Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-29	CVE-2020-12458	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products An information-disclosure flaw was found in Grafana through 6.7.3. local low complexity grafana redhat fedoraproject CWE-732	5.5
2020-04-28	CVE-2020-12430	Memory Leak vulnerability in Redhat Enterprise Linux and Libvirt An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemu_driver.c in libvirt 4.10.0 though 6.x before 6.1.0. network low complexity redhat CWE-401	6.5
2020-04-27	CVE-2020-1722	Resource Exhaustion vulnerability in multiple products A flaw was found in all ipa versions 4.x.x through 4.8.0. network high complexity freeipa redhat CWE-400	5.3
2020-04-24	CVE-2020-1741	Incorrect Regular Expression vulnerability in Redhat Openshift Container Platform 3.11 A flaw was found in openshift-ansible. network high complexity redhat CWE-185	5.9
2020-04-23	CVE-2020-1760	Cross-site Scripting vulnerability in multiple products A flaw was found in the Ceph Object Gateway, where it supports request sent by an anonymous user in Amazon S3. network low complexity linuxfoundation redhat fedoraproject canonical debian CWE-79	6.1
2020-04-13	CVE-2020-1730	NULL Pointer Dereference vulnerability in multiple products A flaw was found in libssh versions before 0.8.9 and before 0.9.4 in the way it handled AES-CTR (or DES ciphers if enabled) ciphers. network low complexity libssh canonical netapp redhat fedoraproject oracle CWE-476	5.3
2020-04-13	CVE-2020-1759	Reusing a Nonce, Key Pair in Encryption vulnerability in multiple products A vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Container Storage 4.2 where, A nonce reuse vulnerability was discovered in the secure mode of the messenger v2 protocol, which can allow an attacker to forge auth tags and potentially manipulate the data by leveraging the reuse of a nonce in a session. network high complexity redhat linuxfoundation fedoraproject CWE-323	6.8
2020-04-10	CVE-2020-11669	An issue was discovered in the Linux kernel before 5.2 on the powerpc platform. local low complexity linux redhat opensuse	5.5
2020-04-08	CVE-2020-2732	Information Exposure vulnerability in Redhat Enterprise Linux 7.0/8.0 A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. low complexity redhat CWE-200	6.8
2020-04-06	CVE-2020-1728	Improper Restriction of Rendered UI Layers or Frames vulnerability in multiple products A vulnerability was found in all versions of Keycloak where, the pages on the Admin Console area of the application are completely missing general HTTP security headers in HTTP-responses. network low complexity redhat quarkus CWE-1021	5.4