jeudi 19 septembre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Dell EMC RSA Identity Governance and Lifecycle up to 7.1.0 P07 Access Request Module Stored cross site scripting

A vulnerability was found in Dell EMC RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance up to 7.1.0 P07. It has been classified as problematic. This affects some unknown processing of the component Access Request Module....
Auteur: VulDB

Dell EMC RSA Identity Governance and Lifecycle up to 7.1.0 P07 Back-End Database sql injection

A vulnerability was found in Dell EMC RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance up to 7.1.0 P07 and classified as critical. Affected by this issue is an unknown code block of the component Back-End Database....
Auteur: VulDB

Dell EMC RSA Identity Governance and Lifecycle up to 7.1.0 P07 Groovy Script Code Injection privilege escalation

A vulnerability has been found in Dell EMC RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance up to 7.1.0 P07 and classified as critical. Affected by this vulnerability is an unknown code of the component Groovy Script...
Auteur: VulDB

McAfee Web Gateway up to 7.8.2.12 Scanning Proxy denial of service

A vulnerability, which was classified as problematic, was found in McAfee Web Gateway up to 7.8.2.12 (Firewall Software). Affected is an unknown part of the component Scanning Proxy. Upgrading to version 7.8.2.13 eliminates this vulnerability.
Auteur: VulDB

McAfee Web Gateway up to 7.8.2.12 Scanning Proxy denial of service

A vulnerability, which was classified as problematic, has been found in McAfee Web Gateway up to 7.8.2.12 (Firewall Software). This issue affects some unknown functionality of the component Scanning Proxy. Upgrading to version 7.8.2.13 eliminates...
Auteur: VulDB

Ocean Extra Plugin up to 1.5.8 on WordPress CSS wizard.php privilege escalation

A vulnerability classified as critical was found in Ocean Extra Plugin up to 1.5.8 on WordPress. This vulnerability affects an unknown functionality of the file includes/wizard/wizard.php of the component CSS Handler. There is no information...
Auteur: VulDB

OpenCV 4.1.1 core/hal/intrin_sse.hpp hal_baseline::v_load memory corruption

A vulnerability classified as critical has been found in OpenCV 4.1.1. This affects the function hal_baseline::v_load of the file core/hal/intrin_sse.hpp. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Telegram up to 5.10 on Android Delete information disclosure

A vulnerability was found in Telegram up to 5.10 on Android. It has been rated as problematic. Affected by this issue is some unknown processing of the component Delete Handler. Upgrading to version 5.11 eliminates this vulnerability.
Auteur: VulDB

Delta DCISoft 1.21 User Mode SetSerializeData+0x000000000000001b memory corruption

A vulnerability was found in Delta DCISoft 1.21. It has been declared as critical. Affected by this vulnerability is the function CommLib!CCommLib::SetSerializeData+0x000000000000001b of the component User Mode. There is no information about...
Auteur: VulDB

Dino MAM Message 0313_message_archive_management.vala privilege escalation

A vulnerability was found in Dino (version unknown). It has been classified as critical. Affected is an unknown code of the file module/xep/0313_message_archive_management.vala of the component MAM Message Handler. Upgrading eliminates this...
Auteur: VulDB

Dino Push Authorization module.vala privilege escalation

A vulnerability was found in Dino (unknown version) and classified as critical. This issue affects an unknown part of the file module/roster/module.vala of the component Push Authorization. Upgrading eliminates this vulnerability. A possible...
Auteur: VulDB

Dino Carbon Message 0280_message_carbons.vala unknown vulnerability

A vulnerability has been found in Dino (the affected version is unknown) and classified as problematic. This vulnerability affects some unknown functionality of the file module/xep/0280_message_carbons.vala of the component Carbon Message...
Auteur: VulDB

