Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database CVE-2020-9327
PUBLISHED: 2020-02-21

In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger a NULL pointer dereference and segmentation fault because of generated column optimizations.

CVE-2020-9329
PUBLISHED: 2020-02-21

Gogs through 0.11.91 allows attackers to violate the admin-specified repo-creation policy due to an internal/db/repo.go race condition.

CVE-2020-7907
PUBLISHED: 2020-02-21

In the JetBrains Scala plugin before 2019.2.1, some artefact dependencies were resolved over unencrypted connections.

CVE-2019-18846
PUBLISHED: 2020-02-21

OX App Suite through 7.10.2 allows SSRF.

CVE-2012-1093
PUBLISHED: 2020-02-21

The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation.

View Original Source Article HERE