samedi 4 avril 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Huawei P30/P30 Pro/V20 Detection Module Code Execution memory corruption

A vulnerability was found in Huawei P30, P30 Pro and V20 (Smartphone Operating System) (affected version not known) and classified as critical. Affected by this issue is an unknown code of the component Detection Module. Upgrading eliminates this...
Auteur: VulDB

Huawei Honor Play up to 9.1.0 weak authentication [CVE-2019-5213]

A vulnerability has been found in Huawei Honor Play up to 9.1.0 and classified as critical. Affected by this vulnerability is an unknown part. Upgrading to version Cornell-AL00A 9.1.0.321(C00E320R1P1T8) eliminates this vulnerability.
Auteur: VulDB

IBM Spectrum Protect Plus 10.1.0/10.1.1/10.1.2/10.1.3/10.1.4 privilege escalation

A vulnerability, which was classified as critical, was found in IBM Spectrum Protect Plus 10.1.0/10.1.1/10.1.2/10.1.3/10.1.4 (Backup Software). Affected is some unknown functionality. There is no information about possible countermeasures known....
Auteur: VulDB

Systematic IRIS Standards Management 2.1 SP1 89 Reflected cross site scripting

A vulnerability, which was classified as problematic, has been found in Systematic IRIS Standards Management 2.1 SP1 89. This issue affects an unknown functionality. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Systematic IRIS WebForms 5.4 weak authentication [CVE-2019-18925]

A vulnerability classified as critical was found in Systematic IRIS WebForms 5.4. This vulnerability affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

Systematic IRIS WebForms 5.4 directory traversal [CVE-2019-18924]

A vulnerability classified as critical has been found in Systematic IRIS WebForms 5.4. This affects some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

json-jwt Gem up to 1.10.x on Ruby JWE String unknown vulnerability

A vulnerability was found in json-jwt Gem up to 1.10.x on Ruby (Ruby Gem). It has been rated as problematic. Affected by this issue is an unknown code block of the component JWE String. Upgrading to version 1.11.0 eliminates this vulnerability.
Auteur: VulDB

File Sharing Wizard 1.5.0 Build 2008 Structured Exception HTTP GET Request memory corruption

A vulnerability was found in File Sharing Wizard 1.5.0 Build 2008. It has been declared as critical. Affected by this vulnerability is an unknown code of the component Structured Exception Handler. There is no information about possible...
Auteur: VulDB

Hitachi Command Suite up to 7.x/8.6.x Resource Exhaustion denial of service

A vulnerability was found in Hitachi Command Suite up to 7.x/8.6.x. It has been classified as problematic. Affected is an unknown part. Upgrading to version 8.7.0-00 eliminates this vulnerability.
Auteur: VulDB

TIBCO EBX up to 3.20.13/4.1.0/4.2.0/4.2.1/4.2.2 Digital Asset Manager Web Interface Stored cross site scripting

A vulnerability was found in TIBCO EBX up to 3.20.13/4.1.0/4.2.0/4.2.1/4.2.2 and classified as problematic. This issue affects some unknown functionality of the component Digital Asset Manager Web Interface. There is no information about possible...
Auteur: VulDB

TIBCO EBX up to 3.20.13/4.1.0 Data Exchange Web Interface Stored cross site scripting

A vulnerability has been found in TIBCO EBX up to 3.20.13/4.1.0 and classified as problematic. This vulnerability affects an unknown functionality of the component Data Exchange Web Interface. There is no information about possible...
Auteur: VulDB

TIBCO EBX 5.8.1.fixR/5.9.3/5.9.4/5.9.5/5.9.6 Web Server Reflected cross site scripting

A vulnerability, which was classified as problematic, was found in TIBCO EBX 5.8.1.fixR/5.9.3/5.9.4/5.9.5/5.9.6. This affects an unknown function of the component Web Server. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

igniteup Plugin up to 3.4 on WordPress class-coming-soon-creator.php cross site request forgery

A vulnerability, which was classified as problematic, has been found in igniteup Plugin up to 3.4 on WordPress (WordPress Plugin). Affected by this issue is some unknown processing of the file includes/class-coming-soon-creator.php. There is no...
Auteur: VulDB

igniteup Plugin up to 3.4 on WordPress class-coming-soon-creator.php cross site scripting

