samedi 30 mai 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Wireshark up to 2.4.11 ENIP Dissector packet-enip.c Packet denial of service

A vulnerability was found in Wireshark up to 2.4.11. It has been rated as problematic. This issue affects some processing of the file epan/dissectors/packet-enip.c of the component ENIP Dissector. The manipulation as part of a Packet leads to a...
Auteur: VulDB

FrontAccounting 2.4.6 class.reflines_db.inc filterType sql injection

A vulnerability was found in FrontAccounting 2.4.6. It has been declared as critical. This vulnerability affects a code block of the file includes/db/class.reflines_db.inc. The manipulation of the argument filterType with an unknown input leads...
Auteur: VulDB

Wireshark up to 2.6.5 ISAKMP Dissector packet-isakmp.c Packet denial of service

A vulnerability was found in Wireshark. It has been classified as problematic. This affects code of the file epan/dissectors/packet-isakmp.c of the component ISAKMP Dissector. The manipulation as part of a Packet leads to a denial of service...
Auteur: VulDB

Wireshark up to 2.6.5 RTSE Dissector epan/charsets.c get_t61_string denial of service

A vulnerability was found in Wireshark and classified as problematic. Affected by this issue is the function get_t61_string of the file epan/charsets.c of the component RTSE Dissector. The manipulation with an unknown input leads to a denial of...
Auteur: VulDB

CERTFR-2019-ACT-001 : Bulletin d’actualité CERTFR-2019-ACT-001 (07 janvier 2019)

Certains serveurs construits par HP disposent d’un composant implémentant un BMC (Baseboard Management Controller) nommé iLO (Integrated Lights-Out). Ce composant …
Auteur: Cert FR

Dokan up to 1.2.0.1000 Driver dokan1.sys memory corruption

A vulnerability classified as critical was found in Dokan up to 1.2.0.1000. This vulnerability affects the functionality in the library dokan1.sys of the component Driver. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Apache Karaf up to 4.1.6/4.2.1 Features Deployer XMLInputFactory XML External Entity

A vulnerability classified as critical has been found in Apache Karaf up to 4.1.6/4.2.1. This affects the function XMLInputFactory of the component Features Deployer. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

NetApp OnCommand Unified Manager for 7-Mode up to 5.2.3 Cookie Man-in-the-Middle weak authentication

A vulnerability, which was classified as critical, has been found in NetApp OnCommand Unified Manager for 7-Mode up to 5.2.3. This issue affects some functionality of the component Cookie Handler. The manipulation with an unknown input leads to...
Auteur: VulDB

EARCLINK ESPCMS-P8 index.php verify_key sql injection

A vulnerability was found in EARCLINK ESPCMS-P8 (the affected version unknown). It has been classified as critical. This affects code of the file install_pack/index.php?ac=Member&at=verifyAccount. The manipulation of the argument verify_key as...
Auteur: VulDB

Apache Thrift Java Client Library up to 0.11.0 SASL Negotiation org.apache.thrift.transport.TSaslTransport unknown vulnerability

A vulnerability was found in Apache Thrift Java Client Library up to 0.11.0 and classified as critical. Affected by this issue is the function org.apache.thrift.transport.TSaslTransport of the component SASL Negotiation. The impact remains...
Auteur: VulDB

Apache Thrift Node.js Static Web Server up to 0.11.0 directory traversal

A vulnerability has been found in Apache Thrift Node.js Static Web Server up to 0.11.0 and classified as critical. Affected by this vulnerability is a functionality. The manipulation with an unknown input leads to a directory traversal...
Auteur: VulDB

Linux Kernel up to 4.19.13 Page Cache mm/mincore.c mincore() information disclosure

A vulnerability was found in Linux Kernel up to 4.19.13. It has been declared as problematic. This vulnerability affects the function mincore() of the file mm/mincore.c of the component Page Cache Handler. The manipulation with an unknown input...
Auteur: VulDB

Google Android Qualcomm Component unknown vulnerability [CVE-2018-13888]

A vulnerability classified as problematic was found in Google Android (Smartphone Operating System). This vulnerability affects the functionality of the component Qualcomm Component. The impact remains unknown. The weakness was presented ...
Auteur: VulDB

Google Android Qualcomm Component unknown vulnerability [CVE-2018-11888]

A vulnerability classified as problematic has been found in Google Android (Smartphone Operating System). This affects an unknown function of the component Qualcomm Component. The impact remains unknown. The weakness was disclosed 01/07/2019 as...
Auteur: VulDB

Google Android Qualcomm Component unknown vulnerability [CVE-2018-11847]

A vulnerability was found in Google Android (Smartphone Operating System). It has been rated as problematic. Affected by this issue is some processing of the component Qualcomm Component. The impact remains unknown. The weakness was released ...
Auteur: VulDB

Google Android GPS unknown vulnerability [CVE-2018-13889]

A vulnerability was found in Google Android (Smartphone Operating System). It has been declared as problematic. Affected by this vulnerability is a code block of the component GPS. The impact remains unknown. The weakness was published ...
Auteur: VulDB

Google Android Qualcomm Data HLOS LNX unknown vulnerability [CVE-2018-12014]

A vulnerability was found in Google Android (Smartphone Operating System). It has been classified as problematic. Affected is code of the component Qualcomm Data HLOS LNX. The impact remains unknown. The weakness was shared 01/07/2019 as Android...
Auteur: VulDB

Google Android Qualcomm Audio unknown vulnerability [CVE-2018-11962]

A vulnerability was found in Google Android (Smartphone Operating System) and classified as problematic. This issue affects a part of the component Qualcomm Audio. The impact remains unknown. The weakness was presented 01/07/2019 as Android...
Auteur: VulDB

Google Android NVIDIA Dragon BSP privilege escalation [CVE-2018-6241]

A vulnerability has been found in Google Android (Smartphone Operating System) and classified as critical. This vulnerability affects a functionality of the component NVIDIA Dragon BSP. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

Google Android EXT4 File System privilege escalation [CVE-2018-10877]

A vulnerability, which was classified as critical, was found in Google Android (Smartphone Operating System). This affects a function of the component EXT4 File System. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Google Android Memory Manager privilege escalation [CVE-2018-17182]

A vulnerability, which was classified as critical, has been found in Google Android (Smartphone Operating System). Affected by this issue is some functionality of the component Memory Manager. The manipulation with an unknown input leads to a...
Auteur: VulDB

Google Android TLB privilege escalation [CVE-2018-18281]

A vulnerability classified as critical was found in Google Android (Smartphone Operating System). Affected by this vulnerability is the functionality of the component TLB. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Google Android File System privilege escalation [CVE-2018-13405]

A vulnerability classified as critical has been found in Google Android (Smartphone Operating System). Affected is an unknown function of the component File System. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Google Android EXT4 File System privilege escalation [CVE-2018-10882]

A vulnerability was found in Google Android (Smartphone Operating System). It has been rated as critical. This issue affects some processing of the component EXT4 File System. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

Google Android EXT4 File System privilege escalation [CVE-2018-10880]

A vulnerability was found in Google Android (Smartphone Operating System). It has been declared as critical. This vulnerability affects a code block of the component EXT4 File System. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB
First1010101110121013101410151016101710181019Last

Événements SSI