Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

VU#208577: Chocolatey Boxstarter vulnerable to privilege escalation due to weak ACLs

Overview Chocolatey Boxstarter fails to properly set ACLs, which can allow an unprivileged Windows user to be able to run arbitrary code with SYSTEM privileges. Description CVE-2020-15264 The Chocolatey Boxstarter...
Auteur: US Cert

Portabilité : un évènement pour développer les droits et les usages

La CNIL propose un événement dédié au droit à la portabilité, le lundi 23 novembre 2020 de 14 h00 à 17 h 30, afin de faire le bilan des pratiques et d’apporter de nouvelles pistes de solutions technologiques sur ce droit prévu par le RGPD.
Auteur: Cnil

Oracle VM VirtualBox up to 6.1.15 denial of service [CVE-2020-14892]

A vulnerability has been found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software) and classified as critical. Affected by this vulnerability is an unknown functionality. Upgrading eliminates this vulnerability. A possible mitigation...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 information disclosure [CVE-2020-14889]

A vulnerability, which was classified as critical, was found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). Affected is an unknown function. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 information disclosure [CVE-2020-14886]

A vulnerability, which was classified as critical, has been found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). This issue affects some unknown processing. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 information disclosure [CVE-2020-14885]

A vulnerability classified as critical was found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). This vulnerability affects an unknown code block. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 information disclosure [CVE-2020-14884]

A vulnerability classified as critical has been found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). This affects an unknown code. Upgrading eliminates this vulnerability. A possible mitigation has been published immediately...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 information disclosure [CVE-2020-14881]

A vulnerability was found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). It has been rated as critical. Affected by this issue is an unknown part. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 unknown vulnerability [CVE-2020-14872]

A vulnerability was found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). It has been declared as critical. Upgrading eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the...
Auteur: VulDB

Oracle Utilities Framework up to 4.4.0.2.0 Common information disclosure

A vulnerability was found in Oracle Utilities Framework up to 4.4.0.2.0. It has been classified as problematic. Affected is an unknown functionality of the component Common. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Utilities Framework up to 4.4.0.2.0 System Wide unknown vulnerability

A vulnerability was found in Oracle Utilities Framework up to 4.4.0.2.0 and classified as critical. This issue affects an unknown function of the component System Wide. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Utilities Framework up to 4.4.0.2.0 General unknown vulnerability

A vulnerability has been found in Oracle Utilities Framework up to 4.4.0.2.0 and classified as critical. This vulnerability affects some unknown processing of the component General. Upgrading eliminates this vulnerability. A possible mitigation...
Auteur: VulDB

Oracle Utilities Framework up to 4.4.0.2.0 General unknown vulnerability

A vulnerability, which was classified as very critical, was found in Oracle Utilities Framework up to 4.4.0.2.0. This affects an unknown code block of the component General. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Utilities Framework up to 4.4.0.0.0 Common unknown vulnerability

A vulnerability, which was classified as very critical, has been found in Oracle Utilities Framework up to 4.4.0.0.0. Affected by this issue is an unknown code of the component Common. Upgrading eliminates this vulnerability. A possible...
Auteur: VulDB

Oracle Solaris 11 Kernel unknown vulnerability [CVE-2020-14759]

A vulnerability classified as problematic was found in Oracle Solaris 11 (Operating System). Affected by this vulnerability is an unknown part of the component Kernel. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Solaris 11 Utility unknown vulnerability [CVE-2020-14818]

A vulnerability classified as problematic has been found in Oracle Solaris 11 (Operating System). Affected is some unknown functionality of the component Utility. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Oracle Solaris 11 Filesystem denial of service

A vulnerability was found in Oracle Solaris 11 (Operating System). It has been rated as critical. This issue affects an unknown functionality of the component Filesystem. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Solaris 11 Kernel unknown vulnerability [CVE-2020-14758]

A vulnerability was found in Oracle Solaris 11 (Operating System). It has been declared as critical. This vulnerability affects an unknown function of the component Kernel. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Fujitsu M12-1/Fujitsu M12-2/Fujitsu M12-2S XCP Firmware information disclosure

A vulnerability was found in Oracle Fujitsu M12-1, Fujitsu M12-2 and Fujitsu M12-2S (the affected version unknown). It has been classified as critical. This affects some unknown processing of the component XCP Firmware. Upgrading eliminates this...
Auteur: VulDB

Oracle Fujitsu M10-1 XCP Firmware denial of service [CVE-2019-11477]

A vulnerability was found in Oracle Fujitsu M10-1, Fujitsu M10-4, Fujitsu M10-4S, Fujitsu M12-1, Fujitsu M12-2 and Fujitsu M12-2S and classified as critical. Affected by this issue is an unknown code block of the component XCP Firmware. Upgrading...
Auteur: VulDB

Oracle ZFS Storage Appliance Kit 8.8 Operating System Image unknown vulnerability

A vulnerability has been found in Oracle ZFS Storage Appliance Kit 8.8 and classified as very critical. Affected by this vulnerability is an unknown code of the component Operating System Image. Upgrading eliminates this vulnerability. A possible...
Auteur: VulDB

Oracle Solaris 10/11 Pluggable authentication module unknown vulnerability

A vulnerability, which was classified as very critical, was found in Oracle Solaris 10/11 (Operating System). Affected is an unknown part of the component Pluggable authentication module. Upgrading eliminates this vulnerability. A possible...
Auteur: VulDB

Oracle Agile Product Lifecycle Management for Process 6.2.0.0 Supplier Portal unknown vulnerability

A vulnerability, which was classified as critical, has been found in Oracle Agile Product Lifecycle Management for Process 6.2.0.0. This issue affects some unknown functionality of the component Supplier Portal. Upgrading eliminates this...
Auteur: VulDB

Oracle Transportation Management 6.3.7 Install unknown vulnerability

A vulnerability classified as critical was found in Oracle Transportation Management 6.3.7 (Transport Management Software). This vulnerability affects an unknown functionality of the component Install. Upgrading eliminates this vulnerability. A...
Auteur: VulDB

Oracle Agile PLM 9.3.3/9.3.5 Security unknown vulnerability [CVE-2020-10683]

A vulnerability classified as very critical has been found in Oracle Agile PLM 9.3.3/9.3.5 (Product Lifecycle Management Software). This affects an unknown function of the component Security. Upgrading eliminates this vulnerability. A possible...
Auteur: VulDB
12345678910Last

Événements SSI