Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Google Android 8.1/9.0/10.0/11.0 Contacts QuickContactActivity.java onActivityResult information disclosure

A vulnerability was found in Google Android 8.1/9.0/10.0/11.0 (Smartphone Operating System). It has been rated as problematic. Affected by this issue is the function onActivityResult of the file QuickContactActivity.java of the component Contacts...
Auteur: VulDB

Google Android 8.1/9.0/10.0/11.0 Screenshot ScreenshotHelper.java information disclosure

A vulnerability was found in Google Android 8.1/9.0/10.0/11.0 (Smartphone Operating System). It has been declared as problematic. Affected by this vulnerability is some unknown processing of the file ScreenshotHelper.java of the component...
Auteur: VulDB

Google Android 11.0 InputApplicationHandle.cpp updateInfo use after free

A vulnerability was found in Google Android 11.0 (Smartphone Operating System). It has been classified as critical. Affected is the function NativeInputApplicationHandle ::updateInfo of the file InputApplicationHandle.cpp. Applying a patch is...
Auteur: VulDB

Google Android 11.0 com_android_server_power_PowerManagerService.cpp setPowerModeWithHandle out-of-bounds write

A vulnerability was found in Google Android 11.0 (Smartphone Operating System) and classified as critical. This issue affects the function setPowerModeWithHandle of the file com_android_server_power_PowerManagerService.cpp. Applying a patch is...
Auteur: VulDB

Google Android 8.1/9.0/10.0 InputDispatcher.cpp FLAG_OBSCURED improper restriction of rendered ui layers

A vulnerability has been found in Google Android 8.1/9.0/10.0 (Smartphone Operating System) and classified as problematic. This vulnerability affects an unknown part of the file InputDispatcher.cpp. Applying a patch is able to eliminate this...
Auteur: VulDB

Google Android 8.1/9.0/10.0/11.0 DrmPlugin.cpp setPlayPolicy double free

A vulnerability, which was classified as critical, was found in Google Android 8.1/9.0/10.0/11.0 (Smartphone Operating System). This affects the function setPlayPolicy of the file DrmPlugin.cpp. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 8.1/9.0/10.0/11.0 CryptoPlugin.cpp CryptoPlugin::decrypt out-of-bounds read

A vulnerability, which was classified as problematic, has been found in Google Android 8.1/9.0/10.0/11.0 (Smartphone Operating System). Affected by this issue is the function CryptoPlugin::decrypt of the file CryptoPlugin.cpp. Applying a patch is...
Auteur: VulDB

Google Android 8.1/9.0/10.0/11.0 avrc_api.cc avrc_proc_vendor_command information disclosure

A vulnerability classified as problematic was found in Google Android 8.1/9.0/10.0/11.0 (Smartphone Operating System). Affected by this vulnerability is the function avrc_proc_vendor_command of the file avrc_api.cc. Applying a patch is able to...
Auteur: VulDB

Google Android 8.1/9.0/10.0/11.0 Bluetooth DeviceChooserActivity.java onCreate improper restriction of rendered ui layers

A vulnerability classified as problematic has been found in Google Android 8.1/9.0/10.0/11.0 (Smartphone Operating System). Affected is the function onCreate of the file DeviceChooserActivity.java of the component Bluetooth Handler. Applying a...
Auteur: VulDB

Google Android 11.0 StatsPullerManager.cpp ClearPullerCacheIfNecessary/ForceClearPullerCache use after free

A vulnerability was found in Google Android 11.0 (Smartphone Operating System). It has been rated as critical. This issue affects the function ClearPullerCacheIfNecessary/ForceClearPullerCache of the file StatsPullerManager.cpp. Applying a patch...
Auteur: VulDB

Google Android 8.1/9.0/10.0/11.0 avrc_api.cc avrc_msg_cback out-of-bounds read

A vulnerability was found in Google Android 8.1/9.0/10.0/11.0 (Smartphone Operating System). It has been declared as problematic. This vulnerability affects the function avrc_msg_cback of the file avrc_api.cc. Applying a patch is able to...
Auteur: VulDB

Google Android 10.0/11.0 NFC rw_mfc.cc rw_mfc_handle_read_op out-of-bounds write

A vulnerability was found in Google Android 10.0/11.0 (Smartphone Operating System). It has been classified as critical. This affects the function rw_mfc_handle_read_op of the file rw_mfc.cc of the component NFC Handler. Applying a patch is able...
Auteur: VulDB

