Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

TOTOLINK/CIK TELECOM/KCTVJEJU/Hi-Wifi/HCN/T-broad Router Administration Interface Cleartext weak encryption

A vulnerability, which was classified as problematic, was found in TOTOLINK/CIK TELECOM/KCTVJEJU/Hi-Wifi/HCN/T-broad Router (version unknown). Affected is an unknown code of the component Administration Interface. There is no information about...
Auteur: VulDB

TOTOLINK/CIK TELECOM/KCTVJEJU/Hi-Wifi/HCN/T-broad Router Administration Interface Config information disclosure

A vulnerability, which was classified as problematic, has been found in TOTOLINK/CIK TELECOM/KCTVJEJU/Hi-Wifi/HCN/T-broad Router (unknown version). This issue affects an unknown part of the component Administration Interface. There is no...
Auteur: VulDB

BitDefender Endpoint Security Tools prior 6.6.11.163 EPSecurityService.exe Search Path privilege escalation

A vulnerability classified as problematic was found in BitDefender Endpoint Security Tools. This vulnerability affects some unknown functionality of the file EPSecurityService.exe. Upgrading to version 6.6.11.163 eliminates this vulnerability.
Auteur: VulDB

BitDefender BOX 2 Bootstrap get_image_url() command injection

A vulnerability classified as critical has been found in BitDefender BOX 2 (the affected version unknown). This affects the function get_image_url() of the component Bootstrap Handler. There is no information about possible countermeasures known....
Auteur: VulDB

BitDefender BOX 2 2.1.47.42 API /api/download_image command injection

A vulnerability was found in BitDefender BOX 2 2.1.47.42. It has been rated as critical. Affected by this issue is an unknown function of the file /api/download_image of the component API. There is no information about possible countermeasures...
Auteur: VulDB

Belkin WeMo Insight Switch up to 2.00.11396 libbelkin_api.so memory corruption

A vulnerability was found in Belkin WeMo Insight Switch up to 2.00.11396. It has been declared as problematic. Affected by this vulnerability is some unknown processing of the file libbelkin_api.so. There is no information about possible...
Auteur: VulDB

La CNIL publie un guide RGPD pour les développeurs

Afin d’accompagner les acteurs du développement web ou applicatif dans la mise en conformité de leurs travaux, la CNIL a élaboré un nouveau guide de bonnes pratiques sous licence libre, qui a vocation à être enrichi par les professionnels.
Auteur: Cnil

AVB MOTU directory traversal [CVE-2020-8009]

A vulnerability was found in AVB MOTU (version unknown). It has been classified as critical. Affected is an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace the affected object with...
Auteur: VulDB

GNU Aspell up to 0.60.7 libaspell.a ASPELL_CONF memory corruption

A vulnerability was found in GNU Aspell up to 0.60.7 and classified as critical. This issue affects an unknown code of the file libaspell.a. Upgrading to version 0.60.8 eliminates this vulnerability.
Auteur: VulDB

Avast Secure Browser 76.0.1659.101 Update Check AvastBrowserUpdate.exe privilege escalation

A vulnerability has been found in Avast Secure Browser 76.0.1659.101 and classified as critical. This vulnerability affects an unknown part of the file AvastBrowserUpdate.exe of the component Update Check. There is no information about possible...
Auteur: VulDB

BitDefender AV up to 7.x on Mac BDLDaemon privilege escalation

A vulnerability, which was classified as critical, was found in BitDefender AV up to 7.x on Mac. This affects some unknown functionality of the component BDLDaemon. Upgrading to version 8.0.0 eliminates this vulnerability.
Auteur: VulDB

BitDefender BOX 2 up to 2.0.1.90 API /api/update_setup System Command privilege escalation

A vulnerability, which was classified as critical, has been found in BitDefender BOX 2 up to 2.0.1.90. Affected by this issue is an unknown functionality of the file /api/update_setup of the component API. Upgrading to version 2.0.1.91 eliminates...
Auteur: VulDB

