Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-18	CVE-2019-19076	Memory Leak vulnerability in multiple products A memory leak in the nfp_abm_u32_knode_replace() function in drivers/net/ethernet/netronome/nfp/abm/cls.c in the Linux kernel before 5.3.6 allows attackers to cause a denial of service (memory consumption), aka CID-78beef629fd9. network high complexity linux canonical redhat CWE-401	5.9
2019-11-18	CVE-2019-19072	Memory Leak vulnerability in multiple products A memory leak in the predicate_parse() function in kernel/trace/trace_events_filter.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-96c5c6e6a5b6. local low complexity canonical fedoraproject redhat linux CWE-401	4.4
2019-11-18	CVE-2019-19068	Memory Leak vulnerability in multiple products A memory leak in the rtl8xxxu_submit_int_urb() function in drivers/net/wireless/realtek/rtl8xxxu/rtl8xxxu_core.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering usb_submit_urb() failures, aka CID-a2cdd07488e6. low complexity linux redhat debian canonical fedoraproject opensuse CWE-401	4.6
2019-11-18	CVE-2019-19066	Memory Leak vulnerability in multiple products A memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/bfad_attr.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering bfa_port_get_stats() failures, aka CID-0e62395da2bd. local high complexity linux redhat debian canonical fedoraproject opensuse CWE-401	4.7
2019-11-18	CVE-2019-19062	Memory Leak vulnerability in multiple products A memory leak in the crypto_report() function in crypto/crypto_user_base.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering crypto_report_alg() failures, aka CID-ffdde5932042. local high complexity linux redhat debian canonical fedoraproject opensuse CWE-401	4.7
2019-11-15	CVE-2011-2726	Incorrect Authorization vulnerability in multiple products An access bypass issue was found in Drupal 7.x before version 7.5. network low complexity drupal debian redhat fedoraproject CWE-863	5.0
2019-11-15	CVE-2016-5285	NULL Pointer Dereference vulnerability in multiple products A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime, which could let a remote malicious user cause a Denial of Service. network low complexity mozilla debian redhat suse avaya CWE-476	5.0
2019-11-14	CVE-2019-11135	TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. local low complexity opensuse fedoraproject slackware hp intel canonical debian redhat oracle	6.5
2019-11-14	CVE-2012-1168	Improper Input Validation vulnerability in multiple products Moodle before 2.2.2 has a password and web services issue where when the user profile is updated the user password is reset if not specified. network low complexity moodle fedoraproject redhat CWE-20	6.4
2019-11-14	CVE-2012-1156	Information Exposure Through Log Files vulnerability in multiple products Moodle before 2.2.2 has users' private files included in course backups network low complexity moodle fedoraproject redhat CWE-532	5.0