Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Cisco Unified Communications Manager Web-based Management Interface information disclosure

A vulnerability classified as problematic has been found in Cisco Unified Communications Manager (version unknown). Affected is some unknown processing of the component Web-based Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco Small Business SPA500 Testing Script Command privilege escalation

A vulnerability was found in Cisco Small Business SPA500 (unknown version). It has been rated as problematic. This issue affects an unknown code block of the component Testing Script Handler. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco Small Business RV Series Router Web-based Management Interface OS Command Injection privilege escalation

A vulnerability was found in Cisco Small Business RV Series Router (the affected version is unknown). It has been declared as critical. This vulnerability affects an unknown code of the component Web-based Management Interface. Upgrading...
Auteur: VulDB

Cisco TelePresence Collaboration Endpoint/RoomOS Crash denial of service

A vulnerability was found in Cisco TelePresence Collaboration Endpoint and RoomOS (the affected version unknown). It has been classified as problematic. This affects an unknown part. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco WebEx Network Recording Player/Webex Player on Windows ARF File Email Attachment memory corruption

A vulnerability was found in Cisco WebEx Network Recording Player and Webex Player on Windows (affected version not known) and classified as critical. Affected by this issue is some unknown functionality of the component ARF File Handler....
Auteur: VulDB

Cisco WebEx Network Recording Player/Webex Player on Windows ARF File Email Attachment memory corruption

A vulnerability has been found in Cisco WebEx Network Recording Player and Webex Player on Windows (Unified Communication Software) (affected version unknown) and classified as critical. Affected by this vulnerability is an unknown functionality...
Auteur: VulDB

Cisco WebEx Network Recording Player/Webex Player on Windows ARF File Email Attachment memory corruption

A vulnerability, which was classified as critical, was found in Cisco WebEx Network Recording Player and Webex Player on Windows (Unified Communication Software) (version unknown). Affected is an unknown function of the component ARF File...
Auteur: VulDB

CERTFR-2020-AVI-590 : Multiples vulnérabilités dans Mozilla Firefox (23 septembre 2020)

De multiples vulnérabilités ont été découvertes dans Mozilla Firefox. Elles permettent à un attaquant de provoquer une exécution de code arbitraire, une atteinte à l'intégrité des données et une injection de code indirecte à distance (XSS).

Auteur: Cert FR

Telestream Tektronix Medius/Sentry up to 10.7.4 Server Login Page index.php page sql injection

A vulnerability, which was classified as critical, has been found in Telestream Tektronix Medius and Sentry up to 10.7.4. This issue affects some unknown processing of the file index.php of the component Server Login Page. Upgrading to version...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 Default Credentials weak authentication

A vulnerability classified as critical was found in IBM Data Risk Manager 2.0.6. This vulnerability affects an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 privilege escalation [CVE-2020-4621]

A vulnerability classified as critical has been found in IBM Data Risk Manager 2.0.6. This affects an unknown code. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 Extension HTTP Request Code privilege escalation

A vulnerability was found in IBM Data Risk Manager 2.0.6. It has been rated as critical. Affected by this issue is an unknown part of the component Extension Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 Credential Storage Plaintext weak encryption

A vulnerability was found in IBM Data Risk Manager 2.0.6. It has been declared as problematic. Affected by this vulnerability is some unknown functionality of the component Credential Storage. There is no information about possible...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 denial of service [CVE-2020-4618]

A vulnerability was found in IBM Data Risk Manager 2.0.6. It has been classified as problematic. Affected is an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 cross site request forgery [CVE-2020-4617]

A vulnerability was found in IBM Data Risk Manager 2.0.6 and classified as problematic. This issue affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected object with...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 HTTP Request information disclosure

A vulnerability has been found in IBM Data Risk Manager 2.0.6 and classified as problematic. This vulnerability affects some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 Web UI cross site scripting

A vulnerability, which was classified as problematic, was found in IBM Data Risk Manager 2.0.6. This affects an unknown code block of the component Web UI. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 weak encryption [CVE-2020-4614]

A vulnerability, which was classified as problematic, has been found in IBM Data Risk Manager 2.0.6. Affected by this issue is an unknown code. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 weak encryption [CVE-2020-4613]

A vulnerability classified as problematic was found in IBM Data Risk Manager 2.0.6. Affected by this vulnerability is an unknown part. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 HTTP Request information disclosure

A vulnerability classified as problematic has been found in IBM Data Risk Manager 2.0.6. Affected is some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object with...
Auteur: VulDB

IBM Data Risk Manager 2.0.6 privilege escalation [CVE-2020-4611]

A vulnerability was found in IBM Data Risk Manager 2.0.6. It has been rated as critical. This issue affects an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

VMware Horizon DaaS up to 7.x/8.0.1 Two-factor Authentication weak authentication

A vulnerability was found in VMware Horizon DaaS up to 7.x/8.0.1. It has been declared as critical. This vulnerability affects an unknown function of the component Two-factor Authentication. Applying the patch 8.0.1 Update 1 is able to eliminate...
Auteur: VulDB

Sourcecodester Simple Library Management System 1.0 New Book index.php privilege escalation

A vulnerability was found in Sourcecodester Simple Library Management System 1.0 (Library Management System Software). It has been classified as critical. This affects some unknown processing of the file /lms/index.php?page=books of the component...
Auteur: VulDB

Sourcecodester Simple Library Management System 1.0 Login Panel /lms/admin.php privilege escalation

A vulnerability was found in Sourcecodester Simple Library Management System 1.0 (Library Management System Software) and classified as critical. Affected by this issue is an unknown code block of the file /lms/admin.php of the component Login...
Auteur: VulDB

PHPGurukul Zoo Management System 1.0 zms/animal-detail.php sql injection

A vulnerability has been found in PHPGurukul Zoo Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown code of the file zms/animal-detail.php. There is no information about possible countermeasures known....
Auteur: VulDB
First891011121314151617Last

Événements SSI