vendredi 3 juillet 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

IBM DB2 9.7/10.1/10.5/11.1/11.5 Shared Memory Request privilege escalation

A vulnerability has been found in IBM DB2 9.7/10.1/10.5/11.1/11.5 and classified as critical. Affected by this vulnerability is an unknown code of the component Shared Memory. There is no information about possible countermeasures known. It may...
Auteur: VulDB

IBM DB2 9.7/10.1/10.5/11.1/11.5 race condition information disclosure

A vulnerability, which was classified as problematic, was found in IBM DB2 9.7/10.1/10.5/11.1/11.5. Affected is an unknown part. There is no information about possible countermeasures known. It may be suggested to replace the affected object with...
Auteur: VulDB

IBM DB2 9.7/10.1/10.5/11.1/11.5 race condition information disclosure

A vulnerability, which was classified as problematic, has been found in IBM DB2 9.7/10.1/10.5/11.1/11.5. This issue affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

IBM MQ/MQ Appliance/MQ for HPE NonStop 8.0.4/8.1.0 pubsub denial of service

A vulnerability classified as problematic was found in IBM MQ, MQ Appliance and MQ for HPE NonStop 8.0.4/8.1.0. This vulnerability affects an unknown functionality of the component pubsub. There is no information about possible countermeasures...
Auteur: VulDB

IBM DB2 9.7/10.1/10.5/11.1/11.5 memory corruption [CVE-2020-4363]

A vulnerability classified as critical has been found in IBM DB2 9.7/10.1/10.5/11.1/11.5. This affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

IBM DB2 9.7/10.1/10.5/11.1/11.5 SSL Renegotiation Request denial of service

A vulnerability was found in IBM DB2 9.7/10.1/10.5/11.1/11.5. It has been rated as problematic. Affected by this issue is some unknown processing of the component SSL Renegotiation Handler. There is no information about possible countermeasures...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.4/8.7.1/8.8.0 createshared information disclosure

A vulnerability was found in Atlassian JIRA Server and Data Center up to 8.5.4/8.7.1/8.8.0. It has been declared as problematic. Affected by this vulnerability is an unknown code block of the file /rest/project-templates/1.0/createshared....
Auteur: VulDB

Atlassian Confluence Server/Data Center up to 7.5.0 Template Injection privilege escalation

A vulnerability was found in Atlassian Confluence Server and Data Center up to 7.5.0. It has been classified as critical. Affected is an unknown code of the component Template Handler. Upgrading to version 7.5.1 eliminates this vulnerability.
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.4/8.8.1/8.9.0 Attachment Download cross site scripting

A vulnerability was found in Atlassian JIRA Server and Data Center up to 8.5.4/8.8.1/8.9.0 (Bug Tracking Software) and classified as problematic. This issue affects an unknown part of the component Attachment Download Handler. Upgrading to...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.4/8.8.1/8.9.0 Attachment Download cross site scripting

A vulnerability has been found in Atlassian JIRA Server and Data Center up to 8.5.4/8.8.1/8.9.0 (Bug Tracking Software) and classified as problematic. This vulnerability affects some unknown functionality of the component Attachment Download...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.4/8.8.1/8.9.0 Attachment Download cross site scripting

A vulnerability, which was classified as problematic, was found in Atlassian JIRA Server and Data Center up to 8.5.4/8.8.1/8.9.0 (Bug Tracking Software). This affects an unknown functionality of the component Attachment Download Handler....
Auteur: VulDB

Cisco Unified Customer Voice Portal RMI Interface Request information disclosure

A vulnerability, which was classified as problematic, has been found in Cisco Unified Customer Voice Portal (affected version not known). Affected by this issue is an unknown function of the component RMI Interface. Upgrading eliminates this...
Auteur: VulDB

Cisco Digital Network Architecture information disclosure [CVE-2020-3391]

A vulnerability classified as problematic was found in Cisco Digital Network Architecture (affected version unknown). Affected by this vulnerability is some unknown processing. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco Identity Services Engine Web-based Management Interface cross site scripting

A vulnerability classified as problematic has been found in Cisco Identity Services Engine (version unknown). Affected is an unknown code block of the component Web-based Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco Small Business Smart Management Interface privilege escalation

A vulnerability was found in Cisco Small Business Smart (unknown version). It has been rated as critical. This issue affects an unknown code of the component Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

QNAP Helpdesk 3.0.1 Kayako Service privilege escalation

A vulnerability was found in QNAP Helpdesk 3.0.1. It has been declared as critical. This vulnerability affects an unknown part of the component Kayako Service. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Maptiler TileServer GL up to 3.0.0 key Reflected cross site scripting

A vulnerability was found in Maptiler TileServer GL up to 3.0.0. It has been classified as problematic. This affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

WAVLINK WL-WN530HG4 M30HG4.V5030.191116 CGI Script Code Execution memory corruption

A vulnerability was found in WAVLINK WL-WN530HG4 M30HG4.V5030.191116 and classified as very critical. Affected by this issue is an unknown functionality of the component CGI Script. There is no information about possible countermeasures known. It...
Auteur: VulDB

WAVLINK WL-WN530HG4 M30HG4.V5030.191116 CGI Script Shell Metacharacter Code Execution

A vulnerability has been found in WAVLINK WL-WN530HG4 M30HG4.V5030.191116 and classified as critical. Affected by this vulnerability is an unknown function of the component CGI Script. There is no information about possible countermeasures known....
Auteur: VulDB

Journal Theme up to 3.0.x on OpenCart SQL Error information disclosure

A vulnerability, which was classified as problematic, was found in Journal Theme up to 3.0.x on OpenCart. Affected is some unknown processing of the component SQL Error Handler. Upgrading to version 3.1.0 eliminates this vulnerability.
Auteur: VulDB

nDPI up to 3.2 Oracle Protocol Dissector lib/protocols/oracle.c ndpi_search_oracle memory corruption

A vulnerability, which was classified as critical, has been found in nDPI up to 3.2. This issue affects the function ndpi_search_oracle in the library lib/protocols/oracle.c of the component Oracle Protocol Dissector. There is no information...
Auteur: VulDB

nDPI up to 3.2 lib/ndpi_main.c ndpi_reset_packet_line_info Packet memory corruption

A vulnerability classified as critical was found in nDPI up to 3.2. This vulnerability affects the function ndpi_reset_packet_line_info in the library lib/ndpi_main.c. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

nDPI up to 3.2 lib/protocols/tls.c extractRDNSequence memory corruption

A vulnerability classified as critical has been found in nDPI up to 3.2. This affects the function extractRDNSequence in the library lib/protocols/tls.c. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

nDPI up to 3.2 OpenVPN Dissector lib/protocols/openvpn.c ndpi_search_openvpn memory corruption

A vulnerability was found in nDPI up to 3.2. It has been rated as critical. Affected by this issue is the function ndpi_search_openvpn in the library lib/protocols/openvpn.c of the component OpenVPN Dissector. There is no information about...
Auteur: VulDB

nDPI up to 3.2 H.323 Dissector lib/protocols/h323.c ndpi_search_h323 Packet memory corruption

A vulnerability was found in nDPI up to 3.2. It has been declared as critical. Affected by this vulnerability is the function ndpi_search_h323 in the library lib/protocols/h323.c of the component H.323 Dissector. There is no information about...
Auteur: VulDB
12345678910Last

Événements SSI