lundi 6 juillet 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

IBM API Connect up to 2018.4.1.11 weak encryption [CVE-2020-4452]

A vulnerability was found in IBM API Connect up to 2018.4.1.11 (Automation Software). It has been declared as problematic. This vulnerability affects an unknown code. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

coTURN up to 4.5.1.2 STUN/TURN Response information disclosure

A vulnerability was found in coTURN up to 4.5.1.2. It has been classified as problematic. This affects an unknown part of the component STUN/TURN Handler. Upgrading to version 4.5.1.3 eliminates this vulnerability.
Auteur: VulDB

OAuth2 Proxy prior 6.0.0 Open Redirect [CVE-2020-4037]

A vulnerability was found in OAuth2 Proxy (Firewall Software) and classified as problematic. Affected by this issue is some unknown functionality. Upgrading to version 6.0.0 eliminates this vulnerability.
Auteur: VulDB

Linux Kernel up to 5.7.6 usbtest.c usbtest_disconnect denial of service

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.7.6 (Operating System). Affected is the function usbtest_disconnect of the file drivers/usb/misc/usbtest.c. There is no information about possible...
Auteur: VulDB

OpenJPEG up to 2.3.1 jp2/opj_decompress.c opj_image_destroy memory corruption

A vulnerability, which was classified as critical, has been found in OpenJPEG up to 2.3.1 (Image Processing Software). This issue affects the function opj_image_destroy of the file jp2/opj_decompress.c. There is no information about possible...
Auteur: VulDB

ASRock RGB Driver AsrDrv103.sys Request unknown vulnerability

A vulnerability classified as critical was found in ASRock RGB Driver (Hardware Driver Software) (the affected version is unknown). This vulnerability affects an unknown code block in the library AsrDrv103.sys. There is no information about...
Auteur: VulDB

thingsSDK WiFi Scanner 1.0.1 Argument Code Injection privilege escalation

A vulnerability classified as critical has been found in thingsSDK WiFi Scanner 1.0.1 (Wireless LAN Software). This affects an unknown code. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 xmpp_config.py information disclosure

A vulnerability was found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 (Cloud Software). It has been rated as problematic. Affected by this issue is an unknown part of the file axess/opt/axXMPPHandler/config/xmpp_config.py. There is no information...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 Default Credentials weak authentication

A vulnerability was found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 (Cloud Software). It has been declared as problematic. Affected by this vulnerability is some unknown functionality. There is no information about possible countermeasures known....
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 Password Default Credentials weak authentication

A vulnerability was found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 (Cloud Software). It has been classified as problematic. Affected is an unknown functionality. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 weak authentication [CVE-2020-15321]

A vulnerability was found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 (Cloud Software) and classified as problematic. This issue affects an unknown function. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 weak authentication [CVE-2020-15320]

A vulnerability has been found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 (Cloud Software) and classified as problematic. This vulnerability affects some unknown processing. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 RSA SSH Key /opt/mysql weak authentication

A vulnerability, which was classified as problematic, was found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 (Cloud Software). This affects an unknown code block of the file /opt/mysql of the component RSA SSH Key Handler. There is no information...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 DSA SSH Key /opt/mysql weak authentication

A vulnerability, which was classified as problematic, has been found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 (Cloud Software). Affected by this issue is an unknown code of the file /opt/mysql of the component DSA SSH Key Handler. There is no...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 RSA SSH Key /opt/axess weak authentication

A vulnerability classified as problematic was found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 (Cloud Software). Affected by this vulnerability is an unknown part of the file /opt/axess of the component RSA SSH Key Handler. There is no information...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 ECDSA SSH Key /opt/axess weak authentication

A vulnerability classified as problematic has been found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 (Cloud Software). Affected is some unknown functionality of the file /opt/axess of the component ECDSA SSH Key Handler. There is no information...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 DSA SSH Key /opt/axess weak authentication

A vulnerability was found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1. It has been rated as problematic. This issue affects an unknown functionality of the file /opt/axess of the component DSA SSH Key Handler. There is no information about possible...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 RSA SSH Key weak authentication

A vulnerability was found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1. It has been declared as problematic. This vulnerability affects an unknown function of the component RSA SSH Key Handler. There is no information about possible countermeasures...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 ECDSA SSH Key weak encryption

A vulnerability was found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 (Cloud Software). It has been classified as problematic. This affects some unknown processing of the component ECDSA SSH Key Handler. There is no information about possible...
Auteur: VulDB

ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 DSA SSH Key weak encryption

A vulnerability was found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 (Cloud Software) and classified as problematic. Affected by this issue is an unknown code block of the component DSA SSH Key Handler. There is no information about possible...
Auteur: VulDB

Sophos XG Firewall up to 17.5 MR12 HTTPS Bookmark Code Execution memory corruption

A vulnerability has been found in Sophos XG Firewall up to 17.5 MR12 (Firewall Software) and classified as critical. Affected by this vulnerability is an unknown code of the component HTTPS Bookmark Handler. Applying the patch HF062020 is able to...
Auteur: VulDB

iBall WRB303N Remote Management cross site request forgery [CVE-2020-15043]

A vulnerability, which was classified as problematic, was found in iBall WRB303N (version unknown). Affected is an unknown part of the component Remote Management. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

NeDi 1.9C pwsec.php pw privilege escalation

A vulnerability, which was classified as critical, has been found in NeDi 1.9C. This issue affects some unknown functionality of the file pwsec.php. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

NeDi 1.9C inc/libmisc.php sanitize() sta cross site scripting

A vulnerability classified as problematic was found in NeDi 1.9C. This vulnerability affects the function sanitize() in the library inc/libmisc.php. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

NeDi 1.9C System-Snapshot.php psw privilege escalation

A vulnerability classified as critical has been found in NeDi 1.9C. This affects an unknown function of the file System-Snapshot.php. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB
First567891011121314Last

Événements SSI