Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

kubernetes-nmstate-handler up to 2.3.0-29 /etc/passwd privileges assignment

A vulnerability was found in kubernetes-nmstate-handler up to 2.3.0-29 (Virtualization Software). It has been declared as critical. Affected by this vulnerability is an unknown code block of the file /etc/passwd. Upgrading to version 2.3.0-30...
Auteur: VulDB

Foreman up to 0.13.0 Proxmox information disclosure

A vulnerability was found in Foreman up to 0.13.0 (Service Management Software). It has been classified as problematic. Affected is an unknown code of the component Proxmox Handler. Upgrading to version 0.13.1 eliminates this vulnerability.
Auteur: VulDB

Flarum up to 1.0.1 Translation System cross site scripting

A vulnerability was found in Flarum up to 1.0.1 and classified as problematic. This issue affects an unknown part of the component Translation System. Upgrading to version 1.0.2 eliminates this vulnerability. Applying a patch is able to eliminate...
Auteur: VulDB

OpenShift machine-config-operator up to 4.2.35/4.3.24/4.4.2 resource consumption

A vulnerability has been found in OpenShift machine-config-operator up to 4.2.35/4.3.24/4.4.2 (Virtualization Software) and classified as problematic. This vulnerability affects some unknown functionality. Upgrading to version 4.2.36, 4.3.25 or...
Auteur: VulDB

Roon Server os command injection [CVE-2021-28811]

A vulnerability, which was classified as critical, was found in Roon Server (the affected version unknown). This affects an unknown functionality. Upgrading eliminates this vulnerability. A possible mitigation has been published before and not...
Auteur: VulDB

CERTFR-2021-AVI-441 : Multiples vulnérabilités dans Google Android (08 juin 2021)

De multiples vulnérabilités ont été découvertes dans Google Android. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et un déni de...
Auteur: Cert FR

Roon Server 2021-05-18 authentication spoofing [CVE-2021-28810]

A vulnerability, which was classified as critical, has been found in Roon Server 2021-05-18. Affected by this issue is an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

CERTFR-2021-AVI-440 : Multiples vulnérabilités dans les produits SAP (08 juin 2021)

De multiples vulnérabilités ont été découvertes dans les produits SAP. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un contournement de la politique de sécurité et une élévation de...
Auteur: Cert FR

Red Hat OpenStack up to 0.8.23 on SELinux Policy improper authorization

A vulnerability classified as critical was found in Red Hat OpenStack up to 0.8.23 on SELinux (Cloud Software). Affected by this vulnerability is some unknown processing of the component Policy. Upgrading to version 0.8.24 eliminates this...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 Tab Strip use after free

A vulnerability classified as critical has been found in Google Chrome (Web Browser). Affected is an unknown code block of the component Tab Strip. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 Tab Strip use after free

A vulnerability was found in Google Chrome (Web Browser). It has been rated as critical. This issue affects an unknown code of the component Tab Strip. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 Bookmarks use after free

A vulnerability was found in Google Chrome (Web Browser). It has been declared as critical. This vulnerability affects an unknown part of the component Bookmarks. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The upgrade is...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 WebUI use after free

A vulnerability was found in Google Chrome (Web Browser). It has been classified as critical. This affects some unknown functionality of the component WebUI. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The upgrade is hosted...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 TabStrip out-of-bounds write

A vulnerability was found in Google Chrome (Web Browser) and classified as critical. Affected by this issue is an unknown functionality of the component TabStrip. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The upgrade is...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 TabGroups use after free

A vulnerability has been found in Google Chrome (Web Browser) and classified as critical. Affected by this vulnerability is an unknown function of the component TabGroups. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 TabStrip use after free

A vulnerability, which was classified as critical, was found in Google Chrome (Web Browser). Affected is some unknown processing of the component TabStrip. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

WP-CLI on WordPress Error Handling certificate validation

A vulnerability, which was classified as problematic, has been found in WP-CLI on WordPress (WordPress Plugin) (unknown version). This issue affects an unknown code block of the component Error Handling. There is no information about possible...
Auteur: VulDB

Simple-Log 1.6 admin.php cross-site request forgery

A vulnerability classified as problematic was found in Simple-Log 1.6. This vulnerability affects an unknown code of the file Simple-Log/admin/admin.php?act=act_add_member. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Simple-Log 1.6 admin.php cross-site request forgery

A vulnerability classified as problematic has been found in Simple-Log 1.6. This affects an unknown part of the file Simple-Log/admin/admin.php?act=act_edit_member. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 V8 out-of-bounds read

A vulnerability was found in Google Chrome (Web Browser). It has been rated as problematic. Affected by this issue is some unknown functionality of the component V8. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The upgrade is...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 ICU double free

A vulnerability was found in Google Chrome (Web Browser). It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component ICU. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 WebAudio out-of-bounds read

A vulnerability was found in Google Chrome (Web Browser). It has been classified as problematic. Affected is an unknown function of the component WebAudio. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 WebRTC use after free

A vulnerability was found in Google Chrome (Web Browser) and classified as critical. This issue affects some unknown processing of the component WebRTC. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

Google Chrome prior 91.0.4472.77 WebAudio use after free

A vulnerability has been found in Google Chrome (Web Browser) and classified as critical. This vulnerability affects an unknown code block of the component WebAudio. Upgrading to version 91.0.4472.77 eliminates this vulnerability. The upgrade is...
Auteur: VulDB

Linux Kernel up to 5.8.1 fs/io_uring.c io_async_task_func use after free

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.8.1 (Operating System). This affects the function io_async_task_func of the file fs/io_uring.c. Upgrading to version 5.8.2 eliminates this vulnerability. The...
Auteur: VulDB
First78910111213141516Last

Événements SSI