A vulnerability classified as problematic was found in igniteup Plugin up to 3.4 on WordPress (WordPress Plugin). Affected by this vulnerability is an unknown code block of the file includes/class-coming-soon-creator.php. There is no information...
Auteur: VulDB

igniteup Plugin up to 3.4 on WordPress class-coming-soon-creator.php information disclosure

A vulnerability classified as problematic has been found in igniteup Plugin up to 3.4 on WordPress (WordPress Plugin). Affected is an unknown code of the file includes/class-coming-soon-creator.php. There is no information about possible...
Auteur: VulDB

igniteup Plugin up to 3.4 on WordPress class-coming-soon-creator.php denial of service

A vulnerability was found in igniteup Plugin up to 3.4 on WordPress (WordPress Plugin). It has been rated as problematic. This issue affects an unknown part of the file includes/class-coming-soon-creator.php. There is no information about...
Auteur: VulDB

ZyXEL P-1302-T10D v3 up to 2.00(ABBX.3) Access Control privilege escalation

A vulnerability was found in ZyXEL P-1302-T10D v3 up to 2.00(ABBX.3) (Router Operating System). It has been classified as critical. This affects an unknown functionality of the component Access Control. There is no information about possible...
Auteur: VulDB

Microsoft Office 2016/2019 on Mac Excel Document privilege escalation

A vulnerability was found in Microsoft Office 2016/2019 on Mac (Office Suite Software) and classified as critical. Affected by this issue is an unknown function of the component Excel. Applying a patch is able to eliminate this problem. A...
Auteur: VulDB

Slack-Chat up to 1.5.5 Slack Access Token information disclosure

A vulnerability has been found in Slack-Chat up to 1.5.5 (Messaging Software) and classified as problematic. Affected by this vulnerability is some unknown processing of the component Slack Access Token Handler. There is no information about...
Auteur: VulDB

WP SlackSync Plugin up to 1.8.5 on WordPress Slack Access Token information disclosure

A vulnerability, which was classified as problematic, was found in WP SlackSync Plugin up to 1.8.5 on WordPress (WordPress Plugin). Affected is an unknown code block of the component Slack Access Token Handler. There is no information about...
Auteur: VulDB

Intercom Plugin up to 1.2.1 on WordPress Slack Access Token information disclosure

A vulnerability, which was classified as problematic, has been found in Intercom Plugin up to 1.2.1 on WordPress (WordPress Plugin). This issue affects an unknown code of the component Slack Access Token Handler. There is no information about...
Auteur: VulDB

CERTFR-2019-AVI-559 : Multiples vulnérabilités dans Xen (13 novembre 2019)

De multiples vulnérabilités ont été découvertes dans Xen. Elles permettent à un attaquant de provoquer un déni de service à distance et une atteinte à la confidentialité des données.

Auteur: Cert FR

AUO SunVeillance Monitoring System up to 1.1.9 mvc_send_mail.aspx plant_no sql injection

A vulnerability classified as critical was found in AUO SunVeillance Monitoring System up to 1.1.9. This vulnerability affects an unknown part of the file mvc_send_mail.aspx. Upgrading to version 1.1.9e eliminates this vulnerability.
Auteur: VulDB

AUO SunVeillance Monitoring System up to 1.1.9 Access Control Picture_Manage_mvc.aspx authority privilege escalation

A vulnerability classified as critical has been found in AUO SunVeillance Monitoring System up to 1.1.9. This affects some unknown functionality of the file Picture_Manage_mvc.aspx of the component Access Control. Upgrading to version 1.1.9e...
Auteur: VulDB

Microsoft Windows up to Server 2019 Hyper-V Network Switch Remote Code Execution

A vulnerability was found in Microsoft Windows (Operating System). It has been rated as critical. Affected by this issue is an unknown functionality of the component Hyper-V Network Switch. Applying a patch is able to eliminate this problem. A...
Auteur: VulDB
First286287288289290291292293294295Last

Événements SSI