Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Cisco Umbrella Scheduled Report csv injection [CVE-2021-1474]

A vulnerability has been found in Cisco Umbrella (the affected version is unknown) and classified as critical. This vulnerability affects an unknown functionality of the component Scheduled Report. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco Small Business RV Series Router Web-based Management Interface memory corruption

A vulnerability, which was classified as critical, was found in Cisco Small Business RV Series Router (Router Operating System) (the affected version unknown). This affects an unknown function of the component Web-based Management Interface....
Auteur: VulDB

Cisco Small Business RV Series Router Web-based Management Interface memory corruption

A vulnerability, which was classified as critical, has been found in Cisco Small Business RV Series Router (Router Operating System) (affected version not known). Affected by this issue is some unknown processing of the component Web-based...
Auteur: VulDB

Cisco Webex Meetings Client on Android Avatar access control

A vulnerability classified as critical was found in Cisco Webex Meetings Client on Android (Unified Communication Software) (affected version unknown). Affected by this vulnerability is an unknown code block of the component Avatar Handler....
Auteur: VulDB

Cisco Unified Intelligence Center Web-based Management Interface cross site scripting

A vulnerability classified as problematic has been found in Cisco Unified Intelligence Center (version unknown). Affected is an unknown code of the component Web-based Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco RV110W/RV130/RV130W/RV215W Web-based Management Interface memory corruption

A vulnerability was found in Cisco RV110W, RV130, RV130W and RV215W (Router Operating System) (unknown version). It has been rated as very critical. This issue affects an unknown part of the component Web-based Management Interface. Upgrading...
Auteur: VulDB

CERTFR-2021-AVI-246 : Multiples vulnérabilités dans les produits Cisco (08 avril 2021)

De multiples vulnérabilités ont été découvertes dans les produits Cisco. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique...
Auteur: Cert FR

Cisco Webex Meetings on cross site scriting

A vulnerability was found in Cisco Webex Meetings (Unified Communication Software) (the affected version is unknown). It has been declared as problematic. This vulnerability affects some unknown functionality. Upgrading eliminates this...
Auteur: VulDB

Cisco RV340/RV340W/RV345/RV345P Web-based Management Interface deserialization

A vulnerability was found in Cisco RV340, RV340W, RV345 and RV345P (Router Operating System) (the affected version unknown). It has been classified as critical. This affects an unknown functionality of the component Web-based Management...
Auteur: VulDB

Cisco RV340/RV340W/RV345/RV345P Web-based Management Interface deserialization

A vulnerability was found in Cisco RV340, RV340W, RV345 and RV345P (Router Operating System) (affected version not known) and classified as critical. Affected by this issue is an unknown function of the component Web-based Management Interface....
Auteur: VulDB

Cisco RV340/RV340W/RV345/RV345P Web-based Management Interface deserialization

A vulnerability has been found in Cisco RV340, RV340W, RV345 and RV345P (Router Operating System) (affected version unknown) and classified as critical. Affected by this vulnerability is some unknown processing of the component Web-based...
Auteur: VulDB

Cisco Unified Communications Manager Web-based Management Interface cross site scripting

A vulnerability, which was classified as problematic, was found in Cisco Unified Communications Manager, Unified Communications Manager IM & Presence Service, Unified Communications Manager Session Management Edition and Unity Connection (Unified...
Auteur: VulDB

Cisco Unified Communications Manager Web-based Management Interface cross site scripting

A vulnerability, which was classified as problematic, has been found in Cisco Unified Communications Manager, Unified Communications Manager IM & Presence Service, Unified Communications Manager Session Management Edition and Unity Connection...
Auteur: VulDB

Cisco Unified Communications Manager Web-based Management Interface cross site scripting

A vulnerability classified as problematic was found in Cisco Unified Communications Manager, Unified Communications Manager IM & Presence Service, Unified Communications Manager Session Management Edition and Unity Connection (Unified...
Auteur: VulDB

Cisco Unified Communications Manager file information disclosure

A vulnerability classified as problematic has been found in Cisco Unified Communications Manager and Unified Communications Manager Session Management Edition (Unified Communication Software) (the affected version unknown). This affects some...
Auteur: VulDB

Cisco Unified Communications Manager Self Care Portal improper authentication

A vulnerability was found in Cisco Unified Communications Manager and Unified Communications Manager Session Management Edition (Unified Communication Software) (affected version not known). It has been rated as critical. Affected by this issue...
Auteur: VulDB

Cisco Advanced Malware Protection/Immunet on Windows DLL Loader uncontrolled search path

A vulnerability was found in Cisco Advanced Malware Protection and Immunet on Windows (Anti-Malware Software) (affected version unknown). It has been declared as critical. Affected by this vulnerability is an unknown function of the component DLL...
Auteur: VulDB

Cisco Unified Communications Manager Web-based Management Interface cross site scripting

A vulnerability was found in Cisco Unified Communications Manager, Unified Communications Manager IM & Presence Service, Unified Communications Manager Session Management Edition and Unity Connection (Unified Communication Software) (version...
Auteur: VulDB

Cisco Unified Communications Manager SOAP API Endpoint code injection

A vulnerability was found in Cisco Unified Communications Manager, Unified Communications Manager Session Management Edition, Unified Communications Manager IM & Presence Service, Unity Connection and Prime License Manager (Unified Communication...
Auteur: VulDB

Cisco Small Business RV Series Router Link Layer Discovery Protocol memory corruption

A vulnerability has been found in Cisco Small Business RV Series Router (Router Operating System) (the affected version is unknown) and classified as critical. This vulnerability affects an unknown code of the component Link Layer Discovery...
Auteur: VulDB

Cisco Small Business RV Series Router Link Layer Discovery Protocol memory corruption

A vulnerability, which was classified as critical, was found in Cisco Small Business RV Series Router (Router Operating System) (the affected version unknown). This affects an unknown part of the component Link Layer Discovery Protocol. Upgrading...
Auteur: VulDB

Cisco Small Business RV Series Router Link Layer Discovery Protocol memory corruption

A vulnerability, which was classified as critical, has been found in Cisco Small Business RV Series Router (Router Operating System) (affected version not known). Affected by this issue is some unknown functionality of the component Link Layer...
Auteur: VulDB

Cisco SD-WAN vManage Software memory corruption [CVE-2021-1137]

A vulnerability classified as critical was found in Cisco SD-WAN vManage Software (Network Management Software) (affected version unknown). Affected by this vulnerability is an unknown functionality. Upgrading eliminates this vulnerability.
Auteur: VulDB

CERTFR-2021-AVI-245 : Multiples vulnérabilités dans le noyau Linux de SUSE (08 avril 2021)

De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Elles permettent à un attaquant de provoquer une atteinte à l'intégrité des données, une atteinte à la confidentialité des données et une élévation de privilèges.

Auteur: Cert FR

id-map Crate up to 2021-02-26 on Rust remove_set double free

A vulnerability classified as critical has been found in id-map Crate up to 2021-02-26 on Rust (Rust Package). Affected is the function remove_set. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB
12345678910Last

Événements SSI