Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Cisco Webex Meetings on cross site scriting

A vulnerability was found in Cisco Webex Meetings (Unified Communication Software) (the affected version is unknown). It has been declared as problematic. This vulnerability affects some unknown functionality. Upgrading eliminates this...
Auteur: VulDB

Cisco RV340/RV340W/RV345/RV345P Web-based Management Interface deserialization

A vulnerability was found in Cisco RV340, RV340W, RV345 and RV345P (Router Operating System) (the affected version unknown). It has been classified as critical. This affects an unknown functionality of the component Web-based Management...
Auteur: VulDB

Cisco RV340/RV340W/RV345/RV345P Web-based Management Interface deserialization

A vulnerability was found in Cisco RV340, RV340W, RV345 and RV345P (Router Operating System) (affected version not known) and classified as critical. Affected by this issue is an unknown function of the component Web-based Management Interface....
Auteur: VulDB

Cisco RV340/RV340W/RV345/RV345P Web-based Management Interface deserialization

A vulnerability has been found in Cisco RV340, RV340W, RV345 and RV345P (Router Operating System) (affected version unknown) and classified as critical. Affected by this vulnerability is some unknown processing of the component Web-based...
Auteur: VulDB

Cisco Unified Communications Manager Web-based Management Interface cross site scripting

A vulnerability, which was classified as problematic, was found in Cisco Unified Communications Manager, Unified Communications Manager IM & Presence Service, Unified Communications Manager Session Management Edition and Unity Connection (Unified...
Auteur: VulDB

Cisco Unified Communications Manager Web-based Management Interface cross site scripting

A vulnerability, which was classified as problematic, has been found in Cisco Unified Communications Manager, Unified Communications Manager IM & Presence Service, Unified Communications Manager Session Management Edition and Unity Connection...
Auteur: VulDB

Cisco Unified Communications Manager Web-based Management Interface cross site scripting

A vulnerability classified as problematic was found in Cisco Unified Communications Manager, Unified Communications Manager IM & Presence Service, Unified Communications Manager Session Management Edition and Unity Connection (Unified...
Auteur: VulDB

Cisco Unified Communications Manager file information disclosure

A vulnerability classified as problematic has been found in Cisco Unified Communications Manager and Unified Communications Manager Session Management Edition (Unified Communication Software) (the affected version unknown). This affects some...
Auteur: VulDB

Cisco Unified Communications Manager Self Care Portal improper authentication

A vulnerability was found in Cisco Unified Communications Manager and Unified Communications Manager Session Management Edition (Unified Communication Software) (affected version not known). It has been rated as critical. Affected by this issue...
Auteur: VulDB

Cisco Advanced Malware Protection/Immunet on Windows DLL Loader uncontrolled search path

A vulnerability was found in Cisco Advanced Malware Protection and Immunet on Windows (Anti-Malware Software) (affected version unknown). It has been declared as critical. Affected by this vulnerability is an unknown function of the component DLL...
Auteur: VulDB

Cisco Unified Communications Manager Web-based Management Interface cross site scripting

A vulnerability was found in Cisco Unified Communications Manager, Unified Communications Manager IM & Presence Service, Unified Communications Manager Session Management Edition and Unity Connection (Unified Communication Software) (version...
Auteur: VulDB

Cisco Unified Communications Manager SOAP API Endpoint code injection

A vulnerability was found in Cisco Unified Communications Manager, Unified Communications Manager Session Management Edition, Unified Communications Manager IM & Presence Service, Unity Connection and Prime License Manager (Unified Communication...
Auteur: VulDB

Cisco Small Business RV Series Router Link Layer Discovery Protocol memory corruption

A vulnerability has been found in Cisco Small Business RV Series Router (Router Operating System) (the affected version is unknown) and classified as critical. This vulnerability affects an unknown code of the component Link Layer Discovery...
Auteur: VulDB

Cisco Small Business RV Series Router Link Layer Discovery Protocol memory corruption

A vulnerability, which was classified as critical, was found in Cisco Small Business RV Series Router (Router Operating System) (the affected version unknown). This affects an unknown part of the component Link Layer Discovery Protocol. Upgrading...
Auteur: VulDB

Cisco Small Business RV Series Router Link Layer Discovery Protocol memory corruption

A vulnerability, which was classified as critical, has been found in Cisco Small Business RV Series Router (Router Operating System) (affected version not known). Affected by this issue is some unknown functionality of the component Link Layer...
Auteur: VulDB

Cisco SD-WAN vManage Software memory corruption [CVE-2021-1137]

A vulnerability classified as critical was found in Cisco SD-WAN vManage Software (Network Management Software) (affected version unknown). Affected by this vulnerability is an unknown functionality. Upgrading eliminates this vulnerability.
Auteur: VulDB

CERTFR-2021-AVI-245 : Multiples vulnérabilités dans le noyau Linux de SUSE (08 avril 2021)

De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Elles permettent à un attaquant de provoquer une atteinte à l'intégrité des données, une atteinte à la confidentialité des données et une élévation de privilèges.

Auteur: Cert FR

id-map Crate up to 2021-02-26 on Rust remove_set double free

A vulnerability classified as critical has been found in id-map Crate up to 2021-02-26 on Rust (Rust Package). Affected is the function remove_set. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

id-map Crate up to 2021-02-26 on Rust get_or_insert double free

A vulnerability was found in id-map Crate up to 2021-02-26 on Rust (Rust Package). It has been rated as critical. This issue affects the function get_or_insert. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

id-map Crate up to 2021-02-26 on Rust Clone clone IdMap::clone_from double free

A vulnerability was found in id-map Crate up to 2021-02-26 on Rust (Rust Package). It has been declared as critical. This vulnerability affects the function IdMap::clone_from of the file clone of the component Clone Handler. There is no...
Auteur: VulDB

outer_cgi Crate up to 0.2.0 on Rust KeyValueReader uninitialized pointer

A vulnerability was found in outer_cgi Crate up to 0.2.0 on Rust (Rust Package). It has been classified as problematic. Upgrading to version 0.2.1 eliminates this vulnerability.
Auteur: VulDB

jsrsasign Package up to 10.1.13 on node.js RSA PKCS#1 v1.5 Signature Verification signature verification

A vulnerability was found in jsrsasign Package up to 10.1.13 on node.js (JavaScript Library) and classified as problematic. Affected by this issue is an unknown part of the component RSA PKCS#1 v1.5 Signature Verification Handler. There is no...
Auteur: VulDB

FFmpeg up to 4.3 libavcodec buffer overflow

A vulnerability has been found in FFmpeg up to 4.3 (Multimedia Processing Software) and classified as critical. Affected by this vulnerability is some unknown functionality of the component libavcodec. Applying a patch is able to eliminate this...
Auteur: VulDB

Directus up to 8.8.1 Upload Directory unrestricted upload

A vulnerability, which was classified as critical, was found in Directus up to 8.8.1. Affected is an unknown functionality of the component Upload Directory Handler. Upgrading to version 8.8.2 eliminates this vulnerability.
Auteur: VulDB

Eclipse Mosquitto up to 2.0.9 MQTT v5 null pointer dereference

A vulnerability, which was classified as problematic, has been found in Eclipse Mosquitto up to 2.0.9. This issue affects an unknown function of the component MQTT v5 Handler. There is no information about possible countermeasures known. It may...
Auteur: VulDB
12345678910Last

Événements SSI