Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2019-09-18	CVE-2019-3739	RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to Information Exposure Through Timing Discrepancy vulnerabilities during ECDSA key generation. network low complexity dell oracle	6.5
2019-09-18	CVE-2019-3738	RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to a Missing Required Cryptographic Step vulnerability. network low complexity dell mcafee oracle	6.5
2019-09-09	CVE-2019-16168	Divide By Zero vulnerability in multiple products In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner." network low complexity sqlite netapp canonical fedoraproject debian tenable oracle mcafee CWE-369	6.5
2019-08-28	CVE-2019-10383	Cross-site Scripting vulnerability in multiple products A stored cross-site scripting vulnerability in Jenkins 2.191 and earlier, LTS 2.176.2 and earlier allowed attackers with Overall/Administer permission to configure the update site URL to inject arbitrary HTML and JavaScript in update center web pages. network low complexity jenkins oracle redhat CWE-79	4.8
2019-08-23	CVE-2019-12400	Improper Input Validation vulnerability in multiple products In version 2.0.3 Apache Santuario XML Security for Java, a caching mechanism was introduced to speed up creating new XML documents using a static pool of DocumentBuilders. local low complexity apache redhat oracle CWE-20	5.5
2019-08-19	CVE-2019-15218	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in the Linux kernel before 5.1.8. low complexity linux netapp canonical debian oracle opensuse CWE-476	4.6
2019-08-13	CVE-2019-9516	Allocation of Resources Without Limits or Throttling vulnerability in multiple products Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. network low complexity apple apache canonical debian fedoraproject synology opensuse redhat oracle mcafee f5 nodejs CWE-770	6.5
2019-07-26	CVE-2019-13057	An issue was discovered in the server in OpenLDAP before 2.4.48. network low complexity openldap canonical debian opensuse apple mcafee oracle	4.9
2019-07-23	CVE-2019-2879	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). network low complexity oracle redhat	4.9
2019-07-23	CVE-2019-2878	Unspecified vulnerability in Oracle SUN ZFS Storage Appliance KIT 8.8.3 Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: HTTP data path subsystems). network low complexity oracle	6.1