Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Hashicorp Consul Enterprise up to 1.9.4/1.9.5 HTTP Event unknown vulnerability

A vulnerability, which was classified as problematic, has been found in Hashicorp Consul Enterprise up to 1.9.4/1.9.5. Affected by this issue is an unknown function of the component HTTP Event Handler. Upgrading to version 1.8.10 or 1.9.5...
Auteur: VulDB

Magento LTS up to 19.4.12/20.0.8 sql injection [CVE-2021-21427]

A vulnerability classified as critical was found in Magento LTS up to 19.4.12/20.0.8. Affected by this vulnerability is some unknown processing. Upgrading to version 19.4.13 or 20.0.9 eliminates this vulnerability.
Auteur: VulDB

Magento LTS up to 19.4.12/20.0.8 deserialization [CVE-2021-21426]

A vulnerability classified as very critical has been found in Magento LTS up to 19.4.12/20.0.8. Affected is an unknown code block. Upgrading to version 19.4.13 or 20.0.9 eliminates this vulnerability.
Auteur: VulDB

NVIDIA Windows GPU Display Driver R390 on Windows Installer Remote Privilege Escalation

A vulnerability was found in NVIDIA Windows GPU Display Driver R390 on Windows (Hardware Driver Software). It has been rated as critical. This issue affects an unknown code of the component Installer. There is no information about possible...
Auteur: VulDB

NVIDIA Windows GPU Display Driver on Windows Kernel Driver nvlddmkm.sys null pointer dereference

A vulnerability was found in NVIDIA Windows GPU Display Driver on Windows (Hardware Driver Software) (the affected version is unknown). It has been declared as critical. This vulnerability affects an unknown part in the library nvlddmkm.sys of...
Auteur: VulDB

NVIDIA Windows GPU Display Driver on Windows Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape Remote Privilege Escalation

A vulnerability was found in NVIDIA Windows GPU Display Driver on Windows (Hardware Driver Software) (the affected version unknown). It has been classified as critical. This affects the function DxgkDdiEscape in the library nvlddmkm.sys of the...
Auteur: VulDB

Wikimedia analytics-quarry-web Content Type app.py cross site scripting

A vulnerability was found in Wikimedia analytics-quarry-web (Content Management System) (affected version not known) and classified as problematic. Affected by this issue is an unknown functionality of the file app.py of the component Content...
Auteur: VulDB

Tobesoft XPlatform prior 9.2.2.280 command injection [CVE-2020-7857]

A vulnerability has been found in Tobesoft XPlatform and classified as critical. Affected by this vulnerability is an unknown function. Upgrading to version 9.2.2.280 eliminates this vulnerability.
Auteur: VulDB

Aviatrix VPN Client up to 2.8.2 VPN Service permission

A vulnerability, which was classified as critical, was found in Aviatrix VPN Client up to 2.8.2 (Network Encryption Software). Affected is some unknown processing of the component VPN Service. There is no information about possible...
Auteur: VulDB

Abus Secvest Wireless Alarm System FUAA50000 3.01.17 HTTPS Interface improper authentication

A vulnerability, which was classified as critical, has been found in Abus Secvest Wireless Alarm System FUAA50000 3.01.17. This issue affects an unknown code block of the component HTTPS Interface Handler. There is no information about possible...
Auteur: VulDB

Hashicorp Consul/Consul Enterprise up to 1.7.13/1.8.9/1.9.4 KV Raw Mode cross site scripting

A vulnerability classified as problematic was found in Hashicorp Consul and Consul Enterprise up to 1.7.13/1.8.9/1.9.4. This vulnerability affects an unknown code of the component KV Raw Mode. Upgrading to version 1.7.14, 1.8.10 or 1.9.5...
Auteur: VulDB

Aviatrix Controller 5.3.1516 permission [CVE-2020-27568]

A vulnerability classified as critical has been found in Aviatrix Controller 5.3.1516. This affects an unknown part. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

Dell EMC PowerScale OneFS up to 9.1.0 LDAP inadequate encryption

A vulnerability was found in Dell EMC PowerScale OneFS up to 9.1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component LDAP Handler. There is no information about possible countermeasures...
Auteur: VulDB

