Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2019-04-23	CVE-2019-2587	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Partition). network low complexity oracle fedoraproject redhat	4.9
2019-04-23	CVE-2019-2585	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). network low complexity oracle fedoraproject redhat	4.9
2019-04-23	CVE-2019-2584	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). network low complexity oracle fedoraproject redhat	4.9
2019-04-23	CVE-2019-2581	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). network low complexity oracle canonical fedoraproject redhat	4.9
2019-04-23	CVE-2019-2580	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). network low complexity oracle fedoraproject redhat	4.9
2019-04-22	CVE-2019-11459	Use of Uninitialized Resource vulnerability in multiple products The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented(), leading to uninitialized memory use when processing certain TIFF image files. local low complexity gnome canonical fedoraproject debian redhat opensuse CWE-908	5.5
2019-04-22	CVE-2019-3902	Link Following vulnerability in multiple products A flaw was found in Mercurial before 4.9. network high complexity mercurial redhat debian CWE-59	5.9
2019-04-22	CVE-2019-11244	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products In Kubernetes v1.8.x-v1.14.x, schema info is cached by kubectl in the location specified by --cache-dir (defaulting to $HOME/.kube/http-cache), written with world-writeable permissions (rw-rw-rw-). local low complexity kubernetes netapp redhat CWE-732	5.0
2019-04-20	CVE-2019-11358	jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. network low complexity jquery debian drupal backdropcms fedoraproject opensuse netapp redhat oracle joomla juniper	6.1
2019-04-18	CVE-2018-16878	Resource Exhaustion vulnerability in multiple products A flaw was found in pacemaker up to and including version 2.0.1. local low complexity clusterlabs canonical fedoraproject debian opensuse redhat CWE-400	5.5