samedi 15 juin 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

madskristensen MiniBlog up to 2018-05-18 IMG Element PostHandler.cs Remote Code Execution

A vulnerability classified as critical was found in madskristensen MiniBlog up to 2018-05-18. This vulnerability affects an unknown functionality of the file app_code/handlers/PostHandler.cs of the component IMG Element Handler. The manipulation...
Auteur: VulDB

IBM Connections 6.0 Web UI cross site scripting

A vulnerability classified as problematic has been found in IBM Connections 6.0 (Groupware Software). This affects an unknown function of the component Web UI. The manipulation with an unknown input leads to a cross site scripting vulnerability....
Auteur: VulDB

IBM i 7.27.3 Clustering information disclosure

A vulnerability was found in IBM i 7.27.3. It has been rated as problematic. Affected by this issue is some unknown processing of the component Clustering Handler. The manipulation with an unknown input leads to a information disclosure...
Auteur: VulDB

IBM MQ Advanced Cloud Pak up to 3.0.1 Credential Storage weak encryption

A vulnerability was found in IBM MQ Advanced Cloud Pak up to 3.0.1 (Cloud Software). It has been declared as critical. Affected by this vulnerability is an unknown code block of the component Credential Storage. The manipulation with an unknown...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SDM660 Video unknown vulnerability

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables (Chip Software). It has...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SDX24 Permission privilege escalation

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables (Chip Software) and...
Auteur: VulDB

Qualcomm Snapdragon Auto Bitstream Code Execution [CVE-2019-2256]

A vulnerability has been found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables (Chip Software) and...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SDM660 Bitstream Code Execution

A vulnerability, which was classified as critical, was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon...
Auteur: VulDB

Electronic Arts Origin Client up to 10.5 URI platformpluginpath Backdoor privilege escalation

A vulnerability, which was classified as critical, has been found in Electronic Arts Origin Client up to 10.5. Affected by this issue is an unknown function of the component URI Handler. The manipulation of the argument platformpluginpath as...
Auteur: VulDB

EmbedThis GoAhead up to 4.1.0/5.0.0 Header Parsing http.c memory corruption

A vulnerability classified as critical was found in EmbedThis GoAhead up to 4.1.0/5.0.0. Affected by this vulnerability is some unknown processing of the file http.c of the component Header Parsing. The manipulation with an unknown input leads...
Auteur: VulDB

Eclipse Buildship up to 3.1.0 HTTP weak encryption

A vulnerability classified as critical has been found in Eclipse Buildship up to 3.1.0. Affected is an unknown code block. The manipulation with an unknown input leads to a weak encryption vulnerability (HTTP). CWE is classifying the issue as...
Auteur: VulDB

Atlassian SourceTree up to 3.1.3 on Windows URI Argument Remote Code Execution

A vulnerability was found in Atlassian SourceTree up to 3.1.3 on Windows. It has been rated as critical. This issue affects an unknown code of the component URI Handler. The manipulation as part of a Argument leads to a privilege escalation...
Auteur: VulDB

cfme-gemset up to 5.10.4.3/5.9.9.3 Migration Log Controller information disclosure

A vulnerability was found in cfme-gemset up to 5.10.4.3/5.9.9.3. It has been declared as problematic. This vulnerability affects an unknown part of the component Migration Log Controller. The manipulation with an unknown input leads to a...
Auteur: VulDB

Linux Kernel ie.c mwifiex_uap_parse_tail_ies memory corruption

A vulnerability was found in Linux Kernel (Operating System) (the affected version unknown). It has been classified as critical. This affects the function mwifiex_uap_parse_tail_ies of the file drivers/net/wireless/marvell/mwifiex/ie.c. The...
Auteur: VulDB

SAP NetWeaver Process Integration up to 7.50 Reflected cross site scripting

A vulnerability was found in SAP NetWeaver Process Integration up to 7.50 (Solution Stack Software) and classified as problematic. Affected by this issue is an unknown functionality. The manipulation with an unknown input leads to a cross site...
Auteur: VulDB