Xiaomi 10 prior 2020.01.15 SNO Information information disclosure

A vulnerability was found in Xiaomi 10. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component SNO Information Handler. Upgrading to version 2020.01.15 eliminates this vulnerability.
Auteur: VulDB

AbuseFilter Extension up to 1.35.2 on MediaWiki Account Creation access control

A vulnerability was found in AbuseFilter Extension up to 1.35.2 on MediaWiki. It has been classified as critical. Affected is an unknown function of the component Account Creation Handler. Applying a patch is able to eliminate this problem. The...
Auteur: VulDB

CheckUser Extension up to 1.35.2 on MediaWiki Database Table denial of service

A vulnerability was found in CheckUser Extension up to 1.35.2 on MediaWiki and classified as problematic. This issue affects some unknown processing of the component Database Table Handler. Applying a patch is able to eliminate this problem. The...
Auteur: VulDB

AbuseFilter Extension up to 1.35.2 on MediaWiki Account Block access control

A vulnerability has been found in AbuseFilter Extension up to 1.35.2 on MediaWiki and classified as critical. This vulnerability affects an unknown code block of the component Account Block Handler. Applying a patch is able to eliminate this...
Auteur: VulDB

Oauth Extension up to 1.35.2 on MediaWiki oarc_version unknown vulnerability

A vulnerability, which was classified as problematic, was found in Oauth Extension up to 1.35.2 on MediaWiki. Applying a patch is able to eliminate this problem. The bugfix is ready for download at gerrit.wikimedia.org.
Auteur: VulDB

PageForms Extension up to 1.35.2 on MediaWiki Query Parameter cross site scripting

A vulnerability, which was classified as problematic, has been found in PageForms Extension up to 1.35.2 on MediaWiki. Affected by this issue is an unknown part of the component Query Parameter Handler. Applying a patch is able to eliminate this...
Auteur: VulDB

CommentBox Extension up to 1.35.2 on MediaWiki Configuration cross site scripting

A vulnerability classified as problematic was found in CommentBox Extension up to 1.35.2 on MediaWiki. Affected by this vulnerability is some unknown functionality of the component Configuration Handler. Applying a patch is able to eliminate this...
Auteur: VulDB

AbuseFilter Extension up to 1.35.2 on MediaWiki examine information disclosure

A vulnerability classified as problematic has been found in AbuseFilter Extension up to 1.35.2 on MediaWiki. Affected is an unknown functionality of the file Special:AbuseFilter/examine. Applying a patch is able to eliminate this problem. The...
Auteur: VulDB

AbuseFilter Extension up to 1.35.2 on MediaWiki unknown vulnerability

A vulnerability was found in AbuseFilter Extension up to 1.35.2 on MediaWiki. It has been rated as problematic. Applying a patch is able to eliminate this problem. The bugfix is ready for download at gerrit.wikimedia.org.
Auteur: VulDB

AbuseFilter Extension up to 1.35.2 on MediaWiki AbuseFilterCheckMatch API information disclosure

A vulnerability was found in AbuseFilter Extension up to 1.35.2 on MediaWiki. It has been declared as problematic. This vulnerability affects some unknown processing of the component AbuseFilterCheckMatch API. Applying a patch is able to...
Auteur: VulDB

AbuseFilter Extension up to 1.35.2 on MediaWiki information disclosure

A vulnerability was found in AbuseFilter Extension up to 1.35.2 on MediaWiki. It has been classified as problematic. This affects an unknown code block. Applying a patch is able to eliminate this problem. The bugfix is ready for download at...
Auteur: VulDB

AbuseFilter Extension up to 1.35.2 on MediaWiki page_recent_contributors information disclosure

A vulnerability was found in AbuseFilter Extension up to 1.35.2 on MediaWiki and classified as problematic. Affected by this issue is the function page_recent_contributors. Applying a patch is able to eliminate this problem. The bugfix is ready...
Auteur: VulDB
12345678910Last

Événements SSI