jeudi 24 octobre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Cisco SPA100 ATA Web-based Management Interface information disclosure

A vulnerability was found in Cisco SPA100 ATA (affected version not known) and classified as problematic. Affected by this issue is an unknown function of the component Web-based Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco TelePresence Video Communication Server Web-based Management Interface cross site scripting

A vulnerability has been found in Cisco TelePresence Video Communication Server (affected version unknown) and classified as problematic. Affected by this vulnerability is some unknown processing of the component Web-based Management Interface....
Auteur: VulDB

Cisco SPA100 ATA Web-based Management Interface Request information disclosure

A vulnerability, which was classified as problematic, was found in Cisco SPA100 ATA (version unknown). Affected is an unknown code block of the component Web-based Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco SPA122 ATA Web-based Management Interface DHCP Request cross site scripting

A vulnerability, which was classified as problematic, has been found in Cisco SPA122 ATA (unknown version). This issue affects an unknown code of the component Web-based Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco SPA100 ATA Web-based Management Interface cross site scripting

A vulnerability classified as problematic was found in Cisco SPA100 ATA (the affected version is unknown). This vulnerability affects an unknown part of the component Web-based Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco Identity Services Engine Web-based Management Interface cross site scripting

A vulnerability classified as problematic has been found in Cisco Identity Services Engine (Policy Management Software) (the affected version unknown). This affects some unknown functionality of the component Web-based Management Interface....
Auteur: VulDB

Cisco Identity Services Engine Web-based Management Interface Stored cross site scripting

A vulnerability was found in Cisco Identity Services Engine (Policy Management Software) (affected version not known). It has been rated as problematic. Affected by this issue is an unknown functionality of the component Web-based Management...
Auteur: VulDB

Cisco Small Business Smart Switch/Managed Switch Web-based Management Interface cross site request forgery

A vulnerability was found in Cisco Small Business Smart Switch and Managed Switch (affected version unknown). It has been declared as problematic. Affected by this vulnerability is an unknown function of the component Web-based Management...
Auteur: VulDB

Pivotal RabbitMQ up to 3.7.17 Host Limits Page/Federation Management UI cross site scripting

A vulnerability was found in Pivotal RabbitMQ up to 3.7.17. It has been classified as problematic. Affected is some unknown processing of the component Host Limits Page/Federation Management UI. Upgrading to version 3.7.18 eliminates this...
Auteur: VulDB

ISC Releases Security Advisories for BIND

Original release date: October 17, 2019The Internet Systems Consortium (ISC) has released security advisories that address vulnerabilities affecting multiple versions of ISC Berkeley Internet Name Domain (BIND). A remote attacker could exploit...
Auteur: US Cert

Cisco Releases Security Updates

Original release date: October 17, 2019Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing...
Auteur: US Cert

CERTFR-2019-AVI-518 : Multiples vulnérabilités dans le noyau Linux d’Ubuntu (17 octobre 2019)

De multiples vulnérabilités ont été corrigées dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service et une atteinte à la confidentialité des données.

Auteur: Cert FR

CERTFR-2019-AVI-517 : Vulnérabilité dans VMWare VeloCloud (17 octobre 2019)

Une vulnérabilité a été découverte dans VMWare VeloCloud. Elle permet à un attaquant de provoquer une atteinte à la confidentialité des données.

Auteur: Cert FR

CERTFR-2019-AVI-516 : Multiples vulnérabilités dans BIND (17 octobre 2019)

De multiples vulnérabilités ont été découvertes dans BIND. Elles permettent à un attaquant de provoquer un déni de service à distance et une atteinte à l'intégrité des données.

Auteur: Cert FR

Open data : la CNIL et la CADA publient un guide pratique de la publication en ligne et de la réutilisation des données publiques

À la suite de la consultation publique qui s’est tenue au printemps 2019, la CADA et la CNIL, en partenariat avec les services d’Etalab, ont finalisé un guide pratique de la publication en ligne et de la réutilisation des données publiques. Ce...
Auteur: Cnil

Multiple Vulnerabilities in Pulse Secure VPN

Original release date: October 16, 2019The CERT Coordination Center (CERT/CC) has released information on multiple vulnerabilities affecting Pulse Secure Virtual Private Network (VPN). An attacker could exploit these vulnerabilities to take...
Auteur: US Cert

Oracle VM VirtualBox up to 5.2.33/6.0.13 0 denial of service

A vulnerability was found in Oracle VM VirtualBox up to 5.2.33/6.0.13 (Virtualization Software) and classified as problematic. This issue affects an unknown code block of the component 0. Upgrading eliminates this vulnerability. A possible...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.33/6.0.13 0 information disclosure

A vulnerability has been found in Oracle VM VirtualBox up to 5.2.33/6.0.13 and classified as critical. This vulnerability affects an unknown code of the component 0. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.33/6.0.13 0 information disclosure

A vulnerability, which was classified as critical, was found in Oracle VM VirtualBox up to 5.2.33/6.0.13 (Virtualization Software). This affects an unknown part of the component 0. Upgrading eliminates this vulnerability. A possible mitigation...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.33/6.0.13 0 denial of service

A vulnerability, which was classified as critical, has been found in Oracle VM VirtualBox up to 5.2.33/6.0.13. Affected by this issue is some unknown functionality of the component 0. Upgrading eliminates this vulnerability. A possible mitigation...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.33/6.0.13 0 denial of service

A vulnerability classified as critical was found in Oracle VM VirtualBox up to 5.2.33/6.0.13. Affected by this vulnerability is an unknown functionality of the component 0. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.33/6.0.13 0 denial of service

A vulnerability classified as critical has been found in Oracle VM VirtualBox up to 5.2.33/6.0.13. Affected is an unknown function of the component 0. Upgrading eliminates this vulnerability. A possible mitigation has been published immediately...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.33/6.0.13 0 denial of service

A vulnerability was found in Oracle VM VirtualBox up to 5.2.33/6.0.13. It has been rated as critical. This issue affects some unknown processing of the component 0. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.33/6.0.13 0 information disclosure

A vulnerability was found in Oracle VM VirtualBox up to 5.2.33/6.0.13. It has been declared as critical. This vulnerability affects an unknown code block of the component 0. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.33/6.0.13 0 unknown vulnerability

A vulnerability was found in Oracle VM VirtualBox up to 5.2.33/6.0.13. It has been classified as critical. This affects an unknown code of the component 0. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB
First78910111213141516Last

Événements SSI

BLOCKCHAIN

Conférence et exposition sur les applications d'entreprise de la blockchain à Paris, cité universitaire internationale, les 13 et 14 novembre 2019. Organisés par Corp Agency.

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes (palais des festivals) du 26 au 28 novembre 2019. Organisé par Comexposium.

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS