE-2015-7977	NULL Pointer Dereference vulnerability in multiple products ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (NULL pointer dereference) via a ntpdc reslist command. network high complexity ntp oracle siemens netapp freebsd fedoraproject debian canonical CWE-476	5.9
2017-01-27	CVE-2017-3318	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Error Handling). local high complexity oracle debian redhat mariadb	4.0
2017-01-27	CVE-2017-3317	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Logging). local high complexity oracle debian redhat mariadb	4.0
2017-01-27	CVE-2017-3315	Information Exposure vulnerability in Oracle Peoplesoft Enterprise Human Capital Management Eperformance 9.2 Vulnerability in the PeopleSoft Enterprise HCM ePerformance component of Oracle PeopleSoft Products (subcomponent: Security). network low complexity oracle CWE-200	4.3
2017-01-27	CVE-2017-3314	Unspecified vulnerability in Oracle Flexcube Universal Banking 12.0.0/12.1.0/12.2.0 Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Core). network low complexity oracle	6.1
2017-01-27	CVE-2017-3313	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: MyISAM). local high complexity oracle debian canonical redhat mariadb	4.7
2017-01-27	CVE-2017-3312	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). local high complexity oracle debian mariadb	6.7
2017-01-27	CVE-2017-3311	Unspecified vulnerability in Oracle Application Testing Suite 12.4.0.2/12.5.0.2/12.5.0.3 Vulnerability in the Application Testing Suite component of Oracle Enterprise Manager Grid Control (subcomponent: Test Manager for Web Apps). network low complexity oracle	5.3
2017-01-27	CVE-2017-3300	Cross-site Scripting vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55 Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Multichannel Framework). network low complexity oracle CWE-79	6.1