Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

netplex json-smart-v1/json-smart-v2 unknown vulnerability [CVE-2021-27568]

A vulnerability classified as problematic was found in netplex json-smart-v1 and json-smart-v2 (affected version unknown). There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

CIRA Canadian Shield App prior 4.0.13 on iOS certificate validation

A vulnerability classified as problematic has been found in CIRA Canadian Shield App on iOS (iOS App Software). Affected is some unknown functionality. Upgrading to version 4.0.13 eliminates this vulnerability.
Auteur: VulDB

Nozomi Guardian/CMC up to 20.0.7.3 Web GUI path traversal

A vulnerability was found in Nozomi Guardian and CMC up to 20.0.7.3. It has been rated as critical. This issue affects an unknown functionality of the component Web GUI. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Nozomi Guardian/CMC up to 20.0.7.3 Web GUI os command injection

A vulnerability was found in Nozomi Guardian and CMC up to 20.0.7.3. It has been declared as critical. This vulnerability affects an unknown function of the component Web GUI. There is no information about possible countermeasures known. It may...
Auteur: VulDB

Atlassian JIRA Server for Slack Plugin up to 2.0.14 Endpoint injection

A vulnerability was found in Atlassian JIRA Server for Slack Plugin up to 2.0.14 (Bug Tracking Software). It has been classified as critical. This affects some unknown processing of the component Endpoint. Upgrading to version 2.0.15 eliminates...
Auteur: VulDB

Keybase Desktop Client Cache information disclosure [CVE-2021-23827]

A vulnerability was found in Keybase Desktop Client (affected version not known) and classified as problematic. Affected by this issue is an unknown code block of the component Cache Handler. Upgrading eliminates this vulnerability.
Auteur: VulDB

Luxion KeyShot up to 10.0 Project File null pointer dereference

A vulnerability has been found in Luxion KeyShot, KeyShot Viewer, KeyShot Network Rendering and KeyVR up to 10.0 and classified as problematic. Affected by this vulnerability is an unknown code of the component Project File Handler. Upgrading to...
Auteur: VulDB

Luxion KeyShot up to 10.0 Project File out-of-bounds write

A vulnerability, which was classified as critical, was found in Luxion KeyShot, KeyShot Viewer, KeyShot Network Rendering and KeyVR up to 10.0. Affected is an unknown part of the component Project File Handler. Upgrading to version 10.1...
Auteur: VulDB

Luxion KeyShot up to 10.0 Network Share dll Remote Privilege Escalation

A vulnerability, which was classified as critical, has been found in Luxion KeyShot, KeyShot Viewer, KeyShot Network Rendering and KeyVR up to 10.0. This issue affects some unknown functionality in the library dll of the component Network Share...
Auteur: VulDB

Luxion KeyShot up to 10.0 Project File out-of-bounds read

A vulnerability classified as critical was found in Luxion KeyShot, KeyShot Viewer, KeyShot Network Rendering and KeyVR up to 10.0. This vulnerability affects an unknown functionality of the component Project File Handler. Upgrading to version...
Auteur: VulDB

Google Chrome prior 88.0.4324.182 on Linux Web Sockets use after free

A vulnerability classified as critical has been found in Google Chrome on Linux (Web Browser). This affects an unknown function of the component Web Sockets. Upgrading to version 88.0.4324.182 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 88.0.4324.182 V8 heap-based overflow

A vulnerability was found in Google Chrome (Web Browser). It has been rated as critical. Affected by this issue is some unknown processing of the component V8. Upgrading to version 88.0.4324.182 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 88.0.4324.182 on Windows Tab Strip heap-based overflow

A vulnerability was found in Google Chrome on Windows (Web Browser). It has been declared as critical. Affected by this vulnerability is an unknown code block of the component Tab Strip Handler. Upgrading to version 88.0.4324.182 eliminates this...
Auteur: VulDB

