Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Webroot BrightCloud SDK HTTP Client TLS Certificate weak encryption

A vulnerability, which was classified as critical, was found in Webroot BrightCloud SDK (version unknown). Affected is an unknown function of the component HTTP Client. The manipulation as part of a TLS Certificate leads to a weak encryption...
Auteur: VulDB

Symfony up to 4.2.0 __toString() information disclosure

A vulnerability classified as problematic was found in Symfony up to 4.2.0. Affected by this vulnerability is the function UploadedFile::__toString(). The manipulation with an unknown input leads to a information disclosure vulnerability. The...
Auteur: VulDB

IBM Event Streams 2018.3.0 API Request Header privilege escalation

A vulnerability was found in IBM Event Streams 2018.3.0. It has been declared as critical. This vulnerability affects an unknown function of the component API. The manipulation as part of a Request Header leads to a privilege escalation...
Auteur: VulDB

Google gVisor prior 2018-08-22 Pagetable Crafted Application denial of service

A vulnerability was found in Google gVisor. It has been rated as problematic. Affected by this issue is an unknown function of the component Pagetable Handler. The manipulation as part of a Crafted Application leads to a denial of service...
Auteur: VulDB

Terminology up to 1.3.0 /usr/share/applications) handle_unknown_media() popmedia Code Execution

A vulnerability was found in Terminology up to 1.3.0. It has been declared as critical. Affected by this vulnerability is the function handle_unknown_media() of the file /usr/share/applications). The manipulation of the argument popmedia with an...
Auteur: VulDB

Zoho ManageEngine OpManager up to 12.2 getGraphData API sql injection

A vulnerability was found in Zoho ManageEngine OpManager up to 12.2. It has been classified as critical. This affects an unknown function of the component getGraphData API. The manipulation with an unknown input leads to a sql injection...
Auteur: VulDB

OpenStack Keystone up to 14.0.1 POST Request /v3/auth/tokens information disclosure

A vulnerability was found in OpenStack Keystone up to 14.0.1 and classified as problematic. Affected by this issue is an unknown function of the file /v3/auth/tokens of the component POST Request Handler. The manipulation with an unknown input...
Auteur: VulDB

Linux Kernel up to 4.19.8 USB Subsystem drivers/usb/core/usb.c __usb_get_extra_descriptor unknown vulnerability

A vulnerability has been found in Linux Kernel up to 4.19.8 and classified as problematic. Affected by this vulnerability is the function __usb_get_extra_descriptor of the file drivers/usb/core/usb.c of the component USB Subsystem. The impact...
Auteur: VulDB

Rendertron 1.0.0 Error Reporting Reflected cross site scripting

A vulnerability classified as problematic has been found in Rendertron 1.0.0. This affects an unknown function of the component Error Reporting. The manipulation with an unknown input leads to a cross site scripting vulnerability (Reflected)....
Auteur: VulDB

Rendertron 1.0.0 node_modules Attribute information disclosure

A vulnerability, which was classified as problematic, was found in Rendertron 1.0.0. Affected is an unknown function of the component node_modules. The manipulation as part of a Attribute leads to a information disclosure vulnerability. CWE is...
Auteur: VulDB

Rendertron 1.0.0 Protocol Local File Inclusion

A vulnerability, which was classified as problematic, has been found in Rendertron 1.0.0. This issue affects an unknown function of the component Protocol Handler. The manipulation with an unknown input leads to a information disclosure...
Auteur: VulDB

Rendertron 1.0.0 GET Request denial of service

A vulnerability classified as problematic was found in Rendertron 1.0.0. This vulnerability affects an unknown function. The manipulation as part of a GET Request leads to a denial of service vulnerability. The CWE definition for the...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 UserPopupAddNewProp.jsp ConnPoolName cross site scripting

