lundi 6 juillet 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Baxter PrismaFlex/PrisMax Default Credentials weak authentication

A vulnerability was found in Baxter PrismaFlex and PrisMax (version unknown). It has been classified as critical. Affected is an unknown function. Upgrading eliminates this vulnerability.
Auteur: VulDB

Palo Alto PAN-OS up to 8.0.x/8.1.14/9.0.8/9.1.2 SAML Authentication weak authentication

A vulnerability has been found in Palo Alto PAN-OS up to 8.0.x/8.1.14/9.0.8/9.1.2 (Firewall Software) and classified as very critical. Affected by this vulnerability is an unknown functionality of the component SAML Authentication. Upgrading to...
Auteur: VulDB

Baxter ExactaMix EM 1200/ExactaMix EM 2400 USB Interface privilege escalation

A vulnerability has been found in Baxter ExactaMix EM 1200 and ExactaMix EM 2400 (the affected version is unknown) and classified as critical. This vulnerability affects an unknown code block of the component USB Interface. There is no...
Auteur: VulDB

Baxter ExactaMix EM 1200/ExactaMix EM 2400 Startup Script privilege escalation

A vulnerability, which was classified as critical, was found in Baxter ExactaMix EM 1200 and ExactaMix EM 2400 (the affected version unknown). This affects an unknown code of the component Startup Script Handler. There is no information about...
Auteur: VulDB

Baxter ExactaMix EM 1200/ExactaMix EM 2400 Default Credentials weak authentication

A vulnerability, which was classified as critical, has been found in Baxter ExactaMix EM 1200 and ExactaMix EM 2400 (affected version not known). Affected by this issue is an unknown part. There is no information about possible countermeasures...
Auteur: VulDB

Baxter ExactaMix EM 1200/ExactaMix EM 2400 information disclosure

A vulnerability was found in Baxter ExactaMix EM 1200 and ExactaMix EM 2400 (unknown version) and classified as problematic. This issue affects some unknown processing. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Baxter ExactaMix EM 1200/ExactaMix EM 2400 Default Admin Password weak authentication

A vulnerability classified as critical was found in Baxter ExactaMix EM 1200 and ExactaMix EM 2400 (affected version unknown). Affected by this vulnerability is some unknown functionality. There is no information about possible countermeasures...
Auteur: VulDB

Baxter ExactaMix EM 1200/ExactaMix EM 2400 Cleartext weak encryption

A vulnerability classified as problematic has been found in Baxter ExactaMix EM 1200 and ExactaMix EM 2400 (version unknown). Affected is an unknown functionality. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

SuSE osc privilege escalation [CVE-2019-3681]

A vulnerability was found in SuSE SUSE Linux Enterprise Module for Development Tools, Linux Enterprise Software Development Kit, openSUSE Leap and openSUSE Factory (unknown version). It has been rated as critical. This issue affects an unknown...
Auteur: VulDB

Reportexpress ProPlus Config File Remote Code Execution [CVE-2019-19160]

A vulnerability was found in Reportexpress ProPlus (the affected version is unknown). It has been declared as critical. This vulnerability affects some unknown processing of the component Config File Handler. There is no information about...
Auteur: VulDB

BIOTRONIK CardioMessenger II Network Authentication Credentials weak encryption

A vulnerability was found in BIOTRONIK CardioMessenger II (the affected version unknown). It has been classified as problematic. This affects an unknown code block of the component Network Authentication. There is no information about possible...
Auteur: VulDB

BIOTRONIK CardioMessenger II weak encryption [CVE-2019-18254]

A vulnerability was found in BIOTRONIK CardioMessenger II (affected version not known) and classified as problematic. Affected by this issue is an unknown code. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

BIOTRONIK CardioMessenger II Reuse weak authentication [CVE-2019-18252]

A vulnerability has been found in BIOTRONIK CardioMessenger II (affected version unknown) and classified as problematic. Affected by this vulnerability is an unknown part. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

BIOTRONIK CardioMessenger II weak encryption [CVE-2019-18248]

A vulnerability, which was classified as problematic, was found in BIOTRONIK CardioMessenger II (version unknown). Affected is some unknown functionality. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

BIOTRONIK CardioMessenger II weak authentication [CVE-2019-18246]

A vulnerability, which was classified as critical, has been found in BIOTRONIK CardioMessenger II (Messaging Software) (unknown version). This issue affects an unknown functionality. There is no information about possible countermeasures known....
Auteur: VulDB

Brocade Network Advisor 14.3.1 JBoss Administration Interface Default Credentials privilege escalation

A vulnerability classified as critical was found in Brocade Network Advisor 14.3.1. This vulnerability affects an unknown function of the component JBoss Administration Interface. There is no information about possible countermeasures known. It...
Auteur: VulDB

openSUSE Leap hylafax+ Package privilege escalation [CVE-2020-8024]

A vulnerability classified as critical has been found in openSUSE Leap (the affected version unknown). This affects some unknown processing of the component hylafax+ Package. Upgrading eliminates this vulnerability.
Auteur: VulDB

SuSE Enterprise Storage Tomcat Package privilege escalation [CVE-2020-8022]

A vulnerability was found in SuSE Enterprise Storage, Linux Enterprise Server, Linux Enterprise Server for SAP, OpenStack Cloud and OpenStack Cloud Crowbar (Operating System). It has been rated as critical. Affected by this issue is an unknown...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 7.13.8/8.4.1 Issue Navigator Basic Search cross site scripting

A vulnerability was found in Atlassian JIRA Server and Data Center up to 7.13.8/8.4.1 (Bug Tracking Software). It has been declared as problematic. Affected by this vulnerability is an unknown code of the component Issue Navigator Basic Search....
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 7.13.8/8.4.1 UserPickerBrowser.jspa denial of service

A vulnerability was found in Atlassian JIRA Server and Data Center up to 7.13.8/8.4.1 (Bug Tracking Software). It has been classified as problematic. Affected is an unknown part of the file UserPickerBrowser.jspa. Upgrading to version 7.13.9 or...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 7.13.8/8.4.1 Convert Sub-Task to Issue Page information disclosure

A vulnerability was found in Atlassian JIRA Server and Data Center up to 7.13.8/8.4.1 (Bug Tracking Software) and classified as problematic. This issue affects some unknown functionality of the component Convert Sub-Task to Issue Page. Upgrading...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 7.13.8/8.4.1 cross site request forgery

A vulnerability has been found in Atlassian JIRA Server and Data Center up to 7.13.8/8.4.1 (Bug Tracking Software) and classified as problematic. This vulnerability affects an unknown functionality. Upgrading to version 7.13.9 or 8.4.2 eliminates...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 7.6.16/7.13.8/8.4.1 Comment information disclosure

A vulnerability, which was classified as problematic, was found in Atlassian JIRA Server and Data Center up to 7.6.16/7.13.8/8.4.1 (Bug Tracking Software). This affects an unknown function of the component Comment Handler. Upgrading to version...
Auteur: VulDB

LibRaw up to 0.20-Beta2 metadata\exif_gps.cpp parse_exif() tiff_nifds memory corruption

A vulnerability, which was classified as critical, has been found in LibRaw up to 0.20-Beta2 (Image Processing Software). Affected by this issue is the function parse_exif() of the file metadata\exif_gps.cpp. Upgrading to version 0.20-Beta3...
Auteur: VulDB

Nexos Theme up to 1.7 on WordPress top-map/ search_location cross site scripting

A vulnerability classified as problematic was found in Nexos Theme up to 1.7 on WordPress (WordPress Plugin). Affected by this vulnerability is an unknown code block of the file top-map/. There is no information about possible countermeasures...
Auteur: VulDB
First6789101112131415Last

Événements SSI