Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-03-17	CVE-2020-1720	Missing Authorization vulnerability in multiple products A flaw was found in PostgreSQL's "ALTER ... network low complexity postgresql redhat CWE-862	6.5
2020-02-11	CVE-2020-1726	A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they are mounted as read-only. network high complexity libpod-project redhat	5.9
2020-02-11	CVE-2020-1711	Out-of-bounds Write vulnerability in multiple products An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2.12.0 before 4.2.1 handled a response coming from an iSCSI server while checking the status of a Logical Address Block (LBA) in an iscsi_co_block_status() routine. network high complexity qemu redhat debian opensuse CWE-787	6.0
2020-02-11	CVE-2009-4067	Classic Buffer Overflow vulnerability in multiple products Buffer overflow in the auerswald_probe function in the Auerswald Linux USB driver for the Linux kernel before 2.6.27 allows physically proximate attackers to execute arbitrary code, cause a denial of service via a crafted USB device, or take full control of the system. low complexity linux redhat CWE-120	6.8
2020-01-21	CVE-2019-14907	Out-of-bounds Read vulnerability in multiple products All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with "log level = 3" (or above) then the string obtained from the client, after a failed character conversion, is printed. network low complexity fedoraproject samba redhat canonical synology debian CWE-125	6.5
2020-01-17	CVE-2019-19339	Unspecified vulnerability in Redhat Enterprise Linux and Enterprise Linux EUS It was found that the Red Hat Enterprise Linux 8 kpatch update did not include the complete fix for CVE-2018-12207. local low complexity redhat	6.5
2020-01-15	CVE-2020-2655	Vulnerability in the Java SE product of Oracle Java SE (component: JSSE). network high complexity oracle redhat debian	4.8
2020-01-15	CVE-2020-2601	Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). network high complexity oracle debian canonical opensuse netapp redhat	6.8
2020-01-15	CVE-2020-2593	Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). network high complexity oracle redhat debian canonical opensuse mcafee netapp	4.8
2020-01-09	CVE-2019-19332	An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to get CPUID features emulated by the KVM hypervisor. local low complexity linux redhat	6.1