Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

sssd up to 1.x Configuration Parameter information disclosure

A vulnerability classified as problematic was found in sssd up to 1.x. Affected by this vulnerability is an unknown function of the component Configuration Parameter. The manipulation with an unknown input leads to a information disclosure...
Auteur: VulDB

Pivotal Concourse up to 4.2.1 Login Flow Open Redirect

A vulnerability was found in Pivotal Concourse up to 4.2.1. It has been rated as problematic. This issue affects an unknown function of the component Login Flow. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

LibVNC File Transfer Extension Use-After-Free memory corruption

A vulnerability, which was classified as critical, was found in LibVNC (version unknown). Affected is an unknown function of the component File Transfer Extension. The manipulation with an unknown input leads to a memory corruption vulnerability...
Auteur: VulDB

Microsoft Internet Explorer 9/10/11 Scripting Engine JScript.dll memory corruption

A vulnerability has been found in Microsoft Internet Explorer 9/10/11 and classified as critical. Affected by this vulnerability is some functionality in the library JScript.dll of the component Scripting Engine. The manipulation with an unknown...
Auteur: VulDB

Publication de l’ordonnance de réécriture de la loi Informatique et Libertés

L’ordonnance n° 2018-1125 du 12 décembre 2018, publiée le 13 décembre 2018, achève, au niveau législatif, la mise en conformité du droit national avec le Règlement général sur la protection des données règlement (RGPD) et la Directive...
Auteur: Cnil

La certification et les codes de conduite

La certification et les codes de conduite constituent de véritables sceaux de confiance, qui résultent d’une initiative de la CNIL ou d’un secteur professionnel.
Auteur: Cnil

Les cadres de référence

La CNIL élabore des cadres de référence permettant de guider les organismes dans la mise en conformité de leur traitement. Ces instruments de régulation ont vocation à donner davantage de sécurité juridique aux organismes. Ils sont élaborés en...
Auteur: Cnil

CERTFR-2018-AVI-603 : Multiples vulnérabilités dans le noyau Linux de SUSE (18 décembre 2018)

De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur et une élévation de privilèges.

Auteur: Cert FR

CERTFR-2018-AVI-602 : Multiples vulnérabilités dans Google Chrome OS (18 décembre 2018)

De multiples vulnérabilités ont été découvertes dans Google Chrome OS. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Auteur: Cert FR

libexcel 0.01 workbook.c wbook_addworksheet Long Name memory corruption

A vulnerability, which was classified as critical, has been found in libexcel 0.01. This issue affects the function wbook_addworksheet of the file workbook.c. The manipulation as part of a Long Name leads to a memory corruption vulnerability...
Auteur: VulDB

Espruino 2V00 JS File jsflash.c jsfNameFromString memory corruption

A vulnerability classified as critical was found in Espruino 2V00. This vulnerability affects the function jsfNameFromString of the file jsflash.c of the component JS File Handler. The manipulation with an unknown input leads to a memory...
Auteur: VulDB

Freeware Advanced Audio Decoder 2.8.8 libfaad/filtbank.c ifilter_bank denial of service

A vulnerability classified as problematic has been found in Freeware Advanced Audio Decoder 2.8.8. This affects the function ifilter_bank of the file libfaad/filtbank.c. The manipulation with an unknown input leads to a denial of service...
Auteur: VulDB

Freeware Advanced Audio Decoder 2.8.8 libfaad/filtbank.c ifilter_bank denial of service

A vulnerability was found in Freeware Advanced Audio Decoder 2.8.8. It has been rated as problematic. Affected by this issue is the function ifilter_bank of the file libfaad/filtbank.c. The manipulation with an unknown input leads to a denial of...
Auteur: VulDB

Freeware Advanced Audio Decoder 2.8.8 libfaad/sbr_hfadj.c calculate_gain memory corruption

A vulnerability was found in Freeware Advanced Audio Decoder 2.8.8. It has been declared as critical. Affected by this vulnerability is the function calculate_gain of the file libfaad/sbr_hfadj.c. The manipulation with an unknown input leads to...
Auteur: VulDB

Freeware Advanced Audio Decoder 2.8.8 libfaad/sbr_hfadj.c calculate_gain memory corruption

A vulnerability was found in Freeware Advanced Audio Decoder 2.8.8. It has been classified as critical. Affected is the function calculate_gain of the file libfaad/sbr_hfadj.c. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Freeware Advanced Audio Decoder 2.8.8 libfaad/ic_predict.c ic_predict denial of service

A vulnerability was found in Freeware Advanced Audio Decoder 2.8.8 and classified as problematic. This issue affects the function ic_predict of the file libfaad/ic_predict.c. The manipulation with an unknown input leads to a denial of service...
Auteur: VulDB

Freeware Advanced Audio Decoder 2.8.8 libfaad/sbr_hfadj.c calculate_gain memory corruption

A vulnerability has been found in Freeware Advanced Audio Decoder 2.8.8 and classified as critical. This vulnerability affects the function calculate_gain of the file libfaad/sbr_hfadj.c. The manipulation with an unknown input leads to a memory...
Auteur: VulDB

Artica Integria IMS 5.0.83 lista_usuarios cross site request forgery

A vulnerability, which was classified as problematic, was found in Artica Integria IMS 5.0.83. This affects an unknown function of the file godmode/usuarios/lista_usuarios. The manipulation with an unknown input leads to a cross site request...
Auteur: VulDB

Symfony up to 4.2.0 Login Form Backslash Open Redirect

A vulnerability, which was classified as problematic, has been found in Symfony up to 4.2.0. Affected by this issue is an unknown function of the component Login Form. The manipulation as part of a Backslash leads to a privilege escalation...
Auteur: VulDB

DriverAgent 2.2015.7.14 IOCTL Call DrvAgent64.sys unknown vulnerability

A vulnerability classified as critical has been found in DriverAgent 2.2015.7.14. Affected is an unknown function in the library DrvAgent64.sys of the component IOCTL Call Handler. The impact remains unknown. CVE summarizes:DriverAgent...
Auteur: VulDB

PHP Server Monitor up to 3.3.1 cross site request forgery [CVE-2018-18921]

A vulnerability was found in PHP Server Monitor up to 3.3.1. It has been rated as problematic. This issue affects an unknown function. The manipulation with an unknown input leads to a cross site request forgery vulnerability. Using CWE to...
Auteur: VulDB

D-Link DVA-5592 A1_WI_20180823 Control Panel /ui/cbpc/login PIN privilege escalation

A vulnerability was found in D-Link DVA-5592 A1_WI_20180823. It has been classified as critical. This affects an unknown function of the file /ui/cbpc/login of the component Control Panel. The manipulation of the argument PIN with the input...
Auteur: VulDB

Linux Kernel NFS41+ Subsystem bc_svc_process() memory corruption

A vulnerability was found in Linux Kernel (affected version not known) and classified as critical. Affected by this issue is the function bc_svc_process() of the component NFS41+ Subsystem. The manipulation with an unknown input leads to a...
Auteur: VulDB

ARM Trusted Firmware 1.4 Register Timing information disclosure

A vulnerability has been found in ARM Trusted Firmware 1.4 and classified as problematic. Affected by this vulnerability is an unknown function of the component Register Handler. The manipulation with an unknown input leads to a information...
Auteur: VulDB

VMware vRealize Operations up to 6.6.1/6.7.0/7.0.0 privilege escalation

A vulnerability has been found in VMware vRealize Operations up to 6.6.1/6.7.0/7.0.0 and classified as critical. Affected by this vulnerability is an unknown function. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB
First1725172617271728172917301731173217331734Last

Événements SSI