Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

ForestBlog cross-site request forgery [CVE-2020-18964]

A vulnerability was found in ForestBlog (unknown version) and classified as problematic. This issue affects some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

OctoPrint up to 1.5.x Logging Subsystem access control

A vulnerability has been found in OctoPrint up to 1.5.x and classified as critical. This vulnerability affects an unknown code block of the component Logging Subsystem. Upgrading to version 1.6.0 eliminates this vulnerability. The upgrade is...
Auteur: VulDB

JetBrains TeamCity up to 2020.2.2 GitHub SSO Token redirect_uri unknown vulnerability

A vulnerability, which was classified as problematic, was found in JetBrains TeamCity up to 2020.2.2. This affects the function redirect_uri of the component GitHub SSO Token Handler. Upgrading to version 2020.2.3 eliminates this vulnerability.
Auteur: VulDB

JetBrains TeamCity up to 2020.2.2 password recovery [CVE-2021-31912]

A vulnerability, which was classified as critical, has been found in JetBrains TeamCity up to 2020.2.2. Affected by this issue is an unknown part. Upgrading to version 2020.2.3 eliminates this vulnerability.
Auteur: VulDB

JetBrains TeamCity up to 2020.2.1 File Upload unknown vulnerability

A vulnerability classified as problematic was found in JetBrains TeamCity up to 2020.2.1. Affected by this vulnerability is some unknown functionality of the component File Upload Handler. Upgrading to version 2020.2.2 eliminates this...
Auteur: VulDB

JetBrains YouTrack prior 2020.6.6600 Export access control

A vulnerability classified as critical has been found in JetBrains YouTrack. Affected is an unknown functionality of the component Export Handler. Upgrading to version 2020.6.6600 eliminates this vulnerability.
Auteur: VulDB

JetBrains Hub prior 2021.1.13079 Two-factor Authentication improper authentication

A vulnerability was found in JetBrains Hub. It has been rated as problematic. This issue affects an unknown function of the component Two-factor Authentication Handler. Upgrading to version 2021.1.13079 eliminates this vulnerability.
Auteur: VulDB

JetBrains Code With Me prior 2021.1 Browser unknown vulnerability

A vulnerability was found in JetBrains Code With Me. It has been declared as problematic. This vulnerability affects some unknown processing of the component Browser Handler. Upgrading to version 2021.1 eliminates this vulnerability.
Auteur: VulDB

JetBrains Code With Me prior 2021.1 unknown vulnerability [CVE-2021-31899]

A vulnerability was found in JetBrains Code With Me. It has been classified as problematic. Upgrading to version 2021.1 eliminates this vulnerability.
Auteur: VulDB

JetBrains WebStorm prior 2021.1 HTTPS cleartext transmission

A vulnerability was found in JetBrains WebStorm and classified as problematic. Affected by this issue is an unknown code of the component HTTPS Handler. Upgrading to version 2021.1 eliminates this vulnerability.
Auteur: VulDB

JetBrains TeamCity Plugin prior 2020.2.2.85899 on IntelliJ Temporary Files temp file

A vulnerability has been found in JetBrains TeamCity Plugin on IntelliJ and classified as problematic. Affected by this vulnerability is an unknown part of the component Temporary Files Handler. Upgrading to version 2020.2.2.85899 eliminates this...
Auteur: VulDB

OpenClinic GA 5.173.3 listImmoLabels.jsp immoComment sql injection

A vulnerability, which was classified as critical, was found in OpenClinic GA 5.173.3. Affected is some unknown functionality of the file listImmoLabels.jsp. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

OpenClinic GA 5.173.3 listImmoLabels.jsp immoBuyer sql injection

A vulnerability, which was classified as critical, has been found in OpenClinic GA 5.173.3. This issue affects an unknown functionality of the file listImmoLabels.jsp. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

OpenClinic GA 5.173.3 listImmoLabels.jsp immoCode sql injection

A vulnerability classified as critical was found in OpenClinic GA 5.173.3. This vulnerability affects an unknown function of the file listImmoLabels.jsp. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

OpenClinic GA 5.173.3 listImmoLabels.jsp immoService sql injection

A vulnerability classified as critical has been found in OpenClinic GA 5.173.3. This affects some unknown processing of the file listImmoLabels.jsp. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

OpenClinic GA 5.173.3 listImmoLabels.jsp immoLocation sql injection

A vulnerability was found in OpenClinic GA 5.173.3. It has been rated as critical. Affected by this issue is an unknown code block of the file listImmoLabels.jsp. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

P4 Plugin up to 1.11.4 on Jenkins HTTP Endpoint authorization

A vulnerability was found in P4 Plugin up to 1.11.4 on Jenkins (Jenkins Plugin). It has been declared as critical. Affected by this vulnerability is an unknown code of the component HTTP Endpoint. There is no information about possible...
Auteur: VulDB

JetBrains IntelliJ IDEA up to 2020.3.2 XML information disclosure

A vulnerability was found in JetBrains IntelliJ IDEA up to 2020.3.2. It has been classified as problematic. Affected is an unknown part of the component XML Handler. Upgrading to version 2020.3.3 eliminates this vulnerability.
Auteur: VulDB

JetBrains PyCharm up to 2020.3.3 Project Local Privilege Escalation

A vulnerability was found in JetBrains PyCharm up to 2020.3.3 and classified as problematic. This issue affects some unknown functionality of the component Project Handler. Upgrading to version 2020.3.4 eliminates this vulnerability.
Auteur: VulDB

JetBrains IntelliJ IDEA 2020.3.3 Project Local Privilege Escalation

A vulnerability has been found in JetBrains IntelliJ IDEA 2020.3.3 and classified as problematic. This vulnerability affects an unknown functionality of the component Project Handler. There is no information about possible countermeasures known....
Auteur: VulDB

Samsung Galaxy S3 i9305 4.4.4 WPA/WPA2/WPA3 injection

A vulnerability, which was classified as critical, was found in Samsung Galaxy S3 i9305 4.4.4 (Smartphone Operating System). This affects an unknown function of the component WPA/WPA2/WPA3. There is no information about possible countermeasures...
Auteur: VulDB

Samsung Galaxy S3 i9305 4.4.4 WEP/WPA/WPA2/WPA3 injection

A vulnerability, which was classified as problematic, has been found in Samsung Galaxy S3 i9305 4.4.4 (Smartphone Operating System). Affected by this issue is some unknown processing of the component WEP/WPA/WPA2/WPA3. There is no information...
Auteur: VulDB

ALFA AWUS036ACH Driver 1030.36.604 on Win10 Network Configuration injection

A vulnerability classified as critical was found in ALFA AWUS036ACH Driver 1030.36.604 on Win10 (Hardware Driver Software). Affected by this vulnerability is an unknown code block of the component Network Configuration Handler. There is no...
Auteur: VulDB

ALFA AWUS036H Driver 6.1316.1209 on Win10 TKIP Frame improper enforcement of message integrity

A vulnerability classified as critical has been found in ALFA AWUS036H Driver 6.1316.1209 on Win10 (Hardware Driver Software). Affected is an unknown code of the component TKIP Frame Handler. There is no information about possible countermeasures...
Auteur: VulDB

ALFA AWUS036H Driver 6.1316.1209 on Win10 WEP/WPA/WPA2/WPA3 injection

A vulnerability was found in ALFA AWUS036H Driver 6.1316.1209 on Win10 (Hardware Driver Software). It has been rated as critical. This issue affects an unknown part of the component WEP/WPA/WPA2/WPA3. There is no information about possible...
Auteur: VulDB
First9101112131415161718Last

Événements SSI