Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

IBM Engineering Web UI cross site scripting [CVE-2020-4975]

A vulnerability was found in IBM Engineering (the affected version unknown). It has been classified as problematic. This affects an unknown function of the component Web UI. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

IBM Engineering Web UI cross site scripting [CVE-2020-4866]

A vulnerability was found in IBM Engineering (affected version not known) and classified as problematic. Affected by this issue is some unknown processing of the component Web UI. There is no information about possible countermeasures known. It...
Auteur: VulDB

IBM Engineering Web UI cross site scripting [CVE-2020-4863]

A vulnerability has been found in IBM Engineering (affected version unknown) and classified as problematic. Affected by this vulnerability is an unknown code block of the component Web UI. There is no information about possible countermeasures...
Auteur: VulDB

IBM Engineering Web UI cross site scripting [CVE-2020-4857]

A vulnerability, which was classified as problematic, was found in IBM Engineering (version unknown). Affected is an unknown code of the component Web UI. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

IBM Engineering Web UI cross site scripting [CVE-2020-4856]

A vulnerability, which was classified as problematic, has been found in IBM Engineering (unknown version). This issue affects an unknown part of the component Web UI. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

CGAL libcgal 5.1.1 Nef polygon-parsing Nef_S2/SNC_io_parser.h read_sface out-of-bounds read

A vulnerability classified as problematic was found in CGAL libcgal 5.1.1. This vulnerability affects the function SNC_io_parser::read_sface of the file Nef_S2/SNC_io_parser.h of the component Nef polygon-parsing. There is no information about...
Auteur: VulDB

CGAL libcgal 5.1.1 Nef polygon-parsing Nef_S2/SNC_io_parser.h read_sloop out-of-bounds read

A vulnerability classified as problematic has been found in CGAL libcgal 5.1.1. This affects the function SNC_io_parser::read_sloop of the file Nef_S2/SNC_io_parser.h of the component Nef polygon-parsing. There is no information about possible...
Auteur: VulDB

Courier Management System 1.0 MULTIPART street sql injection

A vulnerability was found in Courier Management System 1.0. It has been rated as critical. Affected by this issue is an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

Courier Management System 1.0 First Name cross site scripting

A vulnerability was found in Courier Management System 1.0. It has been declared as problematic. Affected by this vulnerability is some unknown processing. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Courier Management System 1.0 admin_class.php ref_no sql injection

A vulnerability was found in Courier Management System 1.0. It has been classified as critical. Affected is an unknown code block of the file admin_class.php. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

CGAL libcgal 5.1.1 Nef polygon-parsing Nef_S2/SNC_io_parser.h read_sloop out-of-bounds read

A vulnerability was found in CGAL libcgal 5.1.1 and classified as problematic. This issue affects the function SNC_io_parser::read_sloop of the file Nef_S2/SNC_io_parser.h of the component Nef polygon-parsing. There is no information about...
Auteur: VulDB

CGAL libcgal 5.1.1 Nef polygon-parsing Nef_2/PM_io_parser.h read_vertex out-of-bounds read

A vulnerability has been found in CGAL libcgal 5.1.1 and classified as problematic. This vulnerability affects the function PM_io_parser::read_vertex of the file Nef_2/PM_io_parser.h of the component Nef polygon-parsing. There is no information...
Auteur: VulDB

Linux Kernel up to 5.11 GPU Nouveau Driver DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC null pointer dereference

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.11 (Operating System). This affects the function DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC of the component GPU Nouveau Driver. Upgrading to version 5.12-rc1 eliminates...
Auteur: VulDB

Fortinet FortiGate up to 6.2.4/6.4.1 HTTP Header unknown vulnerability

A vulnerability, which was classified as problematic, has been found in Fortinet FortiGate up to 6.2.4/6.4.1 (Firewall Software). Affected by this issue is an unknown functionality of the component HTTP Header Handler. Upgrading to version 6.2.5...
Auteur: VulDB

Xerox AltaLink C8070 prior 101.00x.099.28200 Drive Encryption cleartext storage

A vulnerability classified as problematic was found in Xerox AltaLink B8045, AltaLink B8055, AltaLink B8065, AltaLink B8075, AltaLink B8090, AltaLink C8030, AltaLink C8035, AltaLink C8045, AltaLink C8055 and AltaLink C8070. Affected by this...
Auteur: VulDB

GLPI up to 9.5.3 dropdownConnect.php getItemForItemtype injection

A vulnerability classified as critical has been found in GLPI up to 9.5.3 (Asset Management Software). Affected is the function getItemForItemtype of the file dropdownConnect.php. Upgrading to version 9.5.4 eliminates this vulnerability.
Auteur: VulDB

QCubed up to 3.1.1 POST Request profile.php strProfileData deserialization

A vulnerability was found in QCubed up to 3.1.1. It has been rated as critical. This issue affects an unknown code block of the file profile.php of the component POST Request Handler. There is no information about possible countermeasures known....
Auteur: VulDB

QCubed up to 3.1.1 profile.php strQuery sql injection

A vulnerability was found in QCubed up to 3.1.1. It has been declared as critical. This vulnerability affects an unknown code of the file profile.php. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

QCubed up to 3.1.1 profile.php stQuery cross site scripting

A vulnerability was found in QCubed up to 3.1.1. It has been classified as problematic. This affects an unknown part of the file profile.php. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

ForkCMS up to 5.8.2 Ajax endpoint injection

A vulnerability was found in ForkCMS up to 5.8.2 and classified as critical. Affected by this issue is some unknown functionality of the component Ajax endpoint. Upgrading to version 5.8.3 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 89.0.4389.72 PDFium uninitialized pointer

A vulnerability has been found in Google Chrome (Web Browser) and classified as critical. Affected by this vulnerability is an unknown functionality of the component PDFium. Upgrading to version 89.0.4389.72 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 89.0.4389.72 Payments unknown vulnerability

A vulnerability, which was classified as problematic, was found in Google Chrome (Web Browser). Affected is an unknown function of the component Payments. Upgrading to version 89.0.4389.72 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 89.0.4389.72 Blink use after free

A vulnerability, which was classified as critical, has been found in Google Chrome (Web Browser). This issue affects some unknown processing of the component Blink. Upgrading to version 89.0.4389.72 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 89.0.4389.72 URL Format unknown vulnerability

A vulnerability classified as problematic was found in Google Chrome (Web Browser). This vulnerability affects an unknown code block of the component URL Format Handler. Upgrading to version 89.0.4389.72 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 89.0.4389.72 QR Scanning unknown vulnerability

A vulnerability classified as problematic has been found in Google Chrome (Web Browser). This affects an unknown code of the component QR Scanning. Upgrading to version 89.0.4389.72 eliminates this vulnerability.
Auteur: VulDB
12345678910Last

Événements SSI