Linux Kernel 5.2.14 trans.c alloc_workqueue denial of service

A vulnerability, which was classified as problematic, was found in Linux Kernel 5.2.14 (Operating System). This affects an unknown functionality of the file drivers/net/wireless/intel/iwlwifi/pcie/trans.c. There is no information about possible...
Auteur: VulDB

Linux Kernel 5.2.14 qla_os.c alloc_workqueue denial of service

A vulnerability, which was classified as problematic, has been found in Linux Kernel 5.2.14 (Operating System). Affected by this issue is an unknown function of the file drivers/scsi/qla2xxx/qla_os.c. There is no information about possible...
Auteur: VulDB

Linux Kernel 5.2.14 if_sdio.c alloc_workqueue denial of service

A vulnerability classified as problematic was found in Linux Kernel 5.2.14 (Operating System). Affected by this vulnerability is some unknown processing in the library drivers/net/wireless/marvell/libertas/if_sdio.c. There is no information about...
Auteur: VulDB

Linux Kernel 5.2.14 fjes_main.c alloc_workqueue denial of service

A vulnerability classified as problematic has been found in Linux Kernel 5.2.14. Affected is an unknown code block of the file drivers/net/fjes/fjes_main.c. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Linux Kernel 5.2.14 radeon_display.c alloc_workqueue denial of service

A vulnerability was found in Linux Kernel 5.2.14 (Operating System). It has been rated as problematic. This issue affects an unknown code of the file drivers/gpu/drm/radeon/radeon_display.c. There is no information about possible countermeasures...
Auteur: VulDB

Linux Kernel 5.2.14 kfd_interrupt.c alloc_workqueue denial of service

A vulnerability was found in Linux Kernel 5.2.14 (Operating System). It has been declared as problematic. This vulnerability affects an unknown part of the file drivers/gpu/drm/amd/amdkfd/kfd_interrupt.c. There is no information about possible...
Auteur: VulDB

py-lmdb 0.97 mdb_env_open2 size denial of service

A vulnerability was found in py-lmdb 0.97. It has been classified as problematic. This affects the function mdb_env_open2. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

py-lmdb 0.97 mdb_cursor_set mn_flags memory corruption

A vulnerability was found in py-lmdb 0.97 and classified as critical. Affected by this issue is the function mdb_cursor_set. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

py-lmdb 0.97 memmove mdb_node_del memory corruption

A vulnerability has been found in py-lmdb 0.97 and classified as critical. Affected by this vulnerability is the function mdb_node_del of the component memmove. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

py-lmdb 0.97 memory corruption

A vulnerability, which was classified as critical, was found in py-lmdb 0.97. Affected is some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

py-lmdb 0.97 md_flags/mdb_node_add memory corruption

A vulnerability, which was classified as critical, has been found in py-lmdb 0.97. This issue affects an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

WordPress up to 5.2.2 Post Preview cross site scripting

A vulnerability classified as problematic was found in WordPress up to 5.2.2. This vulnerability affects an unknown code of the component Post Preview. Upgrading to version 5.2.3 eliminates this vulnerability.
Auteur: VulDB

WordPress up to 5.2.2 URL wp-includes/kses.php wp_kses_bad_protocol_once cross site scripting

A vulnerability classified as problematic has been found in WordPress up to 5.2.2. This affects the function wp_kses_bad_protocol_once of the file wp-includes/kses.php of the component URL Handler. Upgrading to version 5.2.3 eliminates this...
Auteur: VulDB
First78910111213141516Last

Événements SSI

LES ASSISES

Grand rendez-vous annuel des RSSI, les Assises de la sécurité des systèmes d'information se tiennent à Monaco (Grimaldi Forum) du 9 au 12 octobre 2019. Organisées par DG Consultants.

BLOCKCHAIN

Conférence et exposition sur les applications d'entreprise de la blockchain à Paris, cité universitaire internationale, les 13 et 14 novembre 2019. Organisés par Corp Agency.

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes (palais des festivals) du 26 au 28 novembre 2019. Organisé par Comexposium.

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS