jeudi 22 août 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

IBM Contract Management/Emptoris Spend Analysis 10.1.0/10.1.1/10.1.2/10.1.3 Back-End Database sql injection

A vulnerability, which was classified as critical, has been found in IBM Contract Management and Emptoris Spend Analysis 10.1.0/10.1.1/10.1.2/10.1.3. This issue affects some unknown processing of the component Back-End Database. There is no...
Auteur: VulDB

IBM API Connect up to 5.0.8.6 Developer Portal Request directory traversal

A vulnerability classified as critical was found in IBM API Connect up to 5.0.8.6. This vulnerability affects an unknown code block of the component Developer Portal. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

IBM API Connect up to 2018.4.1.6 API Swagger information disclosure

A vulnerability classified as problematic has been found in IBM API Connect up to 2018.4.1.6 (Automation Software). This affects an unknown code of the component API Swagger. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

IBM InfoSphere Global Name Management XML Data XML External Entity

A vulnerability was found in IBM InfoSphere Global Name Management and InfoSphere Identity Insight (Reporting Software) (affected version not known). It has been rated as critical. Affected by this issue is an unknown part of the component XML...
Auteur: VulDB

IBM Business Automation Workflow 18.0.0.0/18.0.0.1/18.0.0.2 Link information disclosure

A vulnerability was found in IBM Business Automation Workflow 18.0.0.0/18.0.0.1/18.0.0.2 (Automation Software). It has been declared as problematic. Affected by this vulnerability is some unknown functionality of the component Link Handler. There...
Auteur: VulDB

IBM Business Automation Workflow 18.0.0.0/18.0.0.1/18.0.0.2/19.0.0.1/19.0.0.2 XML Data XML External Entity

A vulnerability was found in IBM Business Automation Workflow 18.0.0.0/18.0.0.1/18.0.0.2/19.0.0.1/19.0.0.2 (Automation Software). It has been classified as critical. Affected is an unknown functionality of the component XML Data Handler. There is...
Auteur: VulDB

IBM Intelligent Operations Center 5.1.x/5.2.0 Error Message information disclosure

A vulnerability was found in IBM Intelligent Operations Center 5.1.x/5.2.0 and classified as problematic. This issue affects an unknown function of the component Error Message Handler. There is no information about possible countermeasures known....
Auteur: VulDB

IBM Intelligent Operations Center 5.1.x/5.2.0 XML Data XML External Entity

A vulnerability has been found in IBM Intelligent Operations Center 5.1.x/5.2.0 and classified as critical. This vulnerability affects some unknown processing of the component XML Data Handler. There is no information about possible...
Auteur: VulDB

IBM API Connect up to 2018.4.1.6 Developer Portal denial of service

A vulnerability, which was classified as problematic, was found in IBM API Connect up to 2018.4.1.6 (Automation Software). This affects an unknown code block of the component Developer Portal. There is no information about possible...
Auteur: VulDB

IBM Security Guardium Big Data Intelligence 4.0 XML Data XML External Entity

A vulnerability, which was classified as critical, has been found in IBM Security Guardium Big Data Intelligence 4.0 (Policy Management Software). Affected by this issue is an unknown code of the component XML Data Handler. There is no...
Auteur: VulDB

IBM Security Guardium Big Data Intelligence 4.0 Request Resource Exhaustion denial of service

A vulnerability classified as problematic was found in IBM Security Guardium Big Data Intelligence 4.0 (Policy Management Software). Affected by this vulnerability is an unknown part. There is no information about possible countermeasures known....
Auteur: VulDB

IBM Security Guardium Big Data Intelligence 4.0 Account Lockout privilege escalation

A vulnerability classified as problematic has been found in IBM Security Guardium Big Data Intelligence 4.0 (Policy Management Software). Affected is some unknown functionality of the component Account Lockout. There is no information about...
Auteur: VulDB

IBM Emptoris Sourcing 10.1.0/10.1.1/10.1.2/10.1.3 Error Message information disclosure

A vulnerability was found in IBM Emptoris Sourcing, Contract Management and Emptoris Spend Analysis 10.1.0/10.1.1/10.1.2/10.1.3. It has been rated as problematic. This issue affects an unknown functionality of the component Error Message Handler....
Auteur: VulDB

IBM DataPower Gateway/MQ Appliance command injection

A vulnerability was found in IBM DataPower Gateway and MQ Appliance (the affected version is unknown). It has been declared as problematic. This vulnerability affects an unknown function. There is no information about possible countermeasures...
Auteur: VulDB

IBM Informix Dynamic Server 12.1 Shared Library privilege escalation

A vulnerability was found in IBM Informix Dynamic Server 12.1 (Information Management Software). It has been classified as critical. This affects some unknown processing of the component Shared Library Handler. There is no information about...
Auteur: VulDB

IBM StoredIQ 7.6.0 Stored cross site request forgery

A vulnerability was found in IBM StoredIQ 7.6.0 and classified as problematic. Affected by this issue is an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace the affected object with...
Auteur: VulDB

IBM Cloud Private 3.1.1/3.1.2 Web UI cross site scripting

A vulnerability has been found in IBM Cloud Private 3.1.1/3.1.2 (Cloud Software) and classified as problematic. Affected by this vulnerability is an unknown code of the component Web UI. There is no information about possible countermeasures...
Auteur: VulDB

IBM Cloud Private 3.1.1/3.1.2 cross site request forgery

A vulnerability, which was classified as problematic, was found in IBM Cloud Private 3.1.1/3.1.2 (Cloud Software). Affected is an unknown part. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

IBM MQ 9.1.0.0/9.1.0.1/9.1.0.2/9.1.1 Error Log denial of service

A vulnerability, which was classified as problematic, has been found in IBM MQ 9.1.0.0/9.1.0.1/9.1.1/9.1.0.2. This issue affects some unknown functionality of the component Error Log Handler. There is no information about possible countermeasures...
Auteur: VulDB

OpenEMR up to 5.0.1 Scanned Forms Interface privilege escalation

A vulnerability classified as critical was found in OpenEMR up to 5.0.1 (Business Process Management Software). This vulnerability affects an unknown functionality of the component Scanned Forms Interface. There is no information about possible...
Auteur: VulDB

OpenEMR up to 5.0.1 Patient File Download Interface directory traversal

A vulnerability classified as problematic has been found in OpenEMR up to 5.0.1 (Business Process Management Software). This affects an unknown function of the component Patient File Download Interface. There is no information about possible...
Auteur: VulDB

OpenEMR up to 5.0.1 controller.php foreign_id cross site scripting

A vulnerability was found in OpenEMR up to 5.0.1 (Business Process Management Software). It has been rated as problematic. Affected by this issue is some unknown processing of the file controller.php. There is no information about possible...
Auteur: VulDB

OpenEMR up to 5.0.1 controller.php document_id cross site scripting

A vulnerability was found in OpenEMR up to 5.0.1 (Business Process Management Software). It has been declared as problematic. Affected by this vulnerability is an unknown code block of the file controller.php. There is no information about...
Auteur: VulDB

OpenEMR up to 5.0.1 controller.php doc_id cross site scripting

A vulnerability was found in OpenEMR up to 5.0.1 (Business Process Management Software). It has been classified as problematic. Affected is an unknown code of the file controller.php. There is no information about possible countermeasures known....
Auteur: VulDB

OpenEMR up to 5.0.1 controller.php patient_id cross site scripting

A vulnerability was found in OpenEMR up to 5.0.1 (Business Process Management Software) and classified as problematic. This issue affects an unknown part of the file controller.php. There is no information about possible countermeasures known. It...
Auteur: VulDB
12345678910Last

Événements SSI

LES ASSISES

Grand rendez-vous annuel des RSSI, les Assises de la sécurité des systèmes d'information se tiennent à Monaco (Grimaldi Forum) du 9 au 12 octobre 2019. Organisées par DG Consultants.

Présentation par l'organisateur



Retour sur Les Assises 2018

La 18ème édition des Assises de la Sécurité à Monaco, c’est terminé ! Encore merci aux 2800 participants dont les 160 partenaires qui pendant trois jours se sont retrouvés pour faire vivre cet événement unique en France. Conférences, one-to-one, tables-rondes, ateliers, moments de networking… Par leur contenu, par la qualité des visiteurs et par la richesse des échanges, les Assises se positionnent plus que jamais comme le rendez-vous incontournable de tous les professionnels de la cybersécurité. A l’image du marché qui ne cesse d’évoluer, les Assises savent adapter leur offre afin de répondre au mieux aux attentes du secteur. Ainsi cette édition a-t-elle voulu mettre en avant les grands enjeux du moment en multipliant les prises de parole, les démonstrations et les retours d’expérience.

Rendez-vous maintenant pour la prochaine édition qui aura lieu du 9 au 12 octobre 2019

Plus d'informations sur le site dédié à l'événement.

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes (palais des festivals) du 26 au 28 novembre 2019. Organisé par Comexposium.

Présentation de l'événement par l'organisateur

Les professionnels de la carte et des technologies de la confiance numérique se donnent à nouveau rendez-vous à TRUSTECH du 26 au 28 novembre 2019 au Palais des Festivals de Cannes pour l’événement annuel phare de leur écosystème.
Créé il y a plus de 30 ans sous le nom CARTES SECURE CONNEXIONS afin de promouvoir une technologie qui venait de naître, celle de la carte à puce, l’événement est rebaptisé TRUSTECH en 2016 pour mieux refléter l’évolution du secteur.
Mix plébiscité entre salon, congrès et lieu d’échanges, TRUSTECH 2019 englobe toutes les technologies impliquées sur les marchés liés aux paiements, à l'identification et à la sécurité.
En tant que Marketplace globale, TRUSTECH accueillera plus de 250 exposants internationaux, sponsors et startups, qui présenteront leurs dernières innovations, annonceront les lancements de produits et solutions sur leur stand ou à travers des sessions de pitch sur l’Innovation Stage, espace situé au cœur de l’événement.
Cette année, le cycle des conférences proposera durant 3 jours un contenu de pointe axé sur trois grands thèmes alignés sur l’offre TRUSTECH: Paiements, Identification et Sécurité.

Plus d'infos sur le site de l'événement.

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

Présentation par l'organisateur

Véritable plateforme d'échanges et de rencontres, le Forum International de la Cybersécurité (FIC) s'est imposé comme l'événement de référence en Europe en matière de sécurité et de confiance numérique. Son originalité est de mêler :
UN FORUM favorisant la réflexion et l'échange au sein de l'écosystème européen de la cybersécurité,
UN SALON dédié aux rencontres entre acheteurs et fournisseurs de solutions de cybersécurité.
Plus d'informations sur le site de l'événement.
RSS