dimanche 16 février 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Adobe Framemaker up to 2019.0.4 Out-of-Bounds memory corruption

A vulnerability, which was classified as critical, was found in Adobe Framemaker up to 2019.0.4. This affects some unknown functionality. Upgrading to version 2019.0.5 eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Adobe Framemaker up to 2019.0.4 Out-of-Bounds memory corruption

A vulnerability, which was classified as critical, has been found in Adobe Framemaker up to 2019.0.4. Affected by this issue is an unknown functionality. Upgrading to version 2019.0.5 eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Google Android binder.c binder_thread_release memory corruption

A vulnerability classified as critical was found in Google Android (Smartphone Operating System) (affected version unknown). Affected by this vulnerability is the function binder_thread_release of the file binder.c. Applying a patch is able to...
Auteur: VulDB

Google Android NetworkMonitor.java notifyNetworkTested information disclosure

A vulnerability classified as problematic has been found in Google Android (Smartphone Operating System) (version unknown). Affected is the function notifyNetworkTested of the file NetworkMonitor.java. Applying a patch is able to eliminate this...
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 HidRawSensor.cpp HidRawSensor::batch memory corruption

A vulnerability was found in Google Android 8.0/8.1/9.0/10.0 (Smartphone Operating System). It has been rated as critical. This issue affects the function HidRawSensor::batch of the file HidRawSensor.cpp. Applying a patch is able to eliminate...
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 Parcel.cpp Parcel::continueWrite memory corruption

A vulnerability was found in Google Android 8.0/8.1/9.0/10.0 (Smartphone Operating System). It has been declared as critical. This vulnerability affects the function Parcel::continueWrite of the file Parcel.cpp. Applying a patch is able to...
Auteur: VulDB

Google Android Permission Check AdapterService.java setPhonebookAccessPermission information disclosure

A vulnerability was found in Google Android (Smartphone Operating System) (the affected version unknown). It has been classified as problematic. This affects the function setPhonebookAccessPermission of the file AdapterService.java of the...
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 Bluetooth packet_fragmenter.cc reassemble_and_dispatch Packet memory corruption

A vulnerability was found in Google Android 8.0/8.1/9.0/10.0 (Smartphone Operating System) and classified as problematic. Affected by this issue is the function reassemble_and_dispatch of the file packet_fragmenter.cc of the component Bluetooth...
Auteur: VulDB

Google Android 10.0 PackageManagerService.java removeUnusedPackagesLPw denial of service

A vulnerability has been found in Google Android 10.0 (Smartphone Operating System) and classified as problematic. Affected by this vulnerability is the function removeUnusedPackagesLPw of the file PackageManagerService.java. Applying a patch is...
Auteur: VulDB

Google Android 10.0 ExifInterface.java getAttributeRange Media File information disclosure

A vulnerability, which was classified as problematic, was found in Google Android 10.0 (Smartphone Operating System). Affected is the function getAttributeRange of the file ExifInterface.java. There is no information about possible...
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 InputDispatcher.cpp appendDescription information disclosure

A vulnerability, which was classified as problematic, has been found in Google Android 8.0/8.1/9.0/10.0 (Smartphone Operating System). This issue affects the function MotionEntry::appendDescription of the file InputDispatcher.cpp. Applying a...
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 privilege escalation [CVE-2020-0017]

A vulnerability classified as critical was found in Google Android 8.0/8.1/9.0/10.0. This vulnerability affects an unknown code block. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 CertInstaller.java onCreate privilege escalation

A vulnerability classified as critical has been found in Google Android 8.0/8.1/9.0/10.0 (Smartphone Operating System). This affects the function onCreate of the file CertInstaller.java. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 Window privilege escalation

A vulnerability was found in Google Android 8.0/8.1/9.0/10.0. It has been rated as critical. Affected by this issue is an unknown part of the component Window Handler. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 btm_acl.cc btm_read_remote_ext_features_complete memory corruption

A vulnerability was found in Google Android 8.0/8.1/9.0/10.0. It has been declared as critical. Affected by this vulnerability is the function btm_read_remote_ext_features_complete of the file btm_acl.cc. Applying a patch is able to eliminate...
Auteur: VulDB

IBM UrbanCode Deploy/UrbanCode Build information disclosure [CVE-2019-4666]

A vulnerability was found in IBM UrbanCode Deploy and UrbanCode Build (version unknown). It has been classified as problematic. Affected is an unknown functionality. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

IBM Tivoli Monitoring Service up to 6.3.0.7.10 denial of service

A vulnerability was found in IBM Tivoli Monitoring Service up to 6.3.0.7.10 and classified as problematic. This issue affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Google Android 10 PermissionManagerService.java updatePermissions privilege escalation

A vulnerability has been found in Google Android 10 and classified as critical. This vulnerability affects the function updatePermissions of the file PermissionManagerService.java. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Lexmark MS812 Embedded Web Server Stored cross site scripting

A vulnerability, which was classified as problematic, was found in Lexmark MS812 (the affected version unknown). This affects an unknown code block of the component Embedded Web Server. There is no information about possible countermeasures...
Auteur: VulDB

TimeTools T550 Cookie t3.cgi t3axs weak authentication

A vulnerability, which was classified as critical, was found in TimeTools SC7105, SC9205, SC9705, SR7110, SR9210, SR9750, SR9850, T100, T300 and T550. This affects an unknown functionality of the file t3.cgi of the component Cookie Handler. There...
Auteur: VulDB

TimeTools T550 t3.cgi srmodel/srtime privilege escalation

A vulnerability, which was classified as critical, has been found in TimeTools SC7105, SC9205, SC9705, SR7110, SR9210, SR9750, SR9850, T100, T300 and T550. Affected by this issue is an unknown function of the file t3.cgi. There is no information...
Auteur: VulDB

D-Link DIR-842 REVC v3.13B09 HOTFIX /MTFWU strcpy LOGINPASSWORD memory corruption

A vulnerability classified as critical was found in D-Link DIR-842 REVC v3.13B09 HOTFIX (Router Operating System). Affected by this vulnerability is the function strcpy of the file /MTFWU. There is no information about possible countermeasures...
Auteur: VulDB

WeeChat up to 2.7 plugins/irc/irc-mode.c irc_mode_channel_update memory corruption

A vulnerability classified as critical has been found in WeeChat up to 2.7 (Chat Software). Affected is the function irc_mode_channel_update of the file plugins/irc/irc-mode.c. There is no information about possible countermeasures known. It may...
Auteur: VulDB

OpenVPN Access Server 2.8.0 LDAP weak authentication

A vulnerability was found in OpenVPN Access Server 2.8.0 (Network Encryption Software). It has been rated as critical. This issue affects an unknown code of the component LDAP Handler. Upgrading to version 2.8.1 eliminates this vulnerability.
Auteur: VulDB

Radeon AMD User Experience Program Launcher up to 1.0.0.1 AUEPLauncher Service File Name privilege escalation

A vulnerability was found in Radeon AMD User Experience Program Launcher up to 1.0.0.1. It has been declared as critical. This vulnerability affects an unknown part of the component AUEPLauncher Service. There is no information about possible...
Auteur: VulDB
12345678910Last

Événements SSI