Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Mozilla Firefox/Firefox ESR/Thunderbird Content Security Policy unknown vulnerability

A vulnerability was found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) (the affected version unknown). It has been classified as critical. This affects an unknown function of the component Content Security Policy Handler....
Auteur: VulDB

Mozilla Firefox up to 84.x WebRTC Share permission

A vulnerability was found in Mozilla Firefox up to 84.x (Web Browser) and classified as critical. Affected by this issue is some unknown processing of the component WebRTC Share Handler. Upgrading to version 85.0 eliminates this vulnerability....
Auteur: VulDB

Mozilla Firefox up to 84.x RowCountChanged denial of service

A vulnerability has been found in Mozilla Firefox up to 84.x (Web Browser) and classified as problematic. Affected by this vulnerability is the function RowCountChanged. Upgrading to version 85.0 eliminates this vulnerability.
Auteur: VulDB

Mozilla Firefox up to 84.x information disclosure [CVE-2021-23961]

A vulnerability, which was classified as problematic, was found in Mozilla Firefox up to 84.x (Web Browser). Affected is an unknown code. Upgrading to version 85.0 eliminates this vulnerability.
Auteur: VulDB

Mozilla Firefox/Firefox ESR/Thunderbird Garbage Collector denial of service

A vulnerability, which was classified as problematic, has been found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) (unknown version). This issue affects an unknown part of the component Garbage Collector. Upgrading eliminates this...
Auteur: VulDB

Mozilla Firefox up to 84.x on Android Error Page cross site scripting

A vulnerability classified as problematic was found in Mozilla Firefox up to 84.x on Android (Web Browser). This vulnerability affects some unknown functionality of the component Error Page Handler. Upgrading to version 85.0 eliminates this...
Auteur: VulDB

Mozilla Firefox up to 84.x Screen Sharing information disclosure

A vulnerability classified as problematic has been found in Mozilla Firefox up to 84.x (Web Browser). This affects an unknown functionality of the component Screen Sharing Handler. Upgrading to version 85.0 eliminates this vulnerability.
Auteur: VulDB

Mozilla Firefox up to 84.x on Android intent Scheme sandbox

A vulnerability was found in Mozilla Firefox up to 84.x on Android (Web Browser). It has been rated as critical. Affected by this issue is an unknown function of the component intent Scheme Handler. Upgrading to version 85.0 eliminates this...
Auteur: VulDB

Mozilla Firefox up to 84.x File Picker unrestricted upload

A vulnerability was found in Mozilla Firefox up to 84.x (Web Browser). It has been declared as critical. Affected by this vulnerability is some unknown processing of the component File Picker. Upgrading to version 85.0 eliminates this...
Auteur: VulDB

Mozilla Firefox up to 84.x Pointer Lock clickjacking

A vulnerability was found in Mozilla Firefox up to 84.x (Web Browser). It has been classified as problematic. Affected is an unknown code block of the component Pointer Lock Handler. Upgrading to version 85.0 eliminates this vulnerability. The...
Auteur: VulDB

Mozilla Firefox/Firefox ESR/Thunderbird prior 78.7 Javascript Switch memory corruption

A vulnerability was found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) and classified as critical. This issue affects an unknown code of the component Javascript Switch Handler. Upgrading to version 78.7 eliminates this...
Auteur: VulDB

Mozilla Firefox/Firefox ESR/Thunderbird PDF Reader unknown vulnerability

A vulnerability has been found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) (the affected version is unknown) and classified as critical. This vulnerability affects an unknown part of the component PDF Reader. Upgrading...
Auteur: VulDB

ZTE ZXR10 8900E up to 3.03.20R2B30P1 memory leak [CVE-2021-21724]

A vulnerability, which was classified as problematic, was found in ZTE ZXR10 8900E up to 3.03.20R2B30P1. This affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

aiohttp up to 3.7.3 on Python redirect [CVE-2021-21330]

A vulnerability, which was classified as problematic, has been found in aiohttp up to 3.7.3 on Python. Affected by this issue is an unknown functionality. Upgrading to version 3.7.4 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

Vapor up to 4.40.0 Bootstrap denial of service

A vulnerability classified as problematic was found in Vapor up to 4.40.0. Affected by this vulnerability is an unknown function of the component Bootstrap Handler. Upgrading to version 4.40.1 eliminates this vulnerability. The upgrade is hosted...
Auteur: VulDB

mongo-java-driver certificate validation [CVE-2021-20328]

A vulnerability classified as critical has been found in mongo-java-driver, mongodb-driver, mongodb-driver-sync and mongodb-driver-legacy (Database Software) (version unknown). Affected is some unknown processing. Upgrading eliminates this...
Auteur: VulDB

mongodb-client-encryption 1.2.0 on Node.js certificate validation

A vulnerability was found in mongodb-client-encryption 1.2.0 on Node.js (Database Software). It has been rated as critical. This issue affects an unknown code block. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

QEMU up to 5.2.0 vmxnet3 NIC Emulator integer overflow

A vulnerability was found in QEMU up to 5.2.0 (Virtualization Software). It has been declared as critical. This vulnerability affects an unknown code of the component vmxnet3 NIC Emulator. There is no information about possible countermeasures...
Auteur: VulDB

restify-paginate 0.0.5 on Node.js HTTP Host Header denial of service

A vulnerability was found in restify-paginate 0.0.5 on Node.js (JavaScript Library). It has been classified as problematic. This affects an unknown part of the component HTTP Host Header Handler. There is no information about possible...
Auteur: VulDB

tpm2-tss up to 2.4.2/3.0.0 Initialization initialization

A vulnerability was found in tpm2-tss up to 2.4.2/3.0.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Initialization Handler. Upgrading to version 2.4.3 or 3.0.1 eliminates this...
Auteur: VulDB

gopeak masterlab 2.1.5 Upgrade.php source server-side request forgery

A vulnerability has been found in gopeak masterlab 2.1.5 and classified as critical. Affected by this vulnerability is an unknown functionality of the file Upgrade.php. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 information disclosure

A vulnerability, which was classified as problematic, has been found in Micro Focus Solutions Business Manager up to 11.7.0. This issue affects some unknown processing. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 session fixiation

A vulnerability classified as critical was found in Micro Focus Solutions Business Manager up to 11.7.0. This vulnerability affects an unknown code block. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 access control

A vulnerability classified as critical has been found in Micro Focus Solutions Business Manager up to 11.7.0. This affects an unknown code. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 cross site scriting

A vulnerability was found in Micro Focus Solutions Business Manager up to 11.7.0. It has been rated as problematic. Affected by this issue is an unknown part. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB
First10111213141516171819Last

Événements SSI