dimanche 19 janvier 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Amcrest Web Server 2.520.AC00.18.R 2017-06-29 WEB 3.2.1.453504 result weak authentication

A vulnerability has been found in Amcrest Web Server 2.520.AC00.18.R 2017-06-29 WEB 3.2.1.453504 (Web Server) and classified as critical. Affected by this vulnerability is an unknown code. There is no information about possible countermeasures...
Auteur: VulDB

chained-quiz Plugin 1.1.8.1 on WordPress wp-admin/admin-ajax.php total_questions cross site scripting

A vulnerability, which was classified as problematic, was found in chained-quiz Plugin 1.1.8.1 on WordPress (WordPress Plugin). Affected is an unknown part of the file wp-admin/admin-ajax.php. There is no information about possible...
Auteur: VulDB

ZTE F6x2W V6.0.10P2T2/V6.0.10P2T5 weak authentication [CVE-2020-6862]

A vulnerability, which was classified as critical, has been found in ZTE F6x2W V6.0.10P2T2/V6.0.10P2T5. This issue affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

Spring Framework up to 5.2.2 cross site request forgery [CVE-2020-5397]

A vulnerability classified as problematic was found in Spring Framework up to 5.2.2. This vulnerability affects an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

VMware Workspace ONE SDK information disclosure [CVE-2020-3940]

A vulnerability classified as problematic has been found in VMware Workspace ONE SDK (the affected version unknown). This affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

openQA distri/version cross site scripting

A vulnerability was found in openQA (affected version not known). It has been rated as problematic. Affected by this issue is some unknown processing. Applying the patch c172e8883d8f32fced5e02f9b6faaacc913df27b is able to eliminate this problem.
Auteur: VulDB

Trend Micro Security 2019/Security 2020 privilege escalation

A vulnerability was found in Trend Micro Security 2019 and Security 2020 (affected version unknown). It has been declared as critical. Affected by this vulnerability is an unknown code block. There is no information about possible countermeasures...
Auteur: VulDB

Feldtech Easescreen Crystal 9.0 Web-Services Stored cross site scripting

A vulnerability was found in Feldtech Easescreen Crystal 9.0. It has been classified as problematic. Affected is an unknown code of the component Web-Services. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Trend Micro Security 2019 v15 Remote Code Execution [CVE-2019-19697]

A vulnerability was found in Trend Micro Security 2019 v15 and classified as critical. This issue affects an unknown part. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

Trend Micro Password Manager on Windows/macOS RootCA.crt privilege escalation

A vulnerability has been found in Trend Micro Password Manager on Windows/macOS (the affected version is unknown) and classified as critical. This vulnerability affects some unknown functionality of the file RootCA.crt. There is no information...
Auteur: VulDB

Red Hat Enterprise Linux up to 8 Address Translation denial of service

A vulnerability, which was classified as critical, was found in Red Hat Enterprise Linux up to 8. This affects an unknown functionality of the component Address Translation Handler. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Eclipse Memory Analyzer up to 1.9.1 Heap Dump Parser Deserialization unknown vulnerability

A vulnerability, which was classified as critical, has been found in Eclipse Memory Analyzer up to 1.9.1. Affected by this issue is an unknown function of the component Heap Dump Parser. There is no information about possible countermeasures...
Auteur: VulDB

Eclipse Memory Analyzer up to 1.9.1 HTML Report cross site scripting

A vulnerability classified as problematic was found in Eclipse Memory Analyzer up to 1.9.1. Affected by this vulnerability is some unknown processing of the component HTML Report Handler. There is no information about possible countermeasures...
Auteur: VulDB

Solarwinds Orion Platform 2019.2 HF1 Template Stored cross site scripting

A vulnerability classified as problematic has been found in Solarwinds Orion Platform 2019.2 HF1. Affected is an unknown code block of the component Template Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Solarwinds Orion Platform 2019.2 HF1 Template Reflected cross site scripting

A vulnerability was found in Solarwinds Orion Platform 2019.2 HF1. It has been rated as problematic. This issue affects an unknown code of the component Template Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Maarch RM up to 2.4 POST Request directory traversal

A vulnerability was found in Maarch RM up to 2.4. It has been declared as critical. This vulnerability affects an unknown part. Upgrading to version 2.5 eliminates this vulnerability.
Auteur: VulDB

Maarch RM up to 2.4 PUT Request privilege escalation

A vulnerability was found in Maarch RM up to 2.4. It has been classified as critical. This affects some unknown functionality. Upgrading to version 2.5 eliminates this vulnerability.
Auteur: VulDB

Trend Micro Password Manager 3.8 information disclosure [CVE-2019-15625]

A vulnerability was found in Trend Micro Password Manager 3.8 and classified as problematic. Affected by this issue is an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Intel DAAL prior 2020 Gold Permission information disclosure

A vulnerability has been found in Intel DAAL and classified as problematic. Affected by this vulnerability is an unknown function of the component Permission. Upgrading to version 2020 Gold eliminates this vulnerability.
Auteur: VulDB

Intel CPU Processor Graphics information disclosure [CVE-2019-14615]

A vulnerability, which was classified as problematic, was found in Intel CPU (Chip Software) (version unknown). Affected is some unknown processing of the component Processor Graphics Handler. There is no information about possible...
Auteur: VulDB

Intel VTune Amplifier up to Update 7 on Windows Access Control privilege escalation

A vulnerability, which was classified as critical, has been found in Intel VTune Amplifier up to Update 7 on Windows. This issue affects an unknown code block of the component Access Control. Applying the patch Update 8 is able to eliminate this...
Auteur: VulDB

Intel RWC 3 prior 7.010.009.000 on Windows Permission privilege escalation

A vulnerability classified as critical was found in Intel RWC 3 on Windows. This vulnerability affects an unknown code of the component Permission. Upgrading to version 7.010.009.000 eliminates this vulnerability.
Auteur: VulDB

Intel SNMP Subagent Stand-Alone on Windows Installer Search Path privilege escalation

A vulnerability classified as critical has been found in Intel SNMP Subagent Stand-Alone on Windows (the affected version unknown). This affects an unknown part of the component Installer. There is no information about possible countermeasures...
Auteur: VulDB

Intel Chipset Device Software up to 10.1.17 INF Utility denial of service

A vulnerability was found in Intel Chipset Device Software up to 10.1.17. It has been rated as problematic. Affected by this issue is some unknown functionality of the component INF Utility. Upgrading to version 10.1.18 eliminates this...
Auteur: VulDB

Geutebruck G-Code/G-Cam up to 1.12.0.25 Remote Code Execution

A vulnerability was found in Geutebruck G-Code and G-Cam up to 1.12.0.25. It has been declared as critical. Affected by this vulnerability is an unknown functionality. There is no information about possible countermeasures known. It may be...
Auteur: VulDB
12345678910Last

Événements SSI

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS