High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-12-18	CVE-2019-8544	Out-of-bounds Write vulnerability in multiple products A memory corruption issue was addressed with improved memory handling. network low complexity apple redhat CWE-787	8.8
2019-12-18	CVE-2019-8536	Out-of-bounds Write vulnerability in multiple products A memory corruption issue was addressed with improved memory handling. network low complexity apple redhat CWE-787	8.8
2019-12-18	CVE-2019-8535	Out-of-bounds Write vulnerability in multiple products A memory corruption issue was addressed with improved state management. network low complexity apple redhat CWE-787	8.8
2019-12-18	CVE-2019-8506	Type Confusion vulnerability in multiple products A type confusion issue was addressed with improved memory handling. network low complexity apple redhat CWE-843	8.8
2019-12-18	CVE-2019-19880	NULL Pointer Dereference vulnerability in multiple products exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled. network low complexity sqlite netapp debian suse redhat opensuse oracle siemens CWE-476	7.5
2019-12-10	CVE-2019-13764	Type Confusion vulnerability in multiple products Type confusion in JavaScript in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian fedoraproject suse opensuse redhat CWE-843	8.8
2019-12-10	CVE-2019-13747	Use of Uninitialized Resource vulnerability in multiple products Uninitialized data in rendering in Google Chrome on Android prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian fedoraproject redhat CWE-908	8.8
2019-12-10	CVE-2019-13741	Cross-site Scripting vulnerability in multiple products Insufficient validation of untrusted input in Blink in Google Chrome prior to 79.0.3945.79 allowed a local attacker to bypass same origin policy via crafted clipboard content. network low complexity google debian fedoraproject redhat CWE-79	8.8
2019-12-10	CVE-2019-13736	Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in PDFium in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. network low complexity google debian fedoraproject redhat CWE-190	8.8
2019-12-10	CVE-2019-13735	Out-of-bounds Write vulnerability in multiple products Out of bounds write in JavaScript in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. network low complexity google debian fedoraproject redhat CWE-787	8.8