vendredi 24 mai 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Pelco Sarix Enhanced Camera/Spectra Enhanced PTZ Camera Command privilege escalation

A vulnerability was found in Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera (unknown version). It has been rated as critical. This issue affects some processing. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Pelco Sarix Enhanced Camera/Spectra Enhanced PTZ Camera cross site request forgery

A vulnerability was found in Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera (the affected version is unknown). It has been declared as problematic. This vulnerability affects a code block. The manipulation with an unknown input...
Auteur: VulDB

Pelco Sarix Enhanced Camera/Spectra Enhanced PTZ Camera cross site scripting

A vulnerability was found in Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera (the affected version unknown). It has been classified as problematic. This affects code. The manipulation with an unknown input leads to a cross site...
Auteur: VulDB

Pelco Sarix Enhanced Camera Web-based GUI command injection [CVE-2018-7826]

A vulnerability was found in Pelco Sarix Enhanced Camera (affected version not known) and classified as critical. Affected by this issue is a part of the component Web-based GUI. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

Pelco Sarix Enhanced Camera Web-based GUI command injection [CVE-2018-7825]

A vulnerability has been found in Pelco Sarix Enhanced Camera (affected version unknown) and classified as critical. Affected by this vulnerability is a functionality of the component Web-based GUI. The manipulation with an unknown input leads...
Auteur: VulDB

Schneider Electric Modbus Serial Driver privilege escalation

A vulnerability, which was classified as critical, was found in Schneider Electric Modbus Serial Driver (Hardware Driver Software) (version unknown). Affected is a function. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Schneider Electric SoMachine Basic Remote Launch privilege escalation

A vulnerability, which was classified as critical, has been found in Schneider Electric SoMachine Basic. This issue affects some functionality of the component Remote Launch. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Schneider Electric SoMachine Basic Permission privilege escalation

A vulnerability classified as critical was found in Schneider Electric SoMachine Basic. This vulnerability affects the functionality of the component Permission. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Schneider Electric SoMachine Basic Ethernet/IP Flooding denial of service

A vulnerability classified as problematic has been found in Schneider Electric SoMachine Basic. This affects an unknown function of the component Ethernet/IP. The manipulation with an unknown input leads to a denial of service vulnerability...
Auteur: VulDB

Pelco Sarix Enhanced Camera Web GUI denial of service [CVE-2018-7816]

A vulnerability was found in Pelco Sarix Enhanced Camera (affected version not known). It has been rated as problematic. Affected by this issue is some processing of the component Web GUI. The manipulation with an unknown input leads to a denial...
Auteur: VulDB

Triconex TriStation Emulator 1.2.0 Crafted Packet Crash denial of service

A vulnerability was found in Triconex TriStation Emulator 1.2.0. It has been declared as problematic. Affected by this vulnerability is a code block. The manipulation as part of a Crafted Packet leads to a denial of service vulnerability...
Auteur: VulDB

Modicon Quantum up to 2.39 Credential Management denial of service

A vulnerability was found in Modicon Quantum up to 2.39. It has been classified as problematic. Affected is code of the component Credential Management. The manipulation with an unknown input leads to a denial of service vulnerability. CWE is...
Auteur: VulDB

ProjectSend prior r1053 My Account Page Name cross site scripting

A vulnerability was found in ProjectSend (Project Management Software) and classified as problematic. This issue affects a part of the component My Account Page. The manipulation of the argument Name with an unknown input leads to a cross site...
Auteur: VulDB

ProjectSend prior r1053 CSV Injection privilege escalation

A vulnerability has been found in ProjectSend (Project Management Software) and classified as critical. This vulnerability affects a functionality of the component CSV Handler. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

GNU gcc up to 8 ARM cfgexpand.c stack_protect_prologue privilege escalation

A vulnerability, which was classified as critical, was found in GNU gcc up to 8. This affects the function stack_protect_prologue of the file cfgexpand.c of the component ARM Handler. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

OX Software OX App Suite up to 7.8.4 information disclosure [CVE-2017-9809]

A vulnerability, which was classified as problematic, has been found in OX Software OX App Suite up to 7.8.4. Affected by this issue is some functionality. The manipulation with an unknown input leads to a information disclosure vulnerability....
Auteur: VulDB

OX Software OX App Suite up to 7.8.4 cross site scripting [CVE-2017-9808]

A vulnerability classified as problematic was found in OX Software OX App Suite up to 7.8.4. Affected by this vulnerability is the functionality. The manipulation with an unknown input leads to a cross site scripting vulnerability. The CWE...
Auteur: VulDB

Open-Xchange up to 1.4.0 Authorization privilege escalation

A vulnerability classified as critical has been found in Open-Xchange up to 1.4.0. Affected is an unknown function of the component Authorization. The manipulation with an unknown input leads to a privilege escalation vulnerability. CWE is...
Auteur: VulDB

Open-Xchange OX App Suite up to 7.8.3 Content spoofing

A vulnerability was found in Open-Xchange OX App Suite up to 7.8.3. It has been rated as critical. This issue affects some processing of the component Content Handler. The manipulation with an unknown input leads to a spoofing vulnerability....
Auteur: VulDB

Open-Xchange OX App Suite up to 7.8.3 Access Control privilege escalation

A vulnerability was found in Open-Xchange OX App Suite up to 7.8.3. It has been declared as critical. This vulnerability affects a code block of the component Access Control. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Open-Xchange OX App Suite up to 7.8.3 Access Control privilege escalation

A vulnerability was found in Open-Xchange OX App Suite up to 7.8.3. It has been classified as critical. This affects code of the component Access Control. The manipulation with an unknown input leads to a privilege escalation vulnerability. CWE...
Auteur: VulDB

WordPress 4.7.2 Post Author embed author_name information disclosure

A vulnerability was found in WordPress 4.7.2 (Content Management System) and classified as problematic. Affected by this issue is a part of the file /wp-json/oembed/1.0/embed?url of the component Post Author Handler. The manipulation of the...
Auteur: VulDB

libav 9.21 libavcodec ff_h264_execute_ref_pic_marking() memory corruption

A vulnerability has been found in libav 9.21 (Multimedia Player Software) and classified as critical. Affected by this vulnerability is the function ff_h264_execute_ref_pic_marking() of the component libavcodec. The manipulation with an unknown...
Auteur: VulDB

Odoo up to 8.0-20160726/9 Open Redirect [CVE-2017-5871]

A vulnerability, which was classified as problematic, was found in Odoo up to 8.0-20160726/9. Affected is a function. The manipulation with an unknown input leads to a privilege escalation vulnerability (Redirect). CWE is classifying the issue...
Auteur: VulDB

Open-Xchange OX App Suite up to 7.8.3 cross site scripting [CVE-2017-5864]

A vulnerability, which was classified as problematic, has been found in Open-Xchange OX App Suite up to 7.8.3. This issue affects some functionality. The manipulation with an unknown input leads to a cross site scripting vulnerability. Using CWE...
Auteur: VulDB
12345678910Last

Événements SSI

HACK IN PARIS

Pour sa 9ème édition la conférence Hack In Paris sur la sécurité IT se tient du 16 au 20 juin 2019 à Paris, Maison de la Chimie. Organisée par Sysdream.

RSS