vendredi 10 juillet 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

WebKit up to 2.26.4 AXObjectCache.cpp denial of service

A vulnerability was found in WebKit up to 2.26.4 (Web Browser). It has been rated as problematic. Affected by this issue is an unknown code of the file accessibility/AXObjectCache.cpp. There is no information about possible countermeasures known....
Auteur: VulDB

Netgear WNR1000V4 1.1.0.54 Web Management Interface setup.cgi weak authentication

A vulnerability was found in Netgear WNR1000V4 1.1.0.54. It has been declared as critical. Affected by this vulnerability is an unknown part of the file setup.cgi of the component Web Management Interface. There is no information about possible...
Auteur: VulDB

Netgear WNR1000V4 1.1.0.54 Web Management Interface setup.cgi sysDNSHost command injection

A vulnerability was found in Netgear WNR1000V4 1.1.0.54. It has been classified as critical. Affected is some unknown functionality of the file setup.cgi of the component Web Management Interface. There is no information about possible...
Auteur: VulDB

Netgear WNR1000V4 up to 1.1.0.54 Web Management Console setup.cgi GET Request cross site request forgery

A vulnerability was found in Netgear WNR1000V4 up to 1.1.0.54 and classified as problematic. This issue affects an unknown functionality of the file setup.cgi?todo=save_htp_account of the component Web Management Console. There is no information...
Auteur: VulDB

Netgear WNR1000V4 1.1.0.54 Web Management Console setup.cgi cross site scripting

A vulnerability has been found in Netgear WNR1000V4 1.1.0.54 and classified as problematic. This vulnerability affects an unknown function of the file setup.cgi of the component Web Management Console. There is no information about possible...
Auteur: VulDB

Mitel MiCollab AWV up to 8.1.2.1 Web Conferencing registeredList.cgi sql injection

A vulnerability, which was classified as critical, was found in Mitel MiCollab AWV up to 8.1.2.1. This affects some unknown processing of the file registeredList.cgi of the component Web Conferencing. Upgrading to version 8.1.2.2 eliminates this...
Auteur: VulDB

Mitel MiCollab AWV up to 8.1.2.1 Web Conferencing session sql injection

A vulnerability, which was classified as critical, has been found in Mitel MiCollab AWV up to 8.1.2.1. Affected by this issue is an unknown code block of the component Web Conferencing. Upgrading to version 8.1.2.2 eliminates this vulnerability.
Auteur: VulDB

Mitel MiCollab AWV up to 8.1.2.1 Web Conferencing Reflected cross site scripting

A vulnerability classified as problematic was found in Mitel MiCollab AWV up to 8.1.2.1. Affected by this vulnerability is an unknown code of the component Web Conferencing. Upgrading to version 8.1.2.2 eliminates this vulnerability.
Auteur: VulDB

Mitel MiCollab App up to 9.0.14 on Android Reflected cross site scripting

A vulnerability classified as problematic has been found in Mitel MiCollab App up to 9.0.14 on Android (Android App Software). Affected is an unknown part. Upgrading to version 9.0.15 eliminates this vulnerability.
Auteur: VulDB

SuSE Linux Enterprise Server 12/15 Use-After-Free memory corruption

A vulnerability was found in SuSE Linux Enterprise Server 12/15. It has been rated as critical. This issue affects some unknown functionality. Upgrading eliminates this vulnerability.
Auteur: VulDB

SuSE Linux Enterprise Server 12/15 Wicked Use-After-Free memory corruption

A vulnerability was found in SuSE Linux Enterprise Server 12/15 (Operating System). It has been declared as critical. This vulnerability affects an unknown functionality of the component Wicked. Applying a patch is able to eliminate this problem.
Auteur: VulDB

SuSE Linux Enterprise Server 12/15 MariaDB Symlink privilege escalation

A vulnerability was found in SuSE Linux Enterprise Server 12/15 (Operating System). It has been classified as critical. This affects an unknown function of the component MariaDB. Applying a patch is able to eliminate this problem.
Auteur: VulDB