BitDefender Total Security 2020 prior 24.0.12.69 bdserviceshost.exe Search Path privilege escalation

A vulnerability classified as critical was found in BitDefender Total Security 2020. Affected by this vulnerability is an unknown function of the file bdserviceshost.exe. Upgrading to version 24.0.12.69 eliminates this vulnerability.
Auteur: VulDB

Git up to 2.24.0 git fast-import export-marks directory traversal

A vulnerability was found in Git up to 2.24.0 (Versioning Software). It has been rated as critical. This issue affects an unknown code block of the component git fast-import. Upgrading to version 2.14.6, 2.15.4, 2.16.6, 2.17.3, 2.18.2, 2.19.3,...
Auteur: VulDB

Git up to 2.24.0 Subsystem for Linux privilege escalation

A vulnerability classified as critical has been found in Git up to 2.24.0 (Versioning Software). Affected is some unknown processing of the component Subsystem for Linux. Upgrading to version 2.14.6, 2.15.4, 2.16.6, 2.17.3, 2.18.2, 2.19.3,...
Auteur: VulDB

kantan netprint App up to 2.0.3 X.509 Certificate Crafted Certificate Man-in-the-Middle weak authentication

A vulnerability was found in kantan netprint App up to 2.0.3. It has been declared as problematic. This vulnerability affects an unknown code of the component X.509 Certificate. There is no information about possible countermeasures known. It may...
Auteur: VulDB

kantan netprint App up to 2.0.2 on iOS X.509 Certificate Crafted Certificate Man-in-the-Middle weak authentication

A vulnerability was found in kantan netprint App up to 2.0.2 on iOS. It has been classified as problematic. This affects an unknown part of the component X.509 Certificate. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

netprint App up to 3.2.3 on iOS X.509 Certificate Crafted Certificate Man-in-the-Middle weak authentication

A vulnerability was found in netprint App up to 3.2.3 on iOS and classified as problematic. Affected by this issue is some unknown functionality of the component X.509 Certificate. There is no information about possible countermeasures known. It...
Auteur: VulDB

F-RevoCRM up to 6.5 Patch 6 cross site scripting [CVE-2019-6036]

A vulnerability has been found in F-RevoCRM up to 6.5 Patch 6 and classified as problematic. Affected by this vulnerability is an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

SuSE Linux Enterprise Server 15 yast2-rmt Log information disclosure

A vulnerability, which was classified as problematic, was found in SuSE Linux Enterprise Server 15 15 (Operating System). Affected is an unknown function of the component yast2-rmt. Upgrading eliminates this vulnerability.
Auteur: VulDB

SuSE Linux Enterprise Server 15 obs-service-tar_scm directory traversal

A vulnerability, which was classified as critical, has been found in SuSE Linux Enterprise Server 15 (Operating System). This issue affects some unknown processing of the component obs-service-tar_scm. Upgrading eliminates this vulnerability.
Auteur: VulDB

CERTFR-2020-AVI-057 : Vulnérabilité dans Cisco Webex (27 janvier 2020)

Une vulnérabilité a été découverte dans Cisco Webex. Elle permet à un attaquant de provoquer un contournement de la politique de sécurité.

Auteur: Cert FR

CERTFR-2020-AVI-057 : Vulnérabilité dans Cisco Webex (27 janvier 2020)

Une vulnérabilité a été découverte dans Cisco Webex. Elle permet à un attaquant de provoquer un contournement de la politique de sécurité.

Auteur: Cert FR

virglrenderer up to 0.8.1 vrend_renderer.c denial of service

A vulnerability classified as problematic was found in virglrenderer up to 0.8.1. This vulnerability affects an unknown code block of the file vrend_renderer.c. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

virglrenderer up to 0.8.1 vrend_renderer.c denial of service

A vulnerability classified as problematic has been found in virglrenderer up to 0.8.1. This affects an unknown code of the file vrend_renderer.c. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB
First394395396397398399400401402403Last

Événements SSI