A vulnerability classified as problematic was found in InfoVista VistaPortal SE 5.1. Affected by this vulnerability is an unknown function of the file /VPortal/mgtconsole/UserPopupAddNewProp.jsp. The manipulation of the argument ConnPoolName as...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 Subscriptions.jsp ConnPoolName/GroupId cross site scripting

A vulnerability classified as problematic has been found in InfoVista VistaPortal SE 5.1. Affected is an unknown function of the file /VPortal/mgtconsole/Subscriptions.jsp. The manipulation of the argument ConnPoolName/GroupId as part of a...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 Subscribers.jsp ConnPoolName/GroupId cross site scripting

A vulnerability was found in InfoVista VistaPortal SE 5.1. It has been rated as problematic. This issue affects an unknown function of the file /VPortal/mgtconsole/Subscribers.jsp. The manipulation of the argument ConnPoolName/GroupId as part of...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 SubFolderPackages.jsp GroupId cross site scripting

A vulnerability was found in InfoVista VistaPortal SE 5.1. It has been declared as problematic. This vulnerability affects an unknown function of the file /VPortal/mgtconsole/SubFolderPackages.jsp. The manipulation of the argument GroupId as...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 Import.jsp ConnPoolName cross site scripting

A vulnerability was found in InfoVista VistaPortal SE 5.1. It has been classified as problematic. This affects an unknown function of the file /VPortal/mgtconsole/Import.jsp. The manipulation of the argument ConnPoolName as part of a Parameter...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 GroupMove.jsp ConnPoolName/GroupId/type cross site scripting

A vulnerability was found in InfoVista VistaPortal SE 5.1 and classified as problematic. Affected by this issue is an unknown function of the file /VPortal/mgtconsole/GroupMove.jsp. The manipulation of the argument ConnPoolName/GroupId/type as...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 GroupCopy.jsp ConnPoolName/GroupId/type cross site scripting

A vulnerability has been found in InfoVista VistaPortal SE 5.1 and classified as problematic. Affected by this vulnerability is an unknown function of the file /VPortal/mgtconsole/GroupCopy.jsp. The manipulation of the argument...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 Variables.jsp ConnPoolName/GroupId cross site scripting

A vulnerability, which was classified as problematic, was found in InfoVista VistaPortal SE 5.1. Affected is an unknown function of the file Variables.jsp. The manipulation of the argument ConnPoolName/GroupId as part of a Parameter leads to a...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 PresentSpace.jsp GroupId/ConnPoolName cross site scripting

A vulnerability, which was classified as problematic, has been found in InfoVista VistaPortal SE 5.1. This issue affects an unknown function of the file PresentSpace.jsp. The manipulation of the argument GroupId/ConnPoolName as part of a...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 EditCurrentUser.jsp GroupId/ConnPoolName cross site scripting

A vulnerability classified as problematic was found in InfoVista VistaPortal SE 5.1. This vulnerability affects an unknown function of the file EditCurrentUser.jsp. The manipulation of the argument GroupId/ConnPoolName as part of a Parameter...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 EditCurrentPresentSpace.jsp ConnPoolName/GroupId/ParentId cross site scripting

A vulnerability classified as problematic has been found in InfoVista VistaPortal SE 5.1. This affects an unknown function of the file EditCurrentPresentSpace.jsp. The manipulation of the argument ConnPoolName/GroupId/ParentId as part of a...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 EditCurrentPool.jsp PropName cross site scripting

A vulnerability was found in InfoVista VistaPortal SE 5.1. It has been rated as problematic. Affected by this issue is an unknown function of the file EditCurrentPool.jsp. The manipulation of the argument PropName as part of a Parameter leads to...
Auteur: VulDB

InfoVista VistaPortal SE 5.1 Users.jsp ConnPoolName cross site scripting

A vulnerability was found in InfoVista VistaPortal SE 5.1. It has been declared as problematic. Affected by this vulnerability is an unknown function of the file Users.jsp. The manipulation of the argument ConnPoolName as part of a Parameter...
Auteur: VulDB
First1726172717281729173017311732173317341735Last

Événements SSI