SuSE Linux Enterprise Server 12/15 openSUSE Factory Symlink privilege escalation

A vulnerability was found in SuSE Linux Enterprise Server 12/15 (Operating System) and classified as critical. Affected by this issue is some unknown processing of the component openSUSE Factory. There is no information about possible...
Auteur: VulDB

Mitel 6800/6900 up to 5.1.0.2051 SP2 SRTP Key Man-in-the-Middle weak encryption

A vulnerability has been found in Mitel 6800 and 6900 up to 5.1.0.2051 SP2 and classified as problematic. Affected by this vulnerability is an unknown code block of the component SRTP Key Handler. There is no information about possible...
Auteur: VulDB

FasterXML jackson-databind up to 2.9.9 enableDefaultTyping() privilege escalation

A vulnerability, which was classified as critical, was found in FasterXML jackson-databind up to 2.9.9. Affected is the function enableDefaultTyping(). Upgrading to version 2.9.10 or 2.10.0 eliminates this vulnerability.
Auteur: VulDB

FasterXML jackson-databind up to 2.6.7.2/2.8.11.4/2.9.9 Deserialization privilege escalation

A vulnerability, which was classified as critical, has been found in FasterXML jackson-databind up to 2.6.7.2/2.8.11.4/2.9.9. This issue affects an unknown part. Upgrading to version 2.6.7.3, 2.8.11.5 or 2.9.10 eliminates this vulnerability.
Auteur: VulDB

Safescan Timemoto TM-616/Timemoto TA-8000 Access Control privilege escalation

A vulnerability classified as critical was found in Safescan Timemoto TM-616 and Timemoto TA-8000 (the affected version is unknown). This vulnerability affects some unknown functionality of the component Access Control. There is no information...
Auteur: VulDB

MikroTik RouterOS Packet Reboot denial of service

A vulnerability classified as problematic has been found in MikroTik RouterOS (Router Operating System) (the affected version unknown). This affects an unknown functionality. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Ken Silverman Build Engine 1 Map File memory corruption

A vulnerability was found in Ken Silverman Build Engine 1. It has been rated as critical. Affected by this issue is an unknown function of the component Map File Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Fleetco Fleet Maintenance Management up to 1.2 Content-Type Command privilege escalation

A vulnerability was found in Fleetco Fleet Maintenance Management up to 1.2. It has been declared as critical. Affected by this vulnerability is some unknown processing. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Monstra CMS 1.6 SVG Document cross site scripting

A vulnerability was found in Monstra CMS 1.6 (Content Management System). It has been classified as problematic. Affected is an unknown code block of the file admin/index.php?id=filesmanager&path=uploads/. There is no information about possible...
Auteur: VulDB

InfluxDB 0.9.5 Write Data Module Reflected cross site scripting

A vulnerability was found in InfluxDB 0.9.5 and classified as problematic. This issue affects an unknown code of the component Write Data Module. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

JABA XPress Online Shop up to 2018-09-14 File Upload ProductEdit.aspx Parameter privilege escalation

A vulnerability has been found in JABA XPress Online Shop up to 2018-09-14 and classified as critical. This vulnerability affects an unknown part of the file ProductEdit.aspx of the component File Upload. There is no information about possible...
Auteur: VulDB

PbootCMS api.php/Cms/search order sql injection

A vulnerability, which was classified as critical, was found in PbootCMS (the affected version unknown). This affects some unknown functionality of the file api.php/Cms/search. There is no information about possible countermeasures known. It may...
Auteur: VulDB

PbootCMS api.php/List/index order sql injection

A vulnerability, which was classified as critical, has been found in PbootCMS (affected version not known). Affected by this issue is an unknown functionality of the file api.php/List/index. There is no information about possible countermeasures...
Auteur: VulDB
First282283284285286287288289290291Last

Événements SSI