Google Chrome prior 88.0.4324.182 Tab Strip heap-based overflow

A vulnerability was found in Google Chrome (Web Browser). It has been classified as critical. Affected is an unknown code of the component Tab Strip Handler. Upgrading to version 88.0.4324.182 eliminates this vulnerability.
Auteur: VulDB

Google Chrome up to 88.0.4324.181 on Linux GPU Process stack-based overflow

A vulnerability was found in Google Chrome up to 88.0.4324.181 on Linux (Web Browser) and classified as critical. This issue affects an unknown part of the component GPU Process. Upgrading to version 88.0.4324.182 eliminates this vulnerability.
Auteur: VulDB

Google Chrome up to 88.0.4324.181 on Linux Media heap-based overflow

A vulnerability has been found in Google Chrome up to 88.0.4324.181 on Linux (Web Browser) and classified as critical. This vulnerability affects some unknown functionality of the component Media. Upgrading to version 88.0.4324.182 eliminates...
Auteur: VulDB

Google Chrome prior 88.0.4324.182 Payments use after free

A vulnerability, which was classified as critical, was found in Google Chrome (Web Browser). This affects an unknown functionality of the component Payments. Upgrading to version 88.0.4324.182 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 88.0.4324.182 on Windows HTML Page use after free

A vulnerability, which was classified as critical, has been found in Google Chrome on Windows (Web Browser). Affected by this issue is an unknown function of the component HTML Page Handler. Upgrading to version 88.0.4324.182 eliminates this...
Auteur: VulDB

Google Chrome prior 88.0.4324.182 on Linux Data Transfer buffer overflow

A vulnerability classified as critical was found in Google Chrome on Linux (Web Browser). Affected by this vulnerability is some unknown processing of the component Data Transfer Handler. Upgrading to version 88.0.4324.182 eliminates this...
Auteur: VulDB

Atlassian atlassian-gadgets up to 4.2.36/4.3.2.3/4.3.13/4.4.11/5.0.0 HTTP Request MessageBundleWhiteList unknown vulnerability

A vulnerability classified as problematic has been found in Atlassian atlassian-gadgets up to 4.2.36/4.3.2.3/4.3.13/4.4.11/5.0.0. Affected is the function MessageBundleWhiteList of the component HTTP Request Handler. Upgrading to version 4.2.37,...
Auteur: VulDB

Gist Chatbot Chatbox cross site scripting [CVE-2020-35852]

A vulnerability was found in Gist Chatbot (Chat Software) (unknown version). It has been rated as problematic. This issue affects an unknown code of the component Chatbox. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.10/8.13.2/8.14.x CachingResourceDownloadRewriteRule information disclosure

A vulnerability was found in Atlassian JIRA Server and Data Center up to 8.5.10/8.13.2/8.14.x (Bug Tracking Software). It has been declared as problematic. This vulnerability affects the function CachingResourceDownloadRewriteRule. Upgrading to...
Auteur: VulDB

Atlassian Confluence Server/Confluence Data Center up to 6.13.17/7.4.5/7.8.2 ConfluenceResourceDownloadRewriteRule information disclosure

A vulnerability was found in Atlassian Confluence Server and Confluence Data Center up to 6.13.17/7.4.5/7.8.2. It has been classified as problematic. This affects the function ConfluenceResourceDownloadRewriteRule. Upgrading to version 6.13.18,...
Auteur: VulDB

libxls up to 1.6.0 XLS Cell Parser libxls/xls2csv.c null pointer dereference

A vulnerability was found in libxls up to 1.6.0 and classified as problematic. Affected by this issue is an unknown functionality of the file libxls/xls2csv.c of the component XLS Cell Parser. Upgrading to version 1.6.1 eliminates this...
Auteur: VulDB

ImageMagick up to 7.0.8 quantum-private.h integer overflow

A vulnerability has been found in ImageMagick up to 7.0.8 (Image Processing Software) and classified as critical. Affected by this vulnerability is an unknown function of the file MagickCore/quantum-private.h. Upgrading to version 7.0.9...
Auteur: VulDB
First78910111213141516Last

Événements SSI