Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Docker Desktop Community up to 2.4.x on macOS certificate validation

A vulnerability classified as critical was found in Docker Desktop Community up to 2.4.x on macOS (Virtualization Software). This vulnerability affects some unknown functionality. Upgrading to version 2.5.0.0 eliminates this vulnerability.
Auteur: VulDB

OneDev up to 4.0.2 KubernetesResource REST Endpoint path traversal

A vulnerability classified as critical has been found in OneDev up to 4.0.2. This affects an unknown functionality of the component KubernetesResource REST Endpoint. Upgrading to version 4.0.3 eliminates this vulnerability.
Auteur: VulDB

OneDev up to 4.0.2 XML Document XmlBuildSpecMigrator.migrate information disclosure

A vulnerability was found in OneDev up to 4.0.2. It has been rated as problematic. Affected by this issue is the function XmlBuildSpecMigrator.migrate of the component XML Document Handler. Upgrading to version 4.0.3 eliminates this...
Auteur: VulDB

OneDev up to 4.0.2 YAML Parser deserialization

A vulnerability was found in OneDev up to 4.0.2. It has been declared as critical. Affected by this vulnerability is some unknown processing of the component YAML Parser. Upgrading to version 4.0.3 eliminates this vulnerability. Applying a patch...
Auteur: VulDB

OneDev up to 4.0.2 endpoint injection

A vulnerability was found in OneDev up to 4.0.2. It has been classified as critical. Affected is an unknown code block. Upgrading to version 4.0.3 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is...
Auteur: VulDB

OneDev up to 4.0.2 AJAX Event Listener data improper authentication

A vulnerability was found in OneDev up to 4.0.2 and classified as critical. This issue affects an unknown code of the component AJAX Event Listener. Upgrading to version 4.0.3 eliminates this vulnerability.
Auteur: VulDB

OneDev up to 4.0.2 REST UserResource Endpoint /users/{id} authorization

A vulnerability has been found in OneDev up to 4.0.2 and classified as critical. This vulnerability affects an unknown part of the file /users/{id} of the component REST UserResource Endpoint. Upgrading to version 4.0.3 eliminates this...
Auteur: VulDB

OneDev up to 4.0.2 AttachmentUploadServlet request.getInputStream unrestricted upload

A vulnerability, which was classified as critical, was found in OneDev up to 4.0.2. This affects the function request.getInputStream of the component AttachmentUploadServlet. Upgrading to version 4.0.3 eliminates this vulnerability. Applying a...
Auteur: VulDB

OneDev up to 4.0.2 Bean Message injection

A vulnerability, which was classified as critical, has been found in OneDev up to 4.0.2. Affected by this issue is an unknown functionality of the component Bean Message Handler. Upgrading to version 4.0.3 eliminates this vulnerability. Applying...
Auteur: VulDB

OneDev up to 4.0.2 Kubernetes REST Endpoint improper authentication

A vulnerability classified as critical was found in OneDev up to 4.0.2. Affected by this vulnerability is an unknown function of the component Kubernetes REST Endpoint. Upgrading to version 4.0.3 eliminates this vulnerability. Applying a patch is...
Auteur: VulDB

OneDev up to 4.0.2 AttachmentUploadServlet deserialization

A vulnerability classified as critical has been found in OneDev up to 4.0.2. Affected is some unknown processing of the component AttachmentUploadServlet. Upgrading to version 4.0.3 eliminates this vulnerability. Applying a patch is able to...
Auteur: VulDB

Git LFS up to 2.13.1 on Windows git.exe untrusted search path

A vulnerability was found in Git LFS up to 2.13.1 on Windows (Versioning Software). It has been rated as problematic. This issue affects an unknown code block of the file git.exe. Upgrading to version 2.13.2 eliminates this vulnerability. The...
Auteur: VulDB

Juniper Junos telnetd.real unnecessary privileges

A vulnerability was found in Juniper Junos (Router Operating System) (the affected version is unknown). It has been declared as critical. This vulnerability affects an unknown code of the file telnetd.real. Upgrading eliminates this vulnerability.
Auteur: VulDB

Juniper Junos Protocol Packet denial of service [CVE-2021-0222]

A vulnerability was found in Juniper Junos (Router Operating System) (the affected version unknown). It has been classified as critical. This affects an unknown part of the component Protocol Packet Handler. Upgrading eliminates this...
Auteur: VulDB

Juniper Junos on QFX IRB Interface denial of service

A vulnerability was found in Juniper Junos on QFX (Router Operating System) (affected version not known) and classified as critical. Affected by this issue is some unknown functionality of the component IRB Interface. Upgrading eliminates this...
Auteur: VulDB

Juniper Junos Space Network Management Platform credentials storage

A vulnerability has been found in Juniper Junos Space Network Management Platform (Router Operating System) (affected version unknown) and classified as problematic. Affected by this vulnerability is an unknown functionality. Upgrading eliminates...
Auteur: VulDB

Juniper Junos Package Validation Subsystem command injection

A vulnerability, which was classified as critical, was found in Juniper Junos (Router Operating System) (version unknown). Affected is an unknown function of the component Package Validation Subsystem. Upgrading eliminates this vulnerability.
Auteur: VulDB

Juniper Junos License-Check Daemon command injection [CVE-2021-0218]

A vulnerability, which was classified as critical, has been found in Juniper Junos (Router Operating System) (unknown version). This issue affects some unknown processing of the component License-Check Daemon. Upgrading eliminates this...
Auteur: VulDB

Juniper Junos DHCP Packet memory corruption [CVE-2021-0217]

A vulnerability classified as critical was found in Juniper Junos (Router Operating System) (the affected version is unknown). This vulnerability affects an unknown code block of the component DHCP Packet Handler. Upgrading eliminates this...
Auteur: VulDB

Juniper Junos 802.1X Authenticator Port Interface resource consumption

A vulnerability classified as critical has been found in Juniper Junos (Router Operating System) (the affected version unknown). This affects an unknown code of the component 802.1X Authenticator Port Interface. Upgrading eliminates this...
Auteur: VulDB

Juniper Networks Contrail prior 1911.31 information disclosure

A vulnerability was found in Juniper Networks Contrail. It has been rated as problematic. Affected by this issue is an unknown part. Upgrading to version 1911.31 eliminates this vulnerability.
Auteur: VulDB

Juniper Junos Routing Protocol denial of service [CVE-2021-0211]

A vulnerability was found in Juniper Junos (Router Operating System) (affected version unknown). It has been declared as critical. Affected by this vulnerability is some unknown functionality of the component Routing Protocol Handler. Upgrading...
Auteur: VulDB

Juniper Junos J-Web information disclosure [CVE-2021-0210]

A vulnerability was found in Juniper Junos (Router Operating System) (version unknown). It has been classified as problematic. Affected is an unknown functionality of the component J-Web. Upgrading eliminates this vulnerability.
Auteur: VulDB

Juniper Junos BGP UPDATE uninitialized pointer [CVE-2021-0209]

A vulnerability was found in Juniper Junos (Router Operating System) (unknown version) and classified as critical. This issue affects an unknown function of the component BGP UPDATE Handler. Upgrading eliminates this vulnerability.
Auteur: VulDB

Juniper Junos Routing Protocol denial of service [CVE-2021-0208]

A vulnerability has been found in Juniper Junos (Router Operating System) (the affected version is unknown) and classified as problematic. This vulnerability affects some unknown processing of the component Routing Protocol Handler. Upgrading...
Auteur: VulDB
12345678910Last

Événements SSI