Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

CA API Developer Portal up to 4.3.1 loginRedirect Page Open Redirect

A vulnerability, which was classified as problematic, was found in CA API Developer Portal up to 4.3.1. This affects an unknown functionality of the component loginRedirect Page. There is no information about possible countermeasures known. It...
Auteur: VulDB

CA API Developer Portal up to 4.3.1 homeRedirect Page Open Redirect

A vulnerability, which was classified as problematic, has been found in CA API Developer Portal up to 4.3.1 (Automation Software). Affected by this issue is an unknown function of the component homeRedirect Page. There is no information about...
Auteur: VulDB

CA API Developer Portal up to 4.3.1 404 Request Open Redirect

A vulnerability classified as problematic was found in CA API Developer Portal up to 4.3.1. Affected by this vulnerability is some unknown processing of the component 404 Handler. There is no information about possible countermeasures known. It...
Auteur: VulDB

CA API Developer Portal up to 4.3.1 Request Cross-Origin information disclosure

A vulnerability classified as problematic has been found in CA API Developer Portal up to 4.3.1. Affected is an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

CA API Developer Portal up to 4.3.1 Access Control privilege escalation

A vulnerability was found in CA API Developer Portal up to 4.3.1. It has been rated as critical. This issue affects an unknown code of the component Access Control. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

CA API Developer Portal up to 4.3.1 information disclosure [CVE-2020-11660]

A vulnerability was found in CA API Developer Portal up to 4.3.1. It has been declared as problematic. This vulnerability affects an unknown part. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

CA API Developer Portal up to 4.3.1 Access Control privilege escalation

A vulnerability was found in CA API Developer Portal up to 4.3.1. It has been classified as critical. This affects some unknown functionality of the component Access Control. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

CA API Developer Portal up to 4.3.1 privilege escalation [CVE-2020-11658]

A vulnerability was found in CA API Developer Portal up to 4.3.1 and classified as critical. Affected by this issue is an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

ONLYOFFICE Document Server 5.5.0 WebSocket API DocID sql injection

A vulnerability has been found in ONLYOFFICE Document Server 5.5.0 and classified as critical. Affected by this vulnerability is an unknown function of the component WebSocket API. There is no information about possible countermeasures known. It...
Auteur: VulDB

ONLYOFFICE Document Server 5.5.0 unzip Office Document privilege escalation

A vulnerability, which was classified as critical, was found in ONLYOFFICE Document Server 5.5.0. Affected is the function unzip. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

ONLYOFFICE Document Server 5.5.0 libxcb.so.1 Office Document privilege escalation

A vulnerability, which was classified as critical, has been found in ONLYOFFICE Document Server 5.5.0. This issue affects an unknown code block in the library libxcb.so.1. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

ONLYOFFICE Document Server 5.5.0 NSFileDownloader Office Document privilege escalation

A vulnerability classified as critical was found in ONLYOFFICE Document Server 5.5.0. This vulnerability affects the function NSFileDownloader. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Western Digital My Cloud up to 2.1.x Sign-in Clickjacking privilege escalation

A vulnerability classified as critical has been found in Western Digital My Cloud up to 2.1.x. This affects an unknown part of the component Sign-in. Upgrading to version 2.2.0 eliminates this vulnerability.
Auteur: VulDB

ARM mbed TLS up to 2.16.5/2.7.14 ECDSA Private Key Side-Channel information disclosure

A vulnerability was found in ARM mbed TLS up to 2.16.5/2.7.14. It has been rated as problematic. Affected by this issue is some unknown functionality of the component ECDSA Private Key Handler. Upgrading to version 2.16.6 or 2.7.15 eliminates...
Auteur: VulDB

targetcli-fb 2.1.50/2.1.51 on Linux Socket privilege escalation

A vulnerability was found in targetcli-fb 2.1.50/2.1.51 on Linux. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Socket Handler. There is no information about possible countermeasures...
Auteur: VulDB

Eaton HMiSoft VU3 up to 3.00.23 HMIVU Runtime memory corruption

A vulnerability was found in Eaton HMiSoft VU3 up to 3.00.23. It has been classified as critical. Affected is an unknown function of the component HMIVU Runtime. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Eaton HMiSoft VU3 up to 3.00.23 HMIVU Runtime Out-of-Bounds memory corruption

A vulnerability was found in Eaton HMiSoft VU3 up to 3.00.23 and classified as critical. This issue affects some unknown processing of the component HMIVU Runtime. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

Triangle MicroWorks SCADA Data Gateway up to 4.0.122 Stack-based denial of service

A vulnerability has been found in Triangle MicroWorks SCADA Data Gateway up to 4.0.122 and classified as problematic. This vulnerability affects an unknown code block. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Triangle MicroWorks SCADA Data Gateway up to 4.0.122 information disclosure

A vulnerability, which was classified as problematic, was found in Triangle MicroWorks SCADA Data Gateway up to 4.0.122. This affects an unknown code. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

Triangle MicroWorks SCADA Data Gateway up to 4.0.122 Type Confusion memory corruption

A vulnerability, which was classified as critical, has been found in Triangle MicroWorks SCADA Data Gateway up to 4.0.122. Affected by this issue is an unknown part. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

iCatch DVR Parameter Command privilege escalation

A vulnerability classified as critical was found in iCatch DVR (affected version unknown). Affected by this vulnerability is some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

iCatch DVR File Management Interface privilege escalation [CVE-2020-10513]

A vulnerability classified as critical has been found in iCatch DVR (version unknown). Affected is an unknown functionality of the component File Management Interface. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Hgiga C&Cmail URL sql injection

A vulnerability was found in Hgiga C&Cmail (unknown version). It has been rated as critical. This issue affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

Hgiga C&Cmail Configuration privilege escalation [CVE-2020-10511]

A vulnerability was found in Hgiga C&Cmail (Mail Server Software) (the affected version is unknown). It has been declared as very critical. This vulnerability affects some unknown processing of the component Configuration. There is no information...
Auteur: VulDB

Alle Information School Manage System Upload Filter privilege escalation

A vulnerability was found in Alle Information School Manage System (the affected version unknown). It has been classified as critical. This affects an unknown code block of the component Upload Filter. There is no information about possible...
Auteur: VulDB
First391392393394395396397398399400Last

Événements SSI