Google Android 8.1/9.0/10.0/11.0 ALooper.cpp pollOnce memory corruption

A vulnerability was found in Google Android 8.1/9.0/10.0/11.0 (Smartphone Operating System) and classified as critical. Affected by this issue is the function pollOnce of the file ALooper.cpp. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 10.0 TelephonyManager.java getSimSerialNumber information disclosure

A vulnerability has been found in Google Android 10.0 (Smartphone Operating System) and classified as problematic. Affected by this vulnerability is the function getSimSerialNumber of the file TelephonyManager.java. Applying a patch is able to...
Auteur: VulDB

Google Android 11.0 LogEvent.cpp parseExclusiveStateAnnotation out-of-bounds write

A vulnerability, which was classified as critical, was found in Google Android 11.0 (Smartphone Operating System). Affected is the function parseExclusiveStateAnnotation of the file LogEvent.cpp. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 11.0 LogEvent.cpp parsePrimaryFieldFirstUidAnnotation out-of-bounds write

A vulnerability, which was classified as critical, has been found in Google Android 11.0 (Smartphone Operating System). This issue affects the function parsePrimaryFieldFirstUidAnnotation of the file LogEvent.cpp. Applying a patch is able to...
Auteur: VulDB

Google Android 9.0/10.0/11.0 GnssLocationProvider.java injectBestLocation/handleUpdateLocation input validation

A vulnerability classified as critical was found in Google Android 9.0/10.0/11.0 (Smartphone Operating System). This vulnerability affects the function injectBestLocation/handleUpdateLocation of the file GnssLocationProvider.java. Applying a...
Auteur: VulDB

Slic3r libslic3r 1.3.0 OBJ File TriangleMesh out-of-bounds read

A vulnerability classified as problematic has been found in Slic3r libslic3r 1.3.0. This affects the function TriangleMesh::TriangleMesh of the component OBJ File Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Windriver Helix ALM 2020.3.1 Administration Console xml external entity reference

A vulnerability was found in Windriver Helix ALM 2020.3.1 (Hardware Driver Software). It has been rated as critical. Affected by this issue is an unknown part of the component Administration Console. There is no information about possible...
Auteur: VulDB

Microsoft Azure DevOps Server/Team Foundation Server information disclosure

A vulnerability was found in Microsoft Azure DevOps Server and Team Foundation Server (Programming Tool Software) (affected version unknown). It has been declared as problematic. Affected by this vulnerability is some unknown functionality....
Auteur: VulDB

Microsoft Windows 8.1 up to Server 2019 Win32k Local Privilege Escalation

A vulnerability was found in Microsoft Windows (Operating System). It has been classified as critical. Affected is an unknown functionality of the component Win32k. Applying a patch is able to eliminate this problem. A possible mitigation has...
Auteur: VulDB

Microsoft Windows 10 up to Server 2019 Media Photo Codec information disclosure

A vulnerability was found in Microsoft Windows (Operating System) and classified as problematic. This issue affects an unknown function of the component Media Photo Codec. Applying a patch is able to eliminate this problem. A possible mitigation...
Auteur: VulDB

Microsoft Windows 10 20H2 up to Server 2019 Event Tracing Local Privilege Escalation

A vulnerability has been found in Microsoft Windows 10 1803 up to Server 2019 (Operating System) and classified as critical. This vulnerability affects some unknown processing of the component Event Tracing. Applying a patch is able to eliminate...
Auteur: VulDB

Microsoft Windows 7 SP1 up to Server 2019 Internet Messaging API Remote Code Execution

A vulnerability, which was classified as critical, was found in Microsoft Windows (Operating System). This affects an unknown code block of the component Internet Messaging API. Applying a patch is able to eliminate this problem. A possible...
Auteur: VulDB

Microsoft Windows 10 20H2/10 2004/Server 20H2/Server 2004 Secure Kernel Mode Local Privilege Escalation

A vulnerability, which was classified as critical, has been found in Microsoft Windows 10 2004/10 20H2/Server 2004/Server 20H2 (Operating System). Affected by this issue is an unknown code of the component Secure Kernel Mode. Applying a patch is...
Auteur: VulDB
First9101112131415161718Last

Événements SSI