jeudi 27 février 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

CERTFR-2019-AVI-494 : Multiples vulnérabilités dans les produits Intel (09 octobre 2019)

De multiples vulnérabilités ont été découvertes dans les produits Intel. Elles permettent à un attaquant de provoquer un déni de service, une atteinte à la confidentialité des données et une élévation de privilèges.

Auteur: Cert FR

Xen up to 4.11.x HVM privilege escalation

A vulnerability was found in Xen up to 4.11.x (Virtualization Software). It has been classified as critical. Affected is an unknown function of the component HVM Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Xen up to 4.11.x race condition privilege escalation

A vulnerability was found in Xen up to 4.11.x (Virtualization Software) and classified as critical. This issue affects some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Xen up to 4.11.x PCI race condition privilege escalation

A vulnerability has been found in Xen up to 4.11.x (Virtualization Software) and classified as critical. This vulnerability affects an unknown code block of the component PCI Handler. There is no information about possible countermeasures known....
Auteur: VulDB

Xen up to 4.11.x grant-table Transfer Request privilege escalation

A vulnerability, which was classified as critical, was found in Xen up to 4.11.x (Virtualization Software). This affects an unknown code of the component grant-table Transfer Handler. There is no information about possible countermeasures known....
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 Emails sql injection

A vulnerability, which was classified as critical, has been found in SugarCRM up to 8.0.3/9.0.1. Affected by this issue is an unknown part of the component Emails. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 pmse_Inbox sql injection

A vulnerability classified as critical was found in SugarCRM up to 8.0.3/9.0.1. Affected by this vulnerability is some unknown functionality of the component pmse_Inbox. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 UpgradeWizard PHP Code Execution privilege escalation

A vulnerability classified as critical has been found in SugarCRM up to 8.0.3/9.0.1. Affected is an unknown functionality of the component UpgradeWizard. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 Import PHP Code Execution privilege escalation

A vulnerability was found in SugarCRM up to 8.0.3/9.0.1. It has been rated as critical. This issue affects an unknown function of the component Import. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 Administration PHP Code Execution privilege escalation

A vulnerability was found in SugarCRM up to 8.0.3/9.0.1. It has been declared as critical. This vulnerability affects some unknown processing of the component Administration. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 Configurator directory traversal

A vulnerability was found in SugarCRM up to 8.0.3/9.0.1. It has been classified as critical. This affects an unknown code block of the component Configurator. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 Studio directory traversal

A vulnerability was found in SugarCRM up to 8.0.3/9.0.1 and classified as critical. Affected by this issue is an unknown code of the component Studio. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 File directory traversal

A vulnerability has been found in SugarCRM up to 8.0.3/9.0.1 and classified as critical. Affected by this vulnerability is an unknown part of the component File Handler. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 Attachment directory traversal

A vulnerability, which was classified as critical, was found in SugarCRM up to 8.0.3/9.0.1. Affected is some unknown functionality of the component Attachment Handler. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 Campaigns PHP Code Execution privilege escalation

A vulnerability, which was classified as critical, has been found in SugarCRM up to 8.0.3/9.0.1. This issue affects an unknown functionality of the component Campaigns. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 EmailMan PHP Code Execution privilege escalation

A vulnerability classified as critical was found in SugarCRM up to 8.0.3/9.0.1. This vulnerability affects an unknown function of the component EmailMan. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 Emails PHP Code Execution privilege escalation

A vulnerability classified as critical has been found in SugarCRM up to 8.0.3/9.0.1. This affects some unknown processing of the component Emails. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 Tracker PHP Code Execution privilege escalation

A vulnerability was found in SugarCRM up to 8.0.3/9.0.1. It has been rated as critical. Affected by this issue is an unknown code block of the component Tracker. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 Configurator PHP Code Execution privilege escalation

A vulnerability was found in SugarCRM up to 8.0.3/9.0.1. It has been declared as critical. Affected by this vulnerability is an unknown code of the component Configurator. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 MergeRecords PHP Code Execution privilege escalation

A vulnerability was found in SugarCRM up to 8.0.3/9.0.1. It has been classified as critical. Affected is an unknown part of the component MergeRecords. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 MergeRecords PHP Code Execution privilege escalation

A vulnerability was found in SugarCRM up to 8.0.3/9.0.1 and classified as critical. This issue affects some unknown functionality of the component MergeRecords. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 MergeRecords PHP Code Execution privilege escalation

A vulnerability has been found in SugarCRM up to 8.0.3/9.0.1 and classified as critical. This vulnerability affects an unknown functionality of the component MergeRecords. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 ModuleBuilder PHP Code Execution privilege escalation

A vulnerability, which was classified as critical, was found in SugarCRM up to 8.0.3/9.0.1. This affects an unknown function of the component ModuleBuilder. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 ModuleBuilder PHP Code Execution privilege escalation

A vulnerability, which was classified as critical, has been found in SugarCRM up to 8.0.3/9.0.1. Affected by this issue is some unknown processing of the component ModuleBuilder. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB

SugarCRM up to 8.0.3/9.0.1 Administration PHP Code Execution privilege escalation

A vulnerability classified as critical was found in SugarCRM up to 8.0.3/9.0.1. Affected by this vulnerability is an unknown code block of the component Administration. Upgrading to version 8.0.4 or 9.0.2 eliminates this vulnerability.
Auteur: VulDB
First273274275276277278279280281282Last

Événements SSI