Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

JetBrains IntelliJ IDEA prior 2021.1 allocation of resources

A vulnerability was found in JetBrains IntelliJ IDEA. It has been rated as problematic. Affected by this issue is an unknown functionality. Upgrading to version 2021.1 eliminates this vulnerability.
Auteur: VulDB

CERTFR-2021-AVI-358 : Vulnérabilité dans VMware ONE UEM console (11 mai 2021)

Une vulnérabilité a été découverte dans VMware ONE UEM console. Elle permet à un attaquant de provoquer une injection de code indirecte à distance (XSS).

Auteur: Cert FR

CERTFR-2021-AVI-357 : [SCADA] Multiples vulnérabilités dans les produits Siemens (11 mai 2021)

De multiples vulnérabilités ont été découvertes dans les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, une atteinte à la confidentialité des données et une élévation de privilèges.
Auteur: Cert FR

CERTFR-2021-AVI-356 : Multiples vulnérabilités dans les produits SAP (11 mai 2021)

De multiples vulnérabilités ont été découvertes dans les produits SAP. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité...
Auteur: Cert FR

CERTFR-2021-AVI-355 : Multiples vulnérabilités dans Google Chrome (11 mai 2021)

De multiples vulnérabilités ont été découvertes dans Google Chrome. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Auteur: Cert FR

CERTFR-2021-ACT-018 : Bulletin d’actualité CERTFR-2021-ACT-018 (10 mai 2021)

Ce bulletin d’actualité du CERT-FR revient sur les vulnérabilités significatives de la semaine passée pour souligner leurs criticités. Il ne remplace pas …
Auteur: Cert FR

Craft CMS up to 3.6.12 cross site scripting [CVE-2021-32470]

A vulnerability was found in Craft CMS up to 3.6.12 (Content Management System). It has been declared as problematic. This vulnerability affects an unknown code block. Upgrading to version 3.6.13 eliminates this vulnerability. The upgrade is...
Auteur: VulDB

Tenda AC11 up to 02.03.01.104_CN POST Request /goform/setportList stack-based overflow

A vulnerability was found in Tenda AC11 up to 02.03.01.104_CN. It has been classified as critical. This affects an unknown code of the file /goform/setportList of the component POST Request Handler. There is no information about possible...
Auteur: VulDB

Tenda AC11 up to 02.03.01.104_CN POST Request /goform/setVLAN stack-based overflow

A vulnerability was found in Tenda AC11 up to 02.03.01.104_CN and classified as critical. Affected by this issue is an unknown part of the file /goform/setVLAN of the component POST Request Handler. There is no information about possible...
Auteur: VulDB

Tenda AC11 up to 02.03.01.104_CN POST Request /gofrom/setwanType stack-based overflow

A vulnerability has been found in Tenda AC11 up to 02.03.01.104_CN and classified as critical. Affected by this vulnerability is some unknown functionality of the file /gofrom/setwanType of the component POST Request Handler. There is no...
Auteur: VulDB

Tenda AC11 up to 02.03.01.104_CN POST Request /goform/setmac stack-based overflow

A vulnerability, which was classified as critical, was found in Tenda AC11 up to 02.03.01.104_CN. Affected is an unknown functionality of the file /goform/setmac of the component POST Request Handler. There is no information about possible...
Auteur: VulDB

Foxit Reader 10.1.1.37576 U3D Object out-of-bounds write

A vulnerability, which was classified as critical, has been found in Foxit Reader 10.1.1.37576 (Document Reader Software). This issue affects an unknown function of the component U3D Object Handler. There is no information about possible...
Auteur: VulDB

Foxit Reader 10.1.3.37598 U3D File out-of-bounds read

A vulnerability classified as problematic was found in Foxit Reader 10.1.3.37598 (Document Reader Software). This vulnerability affects some unknown processing of the component U3D File Handler. There is no information about possible...
Auteur: VulDB

Foxit Reader 10.1.3.37598 U3D Object out-of-bounds read

A vulnerability classified as problematic has been found in Foxit Reader 10.1.3.37598 (Document Reader Software). This affects an unknown code block of the component U3D Object Handler. There is no information about possible countermeasures...
Auteur: VulDB

Foxit Reader 10.1.3.37598 U3D Object out-of-bounds write

A vulnerability was found in Foxit Reader 10.1.3.37598 (Document Reader Software). It has been rated as critical. Affected by this issue is an unknown code of the component U3D Object Handler. There is no information about possible...
Auteur: VulDB

Foxit Reader 10.1.1.37576 app.media Object type confusion

A vulnerability was found in Foxit Reader 10.1.1.37576 (Document Reader Software). It has been declared as critical. Affected by this vulnerability is an unknown part of the component app.media Object Handler. There is no information about...
Auteur: VulDB

Foxit Reader 10.1.1.37576 Decimal Element heap-based overflow

A vulnerability was found in Foxit Reader 10.1.1.37576 (Document Reader Software). It has been classified as critical. Affected is some unknown functionality of the component Decimal Element Handler. There is no information about possible...
Auteur: VulDB

Foxit Reader 10.1.1.37576 XFA Form out-of-bounds write

A vulnerability was found in Foxit Reader 10.1.1.37576 (Document Reader Software) and classified as critical. This issue affects an unknown functionality of the component XFA Form Handler. There is no information about possible countermeasures...
Auteur: VulDB

Foxit Reader 10.1.1.37576 U3D Object out-of-bounds write

A vulnerability has been found in Foxit Reader 10.1.1.37576 (Document Reader Software) and classified as critical. This vulnerability affects an unknown function of the component U3D Object Handler. There is no information about possible...
Auteur: VulDB

SIF up to 1.2.2 go.uuid siftool.New random values

A vulnerability, which was classified as problematic, was found in SIF up to 1.2.2. This affects the function siftool.New of the file github.com/satori/go.uuid. Upgrading to version 1.2.3 eliminates this vulnerability.
Auteur: VulDB

Foxit Reader 10.1.1.37576 U3D Object out-of-bounds read

A vulnerability, which was classified as problematic, has been found in Foxit Reader 10.1.1.37576 (Document Reader Software). Affected by this issue is an unknown code block of the component U3D Object Handler. There is no information about...
Auteur: VulDB

Foxit Reader 10.1.1.37576 U3D Object use after free

A vulnerability classified as critical was found in Foxit Reader 10.1.1.37576 (Document Reader Software). Affected by this vulnerability is an unknown code of the component U3D Object Handler. There is no information about possible...
Auteur: VulDB

Foxit Reader 10.1.1.37576 U3D Object out-of-bounds read

A vulnerability classified as problematic has been found in Foxit Reader 10.1.1.37576 (Document Reader Software). Affected is an unknown part of the component U3D Object Handler. There is no information about possible countermeasures known. It...
Auteur: VulDB

Foxit Reader 10.1.3.37598 U3D File out-of-bounds read

A vulnerability was found in Foxit Reader 10.1.3.37598 (Document Reader Software). It has been rated as problematic. This issue affects some unknown functionality of the component U3D File Handler. There is no information about possible...
Auteur: VulDB

Foxit Reader 10.1.3.37598 U3D Object out-of-bounds read

A vulnerability was found in Foxit Reader 10.1.3.37598 (Document Reader Software). It has been declared as problematic. This vulnerability affects an unknown functionality of the component U3D Object Handler. There is no information about...
Auteur: VulDB
First6789101112131415Last

Événements SSI