Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

CERTFR-2020-AVI-671 : Multiples vulnérabilités dans les produits Cisco (22 octobre 2020)

De multiples vulnérabilités ont été découvertes dans les produits Cisco. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à la...
Auteur: Cert FR

CERTFR-2020-AVI-670 : Multiples vulnérabilités dans Mozilla Thunderbird (22 octobre 2020)

De multiples vulnérabilités ont été découvertes dans Mozilla Thunderbird. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance.

Auteur: Cert FR

CERTFR-2020-AVI-669 : Vulnérabilité dans Juniper Junos OS (22 octobre 2020)

Une vulnérabilité a été découverte dans Juniper Junos OS. Elle permet à un attaquant de provoquer un déni de service à distance.

Auteur: Cert FR

CERTFR-2020-AVI-668 : Multiples vulnérabilités dans le noyau Linux de SUSE (22 octobre 2020)

De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et un déni...
Auteur: Cert FR

Mozilla Firefox/Firefox ESR prior 78.4 memory corruption [CVE-2020-15683]

A vulnerability was found in Mozilla Firefox and Firefox ESR (Web Browser). It has been classified as critical. This affects an unknown part. Upgrading to version 78.4 eliminates this vulnerability.
Auteur: VulDB

Mozilla Firefox ESR up to 78.3 usersctp use after free

A vulnerability was found in Mozilla Firefox ESR up to 78.3 (Web Browser) and classified as critical. Affected by this issue is some unknown functionality of the component usersctp. Upgrading to version 78.4 eliminates this vulnerability.
Auteur: VulDB

VU#208577: Chocolatey Boxstarter vulnerable to privilege escalation due to weak ACLs

Overview Chocolatey Boxstarter fails to properly set ACLs, which can allow an unprivileged Windows user to be able to run arbitrary code with SYSTEM privileges. Description CVE-2020-15264 The Chocolatey Boxstarter...
Auteur: US Cert

Portabilité : un évènement pour développer les droits et les usages

La CNIL propose un événement dédié au droit à la portabilité, le lundi 23 novembre 2020 de 14 h00 à 17 h 30, afin de faire le bilan des pratiques et d’apporter de nouvelles pistes de solutions technologiques sur ce droit prévu par le RGPD.
Auteur: Cnil

Oracle VM VirtualBox up to 6.1.15 denial of service [CVE-2020-14892]

A vulnerability has been found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software) and classified as critical. Affected by this vulnerability is an unknown functionality. Upgrading eliminates this vulnerability. A possible mitigation...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 information disclosure [CVE-2020-14889]

A vulnerability, which was classified as critical, was found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). Affected is an unknown function. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 information disclosure [CVE-2020-14886]

A vulnerability, which was classified as critical, has been found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). This issue affects some unknown processing. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 information disclosure [CVE-2020-14885]

A vulnerability classified as critical was found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). This vulnerability affects an unknown code block. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 information disclosure [CVE-2020-14884]

A vulnerability classified as critical has been found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). This affects an unknown code. Upgrading eliminates this vulnerability. A possible mitigation has been published immediately...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 information disclosure [CVE-2020-14881]

A vulnerability was found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). It has been rated as critical. Affected by this issue is an unknown part. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Oracle VM VirtualBox up to 6.1.15 unknown vulnerability [CVE-2020-14872]

A vulnerability was found in Oracle VM VirtualBox up to 6.1.15 (Virtualization Software). It has been declared as critical. Upgrading eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the...
Auteur: VulDB

Oracle Utilities Framework up to 4.4.0.2.0 Common information disclosure

A vulnerability was found in Oracle Utilities Framework up to 4.4.0.2.0. It has been classified as problematic. Affected is an unknown functionality of the component Common. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Utilities Framework up to 4.4.0.2.0 System Wide unknown vulnerability

A vulnerability was found in Oracle Utilities Framework up to 4.4.0.2.0 and classified as critical. This issue affects an unknown function of the component System Wide. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Utilities Framework up to 4.4.0.2.0 General unknown vulnerability

A vulnerability has been found in Oracle Utilities Framework up to 4.4.0.2.0 and classified as critical. This vulnerability affects some unknown processing of the component General. Upgrading eliminates this vulnerability. A possible mitigation...
Auteur: VulDB

Oracle Utilities Framework up to 4.4.0.2.0 General unknown vulnerability

A vulnerability, which was classified as very critical, was found in Oracle Utilities Framework up to 4.4.0.2.0. This affects an unknown code block of the component General. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Utilities Framework up to 4.4.0.0.0 Common unknown vulnerability

A vulnerability, which was classified as very critical, has been found in Oracle Utilities Framework up to 4.4.0.0.0. Affected by this issue is an unknown code of the component Common. Upgrading eliminates this vulnerability. A possible...
Auteur: VulDB

Oracle Solaris 11 Kernel unknown vulnerability [CVE-2020-14759]

A vulnerability classified as problematic was found in Oracle Solaris 11 (Operating System). Affected by this vulnerability is an unknown part of the component Kernel. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Solaris 11 Utility unknown vulnerability [CVE-2020-14818]

A vulnerability classified as problematic has been found in Oracle Solaris 11 (Operating System). Affected is some unknown functionality of the component Utility. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Oracle Solaris 11 Filesystem denial of service

A vulnerability was found in Oracle Solaris 11 (Operating System). It has been rated as critical. This issue affects an unknown functionality of the component Filesystem. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Solaris 11 Kernel unknown vulnerability [CVE-2020-14758]

A vulnerability was found in Oracle Solaris 11 (Operating System). It has been declared as critical. This vulnerability affects an unknown function of the component Kernel. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Oracle Fujitsu M12-1/Fujitsu M12-2/Fujitsu M12-2S XCP Firmware information disclosure

A vulnerability was found in Oracle Fujitsu M12-1, Fujitsu M12-2 and Fujitsu M12-2S (the affected version unknown). It has been classified as critical. This affects some unknown processing of the component XCP Firmware. Upgrading eliminates this...
Auteur: VulDB
First393394395396397398399400401402Last

Événements SSI