A vulnerability was found in Google Android (Smartphone Operating System) and classified as critical. Affected by this issue is a part of the component NVIDIA Tegra OpenMax Driver. The manipulation with an unknown input leads to a privilege...
A vulnerability has been found in Atlassian Crowd up to 3.2.6/3.3.3 and classified as critical. Affected by this vulnerability is a functionality of the component Session Expiration. The manipulation with an unknown input leads to a weak...
A vulnerability, which was classified as problematic, was found in Atlassian Confluence Server and Data Center up to 6.13.0. Affected is a function of the component Word Export. The manipulation with an unknown input leads to a information...
A vulnerability, which was classified as problematic, has been found in Atlassian JIRA up to 7.6.10/7.13.0 (Bug Tracking Software). This issue affects some functionality of the component Labels Widget Gadget. The manipulation with an unknown...
A vulnerability classified as problematic was found in UA-Parser UAP-Core up to 0.5.x. This vulnerability affects the functionality of the file regex.yaml. The manipulation of the argument User-Agent as part of a HTTP Header leads to a denial of...
A vulnerability classified as critical has been found in ABB CP400 Panel Builder up to 2.0.7.05. This affects an unknown function of the component TextEditor. The manipulation with an unknown input leads to a privilege escalation vulnerability...
A vulnerability was found in UNARJ32.DLL, LHMelting and LMLzh32.DLL. It has been rated as problematic. Affected by this issue is some processing of the component DLL Handler. The manipulation with an unknown input leads to a privilege escalation...
A vulnerability was found in UNLHA32.DLL up to 2.x. It has been declared as problematic. Affected by this vulnerability is a code block of the component DLL Loader. The manipulation with an unknown input leads to a privilege escalation...
A vulnerability was found in Dell ThinLinux2 up to 2.1.0.0. It has been classified as critical. Affected is code of the component Wyse Password Encoder. The manipulation with an unknown input leads to a weak encryption vulnerability (Default...
Original release date: February 12, 2019
Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.The...
Original release date: February 12, 2019
The Federal Trade Commission (FTC) has released an article addressing a rise in reports of internet romance scams. In this type of fraud, cyber criminals gain the confidence of their victims and...
Original release date: February 12, 2019
Cisco has released a security update to address a vulnerability in Network Assurance Engine. An attacker could exploit this vulnerability to obtain sensitive information.The National Cybersecurity...
Une vulnérabilité a été découverte dans Adobe Flash Player. Elle permet à un attaquant de provoquer une atteinte à la confidentialité des données.
De multiples vulnérabilités ont été découvertes dans Adobe Acrobat et Reader. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à la confidentialité des données et une élévation de privilèges.
Une vulnérabilité a été découverte dans Cisco Network Assurance Engine. Elle permet à un attaquant de provoquer un déni de service et un contournement de la politique de sécurité.
De multiples vulnérabilités ont été découvertes dans Joomla!. Elles permettent à un attaquant de provoquer un contournement de la politique de sécurité et une injection de code indirecte à distance (XSS).
Original release date: February 12, 2019
Adobe has released security updates to address vulnerabilities affecting Adobe Flash Player, Acrobat and Reader, ColdFusion, and Creative Cloud Desktop Application. An attacker could exploit some of...
De multiples vulnérabilités ont été découvertes dans Adobe ColdFusion. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et une atteinte à la confidentialité des données.
De multiples vulnérabilités ont été découvertes dans les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à l'intégrité des...
Original release date: February 12, 2019
The Cybersecurity and Infrastructure Security Agency (CISA) has added an additional session to the virtual awareness briefing on Chinese malicious cyber activity targeting managed service providers....
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE . Elles permettent à un attaquant de provoquer un déni de service et une élévation de privilèges.
A vulnerability, which was classified as problematic, was found in Verydows 2.0. Affected is a function of the file index.php?m=api&c=stats&a=count. The manipulation of the argument referrer as part of a Parameter leads to a cross site scripting...
A vulnerability was found in FreeBSD up to 11.2/12.0 (Operating System). It has been classified as critical. Affected is code of the component Unix Domain Socket Handler. The manipulation with an unknown input leads to a privilege escalation...
A vulnerability was found in FreeBSD up to 11.2/12.0 (Operating System) and classified as problematic. This issue affects a part of the component Kernel. The manipulation as part of a System Calls leads to a information disclosure vulnerability....
A vulnerability has been found in Tenable Nessus up to 8.2.1 (Testing Software) and classified as problematic. This vulnerability affects a functionality. The manipulation as part of a Request leads to a cross site scripting vulnerability...