Alertes
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mercredi 20 janvier 2021

Akka com.softwaremill.akka-http-session up to 0.6.0 cross-site request forgery

A vulnerability was found in Akka com.softwaremill.akka-http-session up to 0.6.0. It has been classified as problematic. This affects an unknown code block. Upgrading to version 0.6.1 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.

Lien vers l'article source

Dnsmasq up to 2.82 rfc1035.c extract_name heap-based overflow gin X-Forwarded-For Header Remote Privilege Escalation [CVE-2020-28483]
Auteur: VulDB

Catégories: VulDBNombre de vues: 51

x

Événements SSI