lundi 1 juin 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Pi-Hole Web 4.3.2 DHCP Remote Code Execution

A vulnerability was found in Pi-Hole Web 4.3.2. It has been rated as critical. Affected by this issue is some unknown functionality of the component DHCP Handler. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

ABB Device Library Wizard up to 6.0.3.2 Secure Storage information disclosure

A vulnerability was found in ABB Device Library Wizard up to 6.0.3.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Secure Storage. There is no information about possible...
Auteur: VulDB

snyk-broker up to 4.73.0 Debug Key information disclosure

A vulnerability was found in snyk-broker up to 4.73.0. It has been classified as problematic. Affected is an unknown function of the component Debug Handler. Upgrading to version 4.73.1 eliminates this vulnerability.
Auteur: VulDB

snyk-broker up to 4.79.x Symlink information disclosure

A vulnerability was found in snyk-broker up to 4.79.x and classified as problematic. This issue affects some unknown processing. Upgrading to version 4.80.0 eliminates this vulnerability.
Auteur: VulDB

snyk-broker up to 4.79.x directory traversal [CVE-2020-7652]

A vulnerability has been found in snyk-broker up to 4.79.x and classified as problematic. This vulnerability affects an unknown code block. Upgrading to version 4.80.0 eliminates this vulnerability.
Auteur: VulDB

snyk-broker up to 4.78.x Commits API information disclosure

A vulnerability, which was classified as problematic, was found in snyk-broker up to 4.78.x. This affects an unknown code of the component Commits API. Upgrading to version 4.79.0 eliminates this vulnerability.
Auteur: VulDB

snyk-broker up to 4.73.0 information disclosure [CVE-2020-7650]

A vulnerability, which was classified as problematic, has been found in snyk-broker up to 4.73.0. Affected by this issue is an unknown part. Upgrading to version 4.73.1 eliminates this vulnerability.
Auteur: VulDB

snyk-broker up to 4.72.1 information disclosure [CVE-2020-7648]

A vulnerability classified as problematic was found in snyk-broker up to 4.72.1. Affected by this vulnerability is some unknown functionality. Upgrading to version 4.72.2 eliminates this vulnerability.
Auteur: VulDB

MuleSoft Mule Community Edition 3.8.x/3.9.x/4.x Resource Exhaustion denial of service

A vulnerability classified as problematic has been found in MuleSoft Mule Community Edition, Mule Enterprise Edition and API Gateay 3.8.x/3.9.x/4.x. Affected is an unknown functionality. Upgrading eliminates this vulnerability.
Auteur: VulDB

Kintone Mobile up to 2.5 on Android information disclosure [CVE-2020-5573]

A vulnerability was found in Kintone Mobile up to 2.5 on Android. It has been rated as problematic. This issue affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

Mailwise 1.0.0/1.0.1 on Android Credentials information disclosure

A vulnerability was found in Mailwise 1.0.0/1.0.1 on Android. It has been declared as problematic. This vulnerability affects some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

IBM Business Automation Workflow privilege escalation [CVE-2020-4490]

A vulnerability was found in IBM Business Automation Workflow and Business Process Manager (Business Process Management Software) (the affected version unknown). It has been classified as critical. This affects an unknown code block. There is no...
Auteur: VulDB

IBM MQ 8.0.4/8.1.0 Restricted Mode privilege escalation

A vulnerability was found in IBM MQ 8.0.4/8.1.0 and classified as critical. Affected by this issue is an unknown code of the component Restricted Mode. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

IBM Planning Analytics up to 2.0.9 Web UI cross site scripting

A vulnerability has been found in IBM Planning Analytics up to 2.0.9 and classified as problematic. Affected by this vulnerability is an unknown part of the component Web UI. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

VMware ESXi/Fusion/Workstation VMCI Module Memory Leak denial of service

A vulnerability, which was classified as problematic, was found in VMware ESXi, Fusion and Workstation (version unknown). Affected is some unknown functionality of the component VMCI Module. Upgrading eliminates this vulnerability.
Auteur: VulDB

VMware ESXi/Fusion/Workstation Shader Crash denial of service

A vulnerability, which was classified as problematic, has been found in VMware ESXi, Fusion and Workstation (unknown version). This issue affects an unknown functionality of the component Shader Handler. Upgrading eliminates this vulnerability.
Auteur: VulDB

VMware Fusion TOCTOU privilege escalation [CVE-2020-3957]

A vulnerability classified as critical was found in VMware Fusion, Remote Console for Mac and Horizon Client for Mac (the affected version is unknown). This vulnerability affects an unknown function. Upgrading eliminates this vulnerability.
Auteur: VulDB

Huawei CloudEngine 6800/CloudEngine 12800 Memory Leak denial of service

A vulnerability classified as problematic has been found in Huawei CloudEngine 6800 and CloudEngine 12800 (Cloud Software) (the affected version unknown). This affects some unknown processing. There is no information about possible...
Auteur: VulDB

Huawei Honor 9X prior 9.1.1.172(C00E170R8P1) Clock weak authentication

A vulnerability was found in Huawei Honor 9X. It has been rated as problematic. Affected by this issue is an unknown code block of the component Clock Handler. Upgrading to version 9.1.1.172(C00E170R8P1) eliminates this vulnerability.
Auteur: VulDB

Huawei E6878-370 10.0.3.1(H557SP27C233)/10.0.3.1(H563SP1C00) Message Stack-based memory corruption

A vulnerability was found in Huawei E6878-370 10.0.3.1(H557SP27C233)/10.0.3.1(H563SP1C00). It has been declared as critical. Affected by this vulnerability is an unknown code. There is no information about possible countermeasures known. It may...
Auteur: VulDB

Huawei Mate 20 prior 10.0.0.195(SP31C00E74R3P8) Digital Balance privilege escalation

A vulnerability was found in Huawei Mate 20 (Smartphone Operating System). It has been classified as critical. Affected is an unknown part of the component Digital Balance. Upgrading to version 10.0.0.195(SP31C00E74R3P8) eliminates this...
Auteur: VulDB

Huawei Mate 10 prior 10.0.0.143(C00E143R2P4) Voice Assistant information disclosure

A vulnerability was found in Huawei Mate 10 (Smartphone Operating System) and classified as problematic. This issue affects some unknown functionality of the component Voice Assistant. Upgrading to version 10.0.0.143(C00E143R2P4) eliminates this...
Auteur: VulDB

Huawei P30 prior 10.1.0.135(C00E135R2P11) NFC privilege escalation

A vulnerability has been found in Huawei P30 (Smartphone Operating System) and classified as critical. This vulnerability affects an unknown functionality of the component NFC Handler. Upgrading to version 10.1.0.135(C00E135R2P11) eliminates this...
Auteur: VulDB

Huawei Mate 20 prior 10.0.0.185(C00E74R3P8) ADB Mode privilege escalation

A vulnerability, which was classified as critical, was found in Huawei Mate 20 (Smartphone Operating System). This affects an unknown function of the component ADB Mode. Upgrading to version 10.0.0.185(C00E74R3P8) eliminates this vulnerability.
Auteur: VulDB

bbPress Plugin up to 2.6.4 on WordPress New User Registration privilege escalation

A vulnerability, which was classified as critical, has been found in bbPress Plugin up to 2.6.4 on WordPress (WordPress Plugin). Affected by this issue is some unknown processing of the component New User Registration. Upgrading to version 2.6.5...
Auteur: VulDB
12345678910Last

Événements SSI