Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

sized-chunks crate up to 0.6.2 on Rust insert_from memory corruption

A vulnerability, which was classified as critical, was found in sized-chunks crate up to 0.6.2 on Rust (Rust Package). Affected is the function insert_from. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

sized-chunks crate up to 0.6.2 on Rust memory corruption [CVE-2020-25794]

A vulnerability, which was classified as critical, has been found in sized-chunks crate up to 0.6.2 on Rust (Rust Package). This issue affects an unknown function. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

sized-chunks crate up to 0.6.2 on Rust memory corruption [CVE-2020-25793]

A vulnerability classified as critical was found in sized-chunks crate up to 0.6.2 on Rust (Rust Package). This vulnerability affects some unknown processing. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

sized-chunks crate up to 0.6.2 on Rust pair() memory corruption

A vulnerability classified as critical has been found in sized-chunks crate up to 0.6.2 on Rust (Rust Package). This affects the function pair(). There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

sized-chunks crate up to 0.6.2 on Rust unit() memory corruption

A vulnerability was found in sized-chunks crate up to 0.6.2 on Rust (Rust Package). It has been rated as critical. Affected by this issue is the function unit(). There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Typesetter CMS up to 5.1 ZIP Archive File Upload privilege escalation

A vulnerability was found in Typesetter CMS up to 5.1 (Content Management System). It has been declared as critical. Affected by this vulnerability is an unknown part. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Tiny RSS prior 2020-09-16 SVG Document unknown vulnerability

A vulnerability was found in Tiny RSS. It has been classified as problematic. Upgrading to version 2020-09-16 eliminates this vulnerability. A possible mitigation has been published before and not just after the disclosure of the vulnerability.
Auteur: VulDB

Tiny RSS prior 2020-09-16 Error Message init.php $_REQUEST["url"] unknown vulnerability

A vulnerability was found in Tiny RSS and classified as problematic. This issue affects an unknown functionality of the file plugins/af_proxy_http/init.php of the component Error Message Handler. Upgrading to version 2020-09-16 eliminates this...
Auteur: VulDB

Tiny RSS prior 2020-09-16 URL unknown vulnerability [CVE-2020-25787]

A vulnerability has been found in Tiny RSS and classified as problematic. This vulnerability affects an unknown function of the component URL Handler. Upgrading to version 2020-09-16 eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

D-Link DIR-816L/DIR-803 URL Encoding webinc/js/info.php Referer Header cross site scripting

A vulnerability, which was classified as problematic, was found in D-Link DIR-816L and DIR-803 (Router Operating System) (the affected version unknown). This affects some unknown processing of the file webinc/js/info.php of the component URL...
Auteur: VulDB

Huawei HiSilicon RTSP Stream information disclosure [CVE-2020-24216] [Disputed]

A vulnerability, which was classified as problematic, has been found in Huawei HiSilicon (affected version not known). Affected by this issue is an unknown code block of the component RTSP Stream Handler. There is no information about possible...
Auteur: VulDB

Huawei HiSilicon printf memory corruption [Disputed]

A vulnerability classified as critical was found in Huawei HiSilicon (affected version unknown). Affected by this vulnerability is the function printf. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

Huawei HiSilicon box_ProcessRequest File Upload privilege escalation [Disputed]

A vulnerability classified as critical has been found in Huawei HiSilicon (version unknown). Affected is the function box_ProcessRequest. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

Huawei HiSilicon box_ProcessRequest directory traversal [Disputed]

A vulnerability was found in Huawei HiSilicon (unknown version). It has been rated as problematic. This issue affects the function box_ProcessRequest. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

Huawei HiSilicon Telnet Service privilege escalation [CVE-2020-24218] [Disputed]

A vulnerability was found in Huawei HiSilicon (the affected version is unknown). It has been declared as critical. This vulnerability affects an unknown functionality of the component Telnet Service. There is no information about possible...
Auteur: VulDB

Huawei HiSilicon Backdoor weak authentication [CVE-2020-24215] [Disputed]

A vulnerability was found in Huawei HiSilicon (the affected version unknown). It has been classified as critical. This affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Huawei Taurus-AN00B prior 10.1.0.156(C00E155R7P2) Use-After-Free memory corruption

A vulnerability was found in Huawei Taurus-AN00B and classified as critical. Affected by this issue is some unknown processing. Upgrading to version 10.1.0.156(C00E155R7P2) eliminates this vulnerability.
Auteur: VulDB

Citrix XenMobile Server up to 10.9 RP4/10.10 RP5/10.11 RP3/10.12 RP1 weak authentication

A vulnerability has been found in Citrix XenMobile Server up to 10.9 RP4/10.10 RP5/10.11 RP3/10.12 RP1 (Connectivity Software) and classified as critical. Affected by this vulnerability is an unknown code block. Applying the patch 10.9 RP5/10.10...
Auteur: VulDB

libuv up to 10.22.0/12.18.3/14.8.x realpath memory corruption

A vulnerability, which was classified as critical, was found in libuv up to 10.22.0/12.18.3/14.8.x. Affected is the function realpath. Upgrading to version 10.22.1, 12.18.4 or 14.9.0 eliminates this vulnerability.
Auteur: VulDB

Node.js up to 14.10.x Request denial of service

A vulnerability, which was classified as problematic, has been found in Node.js up to 14.10.x (JavaScript Library). This issue affects an unknown part. Upgrading to version 14.11.0 eliminates this vulnerability.
Auteur: VulDB

Citrix ADC/Gateway/NetScaler Gateway/SD-WAN WANOP Management Interface privilege escalation

A vulnerability classified as critical was found in Citrix ADC, Gateway, NetScaler Gateway and SD-WAN WANOP (Network Management Software) (the affected version is unknown). This vulnerability affects some unknown functionality of the component...
Auteur: VulDB

Citrix ADC/Gateway/NetScaler Gateway/SD-WAN WANOP Management Network denial of service

A vulnerability classified as problematic has been found in Citrix ADC, Gateway, NetScaler Gateway and SD-WAN WANOP (Network Management Software) (the affected version unknown). This affects an unknown functionality of the component Management...
Auteur: VulDB

Citrix ADC/Gateway/NetScaler Gateway/SD-WAN WANOP SSL VPN Web Portal HTML Injection cross site scripting

A vulnerability was found in Citrix ADC, Gateway, NetScaler Gateway and SD-WAN WANOP (Network Management Software) (affected version not known). It has been rated as problematic. Affected by this issue is an unknown function of the component SSL...
Auteur: VulDB

json-bigint up to 0.x on npm denial of service [CVE-2020-8237]

A vulnerability was found in json-bigint up to 0.x on npm. It has been declared as problematic. Affected by this vulnerability is some unknown processing. Upgrading to version 1.0.0 eliminates this vulnerability.
Auteur: VulDB

Nextcloud Desktop Client 2.6.4 Cleartext weak encryption

A vulnerability was found in Nextcloud Desktop Client 2.6.4 (Cloud Software). It has been classified as problematic. Affected is an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB
12345678910Last

Événements SSI