SAP Business Intelligence Platform 4.2/4.3 Administration Console BILogon/appService.jsp requested cross site scripting

A vulnerability has been found in SAP Business Intelligence Platform 4.2/4.3 (Business Process Management Software) and classified as problematic. Affected by this vulnerability is an unknown function of the file BILogon/appService.jsp of the...
Auteur: VulDB

Facebook WhatsApp up to 2.18 RTP Extension Header Parser Out-of-Bounds memory corruption

A vulnerability, which was classified as critical, was found in Facebook WhatsApp up to 2.18 (Social Network Software). Affected is some unknown processing of the component RTP Extension Header Parser. The manipulation with an unknown input...
Auteur: VulDB

Facebook WhatsApp up to 2.18 on Android Call Stack-based memory corruption

A vulnerability, which was classified as critical, has been found in Facebook WhatsApp up to 2.18 on Android (Social Network Software). This issue affects an unknown code block of the component Call Handler. The manipulation with an unknown...
Auteur: VulDB

Facebook WhatsApp 2.18.180 on Android Call Off-By-One memory corruption

A vulnerability classified as critical was found in Facebook WhatsApp 2.18.180 on Android (Social Network Software). This vulnerability affects an unknown code of the component Call Handler. The manipulation with an unknown input leads to a...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SDM660 Side-Channel information disclosure

A vulnerability classified as problematic has been found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SDX24 WLAN memory corruption

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT and Snapdragon Mobile (Chip Software). It has been rated as critical. Affected by this issue is some unknown functionality of the component...
Auteur: VulDB

Qualcomm Snapdragon Auto VDEV Stop Response Out-of-Bounds memory corruption

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile and Snapdragon Voice & Music (Chip Software). It has been declared as critical. Affected by this...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SDX24 WLAN Driver memory corruption

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Voice & Music (Chip Software). It has been classified as critical. Affected is an unknown function of the...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SDX20 Extscan Hotlist Event memory corruption

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Wearables (Chip Software) and classified as critical. This...
Auteur: VulDB

Facebook WhatsApp up to 2.18 on iOS Packet Call Stack-based memory corruption

A vulnerability has been found in Facebook WhatsApp up to 2.18 on iOS (Social Network Software) and classified as critical. This vulnerability affects an unknown code block of the component Packet Handler. The manipulation as part of a Call...
Auteur: VulDB
12345678910Last

Événements SSI

HACK IN PARIS

Pour sa 9ème édition la conférence Hack In Paris sur la sécurité IT se tient du 16 au 20 juin 2019 à Paris, Maison de la Chimie. Organisée par Sysdream.

LES ASSISES

Grand rendez-vous annuel des RSSI, les Assises de la sécurité des systèmes d'information se tiennent à Monaco (Grimaldi Forum) du 9 au 12 octobre 2019. Organisées par DG Consultants.

Présentation par l'organisateur



Retour sur Les Assises 2018

La 18ème édition des Assises de la Sécurité à Monaco, c’est terminé ! Encore merci aux 2800 participants dont les 160 partenaires qui pendant trois jours se sont retrouvés pour faire vivre cet événement unique en France. Conférences, one-to-one, tables-rondes, ateliers, moments de networking… Par leur contenu, par la qualité des visiteurs et par la richesse des échanges, les Assises se positionnent plus que jamais comme le rendez-vous incontournable de tous les professionnels de la cybersécurité. A l’image du marché qui ne cesse d’évoluer, les Assises savent adapter leur offre afin de répondre au mieux aux attentes du secteur. Ainsi cette édition a-t-elle voulu mettre en avant les grands enjeux du moment en multipliant les prises de parole, les démonstrations et les retours d’expérience.

Rendez-vous maintenant pour la prochaine édition qui aura lieu du 9 au 12 octobre 2019

Plus d'informations sur le site dédié à l'événement.

RSS