mercredi 8 avril 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Apple macOS up to 10.14.0 MediaRemote Sandbox privilege escalation

A vulnerability was found in Apple macOS up to 10.14.0. It has been declared as critical. This vulnerability affects an unknown function of the component MediaRemote. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Apple macOS up to 10.14.0 mDNSOffloadUserClient memory corruption

A vulnerability was found in Apple macOS up to 10.14.0. It has been classified as critical. This affects an unknown function of the component mDNSOffloadUserClient. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Apple macOS up to 10.14.0 Mail spoofing

A vulnerability was found in Apple macOS up to 10.14.0 and classified as critical. Affected by this issue is an unknown function of the component Mail. The manipulation with an unknown input leads to a spoofing vulnerability. Using CWE to...
Auteur: VulDB

Apple macOS up to 10.14.0 Login Window denial of service

A vulnerability has been found in Apple macOS up to 10.14.0 and classified as problematic. Affected by this vulnerability is an unknown function of the component Login Window. The manipulation with an unknown input leads to a denial of service...
Auteur: VulDB

Apple macOS up to 10.14.0 Kernel memory corruption

A vulnerability, which was classified as critical, was found in Apple macOS up to 10.14.0. Affected is an unknown function of the component Kernel. The manipulation with an unknown input leads to a memory corruption vulnerability. CWE is...
Auteur: VulDB

Apple macOS up to 10.14.0 Kernel memory corruption

A vulnerability, which was classified as critical, has been found in Apple macOS up to 10.14.0. This issue affects an unknown function of the component Kernel. The manipulation with an unknown input leads to a memory corruption vulnerability....
Auteur: VulDB

CERTFR-2018-AVI-521 : Vulnérabilité dans SCADA Schneider Electric Software Update (29 octobre 2018)

Une vulnérabilité a été découverte dans SCADA Schneider Electric Software Update. Elle permet à un attaquant de provoquer une exécution de code arbitraire à distance.

Auteur: Cert FR

CERTFR-2018-AVI-521 : Vulnérabilité dans SCADA Schneider Electric Software Update (29 octobre 2018)

Une vulnérabilité a été découverte dans SCADA Schneider Electric Software Update. Elle permet à un attaquant de provoquer une exécution de code arbitraire à distance.

Auteur: Cert FR

CERTFR-2018-AVI-520 : Vulnérabilité dans Citrix XenServer (29 octobre 2018)

Une vulnérabilité a été découverte dans Citrix XenServer. Elle permet à un attaquant de provoquer un déni de service à distance.

Auteur: Cert FR

CERTFR-2018-AVI-520 : Vulnérabilité dans Citrix XenServer (29 octobre 2018)

Une vulnérabilité a été découverte dans Citrix XenServer. Elle permet à un attaquant de provoquer un déni de service à distance.

Auteur: Cert FR

CERTFR-2018-AVI-519 : Multiples vulnérabilités dans Google Chrome OS (29 octobre 2018)

De multiples vulnérabilités ont été découvertes dans Google Chrome OS. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Auteur: Cert FR

CERTFR-2018-AVI-518 : Multiples vulnérabilités dans Squid (29 octobre 2018)

De multiples vulnérabilités ont été découvertes dans Squid . Elles permettent à un attaquant de provoquer un déni de service à distance et une injection de code indirecte à distance (XSS).

Auteur: Cert FR

Tenda AC9/AC18 POST Request __fastcall usbName privilege escalation

A vulnerability was found in Tenda AC9 and AC18 (the affected version is unknown). It has been rated as critical. Affected by this issue is the function __fastcall of the component POST Request Handler. The manipulation of the argument usbName...
Auteur: VulDB

YUNUCMS 1.1.5 editsitelink cross site scripting

A vulnerability was found in YUNUCMS 1.1.5. It has been classified as problematic. Affected is an unknown function of the file admin/sitelink/editsitelink?id=16. The manipulation with an unknown input leads to a cross site scripting...
Auteur: VulDB

YUNUCMS 1.1.5 editbanner cross site scripting

A vulnerability was found in YUNUCMS 1.1.5 and classified as problematic. This issue affects an unknown function of the file admin/banner/editbanner?id=20. The manipulation with an unknown input leads to a cross site scripting vulnerability....
Auteur: VulDB

YUNUCMS 1.1.5 editcategory cross site scripting

A vulnerability has been found in YUNUCMS 1.1.5 and classified as problematic. This vulnerability affects an unknown function of the file index.php/admin/category/editcategory?id=73. The manipulation with an unknown input leads to a cross site...
Auteur: VulDB

YUNUCMS 1.1.5 110000 cross site scripting

A vulnerability, which was classified as problematic, was found in YUNUCMS 1.1.5. This affects an unknown function of the file index.php/admin/area/editarea/id/110000. The manipulation with an unknown input leads to a cross site scripting...
Auteur: VulDB

YUNUCMS 1.1.5 editcontent cross site scripting

A vulnerability, which was classified as problematic, has been found in YUNUCMS 1.1.5. Affected by this issue is an unknown function of the file admin/content/editcontent?id=29&gopage=1. The manipulation with an unknown input leads to a cross...
Auteur: VulDB

YUNUCMS 1.1.5 admin/link/editlink cross site scripting

A vulnerability classified as problematic was found in YUNUCMS 1.1.5. Affected by this vulnerability is an unknown function of the file admin/link/editlink?id=5. The manipulation with an unknown input leads to a cross site scripting...
Auteur: VulDB

YUNUCMS 1.1.5 basic cross site scripting

A vulnerability classified as problematic has been found in YUNUCMS 1.1.5. Affected is an unknown function of the file index.php/admin/system/basic. The manipulation with an unknown input leads to a cross site scripting vulnerability. CWE is...
Auteur: VulDB

gThumb up to 3.6.2 dlg-contact-sheet.c add_themes_from_dir memory corruption

A vulnerability was found in gThumb up to 3.6.2. It has been rated as critical. This issue affects the function add_themes_from_dir of the file dlg-contact-sheet.c. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Eleanor CMS up to 2015-03-19 ajax.php query cross site scripting

A vulnerability was found in Eleanor CMS up to 2015-03-19. It has been declared as problematic. This vulnerability affects an unknown function of the file ajax.php. The manipulation of the argument query with an unknown input leads to a cross...
Auteur: VulDB

WUZHI CMS 4.1.0 index.php cross site request forgery

A vulnerability was found in WUZHI CMS 4.1.0 and classified as problematic. Affected by this issue is an unknown function of the file index.php?m=member&f=index&v=edit&uid=1. The manipulation with an unknown input leads to a cross site request...
Auteur: VulDB

WUZHI CMS 4.1.0 index.php cross site request forgery

A vulnerability has been found in WUZHI CMS 4.1.0 and classified as problematic. Affected by this vulnerability is an unknown function of the file index.php?m=core&f=panel&v=edit_info. The manipulation with an unknown input leads to a cross site...
Auteur: VulDB

PhpTpoint Hospital Management System index.php rno sql injection

A vulnerability was found in PhpTpoint Hospital Management System (the affected version is unknown). It has been declared as critical. Affected by this vulnerability is an unknown function of the file index.php. The manipulation of the argument...
Auteur: VulDB
First1007100810091010101110121013101410151016Last

Événements SSI