Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Elementor Page Builder up to 2.9.2 Custom Link Attributes Control Stored cross site scripting

A vulnerability, which was classified as problematic, was found in Elementor Page Builder up to 2.9.2. Affected is an unknown code of the component Custom Link Attributes Control Handler. There is no information about possible countermeasures...
Auteur: VulDB

KeyCloak up to 9.x NodeJS Adapter information disclosure

A vulnerability, which was classified as problematic, has been found in KeyCloak up to 9.x. This issue affects an unknown part of the component NodeJS Adapter. Upgrading to version 10.0.0 eliminates this vulnerability.
Auteur: VulDB

AMQ Online up to 1.5.1 Configuration denial of service

A vulnerability classified as problematic was found in AMQ Online up to 1.5.1. This vulnerability affects some unknown functionality of the component Configuration Handler. Upgrading to version 1.5.2 eliminates this vulnerability.
Auteur: VulDB

Openshift service-mesh/istio-rhel8-operator up to 1.1.3 privilege escalation

A vulnerability classified as critical has been found in Openshift service-mesh and istio-rhel8-operator up to 1.1.3. This affects an unknown functionality. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Apache Atlas up to 2.0.x Search cross site scripting

A vulnerability was found in Apache Atlas up to 2.0.x. It has been rated as problematic. Affected by this issue is an unknown function of the component Search Handler. Upgrading to version 2.1.0 eliminates this vulnerability.
Auteur: VulDB

RAD SecFlow-1v os-image SF_0290_2.3.01.26 Web-based Management Interface cross site request forgery

A vulnerability was found in RAD SecFlow-1v os-image SF_0290_2.3.01.26. It has been declared as problematic. Affected by this vulnerability is some unknown processing of the component Web-based Management Interface. There is no information about...
Auteur: VulDB

KeyCloak 10.0.1 Data Filter cross site scripting

A vulnerability was found in KeyCloak 10.0.1. It has been classified as problematic. Affected is an unknown code block of the component Data Filter. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

WildFly up to 12.x Embedded Managed Process API privilege escalation

A vulnerability was found in WildFly up to 12.x (Application Server Software) and classified as critical. This issue affects an unknown code of the component Embedded Managed Process API. Upgrading to version 13.0.0.Final eliminates this...
Auteur: VulDB

openshift 3.11/4.x Error Page Injection spoofing

A vulnerability has been found in openshift 3.11/4.x (Virtualization Software) and classified as critical. This vulnerability affects an unknown part of the component Error Page Handler. There is no information about possible countermeasures...
Auteur: VulDB

Apple Safari up to 13.1.2 WebKit cross site scripting

A vulnerability, which was classified as problematic, has been found in Apple Safari up to 13.1.2 (Web Browser). Affected by this issue is an unknown functionality of the component WebKit. Upgrading to version 14.0 eliminates this vulnerability....
Auteur: VulDB

Apple Safari up to 13.1.2 WebKit Use-After-Free memory corruption

A vulnerability classified as critical was found in Apple Safari up to 13.1.2 (Web Browser). Affected by this vulnerability is an unknown function of the component WebKit. Upgrading to version 14.0 eliminates this vulnerability. A possible...
Auteur: VulDB

Apple Safari up to 13.1.2 WebKit Out-of-Bounds memory corruption

A vulnerability, which was classified as critical, was found in Apple Safari up to 13.1.2 (Web Browser). This affects some unknown functionality of the component WebKit. Upgrading to version 14.0 eliminates this vulnerability. A possible...
Auteur: VulDB

Apple Safari up to 13.1.2 WebKit Type Confusion memory corruption

A vulnerability classified as critical has been found in Apple Safari up to 13.1.2 (Web Browser). Affected is some unknown processing of the component WebKit. Upgrading to version 14.0 eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Apple tvOS up to 13.4.8 WebKit cross site scripting

A vulnerability was found in Apple tvOS up to 13.4.8 (Digital Media Player). It has been rated as problematic. This issue affects an unknown code block of the component WebKit. Upgrading to version 14.0 eliminates this vulnerability. A possible...
Auteur: VulDB

Apple tvOS up to 13.4.8 Sandbox privilege escalation

A vulnerability was found in Apple tvOS up to 13.4.8 (Digital Media Player). It has been declared as critical. This vulnerability affects an unknown code of the component Sandbox. Upgrading to version 14.0 eliminates this vulnerability. A...
Auteur: VulDB

Apple tvOS up to 13.4.8 Phone Lockscreen weak authentication

A vulnerability was found in Apple tvOS up to 13.4.8 (Digital Media Player). It has been classified as critical. This affects an unknown part of the component Phone. Upgrading to version 14.0 eliminates this vulnerability. A possible mitigation...
Auteur: VulDB

Apple tvOS up to 13.4.8 Keyboard information disclosure

A vulnerability was found in Apple tvOS up to 13.4.8 (Digital Media Player) and classified as problematic. Affected by this issue is some unknown functionality of the component Keyboard. Upgrading to version 14.0 eliminates this vulnerability. A...
Auteur: VulDB

Apple watchOS up to 6.2.8 WebKit cross site scripting

A vulnerability has been found in Apple watchOS up to 6.2.8 (Smartwatch Operating System) and classified as problematic. Affected by this vulnerability is an unknown functionality of the component WebKit. Upgrading to version 7.0 eliminates this...
Auteur: VulDB

Apple watchOS up to 6.2.8 Sandbox privilege escalation

A vulnerability, which was classified as critical, was found in Apple watchOS up to 6.2.8 (Smartwatch Operating System). Affected is an unknown function of the component Sandbox. Upgrading to version 7.0 eliminates this vulnerability. A possible...
Auteur: VulDB

Apple watchOS up to 6.2.8 Phone Lockscreen weak authentication

A vulnerability, which was classified as critical, has been found in Apple watchOS up to 6.2.8 (Smartwatch Operating System). This issue affects some unknown processing of the component Phone. Upgrading to version 7.0 eliminates this...
Auteur: VulDB

Apple watchOS up to 6.2.8 Keyboard information disclosure

A vulnerability classified as problematic was found in Apple watchOS up to 6.2.8 (Smartwatch Operating System). This vulnerability affects an unknown code block of the component Keyboard. Upgrading to version 7.0 eliminates this vulnerability. A...
Auteur: VulDB

Apple Xcode up to 11.x IDE Device Support privilege escalation

A vulnerability classified as critical has been found in Apple Xcode up to 11.x (Programming Tool Software). This affects an unknown code of the component IDE Device Support. Upgrading to version 12.0 eliminates this vulnerability. A possible...
Auteur: VulDB

Apple iOS/iPadOS up to 13.7 WebKit cross site scripting

A vulnerability was found in Apple iOS and iPadOS up to 13.7 (Smartphone Operating System). It has been rated as problematic. Affected by this issue is an unknown part of the component WebKit. Upgrading to version 14.0 eliminates this...
Auteur: VulDB

Apple iOS/iPadOS up to 13.7 Siri Lockscreen weak authentication

A vulnerability was found in Apple iOS and iPadOS up to 13.7 (Smartphone Operating System). It has been declared as problematic. Affected by this vulnerability is some unknown functionality of the component Siri. Upgrading to version 14.0...
Auteur: VulDB

Apple iOS/iPadOS up to 13.7 Sandbox privilege escalation

A vulnerability was found in Apple iOS and iPadOS up to 13.7 (Smartphone Operating System). It has been classified as critical. Affected is an unknown functionality of the component Sandbox. Upgrading to version 14.0 eliminates this...
Auteur: VulDB
First891011121314151617Last

Événements SSI