dimanche 16 février 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

LinuxKI up to 6.0-1 Remote Code Execution [CVE-2020-7209]

A vulnerability was found in LinuxKI up to 6.0-1 and classified as critical. Affected by this issue is an unknown functionality. Upgrading to version 6.0-2 eliminates this vulnerability.
Auteur: VulDB

LinuxKI up to 6.0-1 cross site scripting [CVE-2020-7208]

A vulnerability has been found in LinuxKI up to 6.0-1 and classified as problematic. Affected by this vulnerability is an unknown function. Upgrading to version 6.0-2 eliminates this vulnerability.
Auteur: VulDB

Digi International ConnectPort LTS 32 MEI 1.4.3 File Upload privilege escalation

A vulnerability, which was classified as critical, was found in Digi International ConnectPort LTS 32 MEI 1.4.3. Affected is some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Digi International ConnectPort LTS 32 MEI 1.4.3 cross site scripting

A vulnerability, which was classified as problematic, has been found in Digi International ConnectPort LTS 32 MEI 1.4.3. This issue affects an unknown code block. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

SAP NetWeaver 7.30/7.31/7.40/7.50 Reflected cross site scripting

A vulnerability classified as problematic was found in SAP NetWeaver 7.30/7.31/7.40/7.50. This vulnerability affects an unknown code. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

SAP Landscape Management 3.0 Host Agent privilege escalation

A vulnerability classified as critical has been found in SAP Landscape Management 3.0. This affects an unknown part of the component Host Agent. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

SAP Landscape Management 3.0 Host Agent privilege escalation

A vulnerability was found in SAP Landscape Management 3.0. It has been rated as critical. Affected by this issue is some unknown functionality of the component Host Agent. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

SAP NetWeaver AS JAVA 7.30/7.31/7.40/7.50 Endpoint information disclosure

A vulnerability was found in SAP NetWeaver AS JAVA 7.30/7.31/7.40/7.50. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Endpoint. There is no information about possible...
Auteur: VulDB

SAP Business Intelligence Platform 4.2 Setting Pages information disclosure

A vulnerability was found in SAP Business Intelligence Platform 4.2. It has been classified as problematic. Affected is an unknown function of the component Setting Pages. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

SAP ERP/S-4 HANA VAT Pro-Rata Reports privilege escalation [CVE-2020-6188]

A vulnerability was found in SAP ERP and S-4 HANA (unknown version) and classified as critical. This issue affects some unknown processing of the component VAT Pro-Rata Reports. There is no information about possible countermeasures known. It may...
Auteur: VulDB

SAP NetWeaver up to 7.50 XML Document denial of service

A vulnerability has been found in SAP NetWeaver up to 7.50 and classified as problematic. This vulnerability affects an unknown code block of the component XML Document Handler. There is no information about possible countermeasures known. It may...
Auteur: VulDB

SAP Host Agent 7.21 Authentication Request denial of service

A vulnerability, which was classified as problematic, was found in SAP Host Agent 7.21. This affects an unknown code. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

SAP NetWeaver/S-4HANA ABAP Online Community Stored cross site scripting

A vulnerability, which was classified as problematic, has been found in SAP NetWeaver and S-4HANA (affected version not known). Affected by this issue is an unknown part of the component ABAP Online Community. There is no information about...
Auteur: VulDB

SAP NetWeaver/S-4HANA ABAP Online Community Reflected cross site scripting

A vulnerability classified as problematic was found in SAP NetWeaver and S-4HANA (Solution Stack Software) (affected version unknown). Affected by this vulnerability is some unknown functionality of the component ABAP Online Community. There is...
Auteur: VulDB

SAP Host Agent 7.21 Shared Memory information disclosure

A vulnerability classified as problematic has been found in SAP Host Agent 7.21. Affected is an unknown functionality of the component Shared Memory. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

SAP NetWeaver up to 754 HTTP Response Header Response Splitting privilege escalation

A vulnerability was found in SAP NetWeaver up to 754 (Solution Stack Software). It has been rated as critical. This issue affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

SAP Mobile Platform 3.0 XML Document denial of service

A vulnerability was found in SAP Mobile Platform 3.0. It has been declared as problematic. This vulnerability affects some unknown processing of the component XML Document Handler. There is no information about possible countermeasures known. It...
Auteur: VulDB

Cloud Foundry CredHub up to 2.5.9 Database Connection weak encryption

A vulnerability was found in Cloud Foundry CredHub up to 2.5.9 (Cloud Software). It has been classified as problematic. This affects an unknown code block of the component Database Connection. Upgrading to version 2.5.10 eliminates this...
Auteur: VulDB

matestack-ui-core up to 0.7.3 cross site scripting [CVE-2020-5241]

A vulnerability was found in matestack-ui-core up to 0.7.3 and classified as problematic. Affected by this issue is an unknown code. Upgrading to version 0.7.4 eliminates this vulnerability.
Auteur: VulDB

Mailu up to 1.6 fetchmail Script privilege escalation

A vulnerability has been found in Mailu up to 1.6 and classified as critical. Affected by this vulnerability is an unknown part of the component fetchmail Script. Upgrading to version 1.7 eliminates this vulnerability.
Auteur: VulDB

Expedition Migration Tool up to 1.1.51 cross site request forgery

A vulnerability, which was classified as problematic, was found in Expedition Migration Tool up to 1.1.51. Affected is some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Palo Alto GlobalProtect up to 5.0.5 on macOS Crash denial of service

A vulnerability, which was classified as problematic, has been found in Palo Alto GlobalProtect up to 5.0.5 on macOS. This issue affects an unknown functionality. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

Palo Alto PAN-OS up to 8.1.11/9.0.5 Web Interface privilege escalation

A vulnerability classified as critical was found in Palo Alto PAN-OS up to 8.1.11/9.0.5. This vulnerability affects an unknown function of the component Web Interface. Upgrading to version 8.1.12 or 9.0.6 eliminates this vulnerability.
Auteur: VulDB

Aruba Intelligent Edge Switch prior 2540 information disclosure

A vulnerability classified as problematic has been found in Aruba Intelligent Edge Switch. This affects some unknown processing. Upgrading to version 2540 eliminates this vulnerability.
Auteur: VulDB

STMicroelectronics BLE Stack up to 1.3.1 Bluetooth Low Energy Crafted Packet Deadlock denial of service

A vulnerability was found in STMicroelectronics BLE Stack up to 1.3.1. It has been rated as problematic. Affected by this issue is an unknown code block of the component Bluetooth Low Energy. There is no information about possible countermeasures...
Auteur: VulDB
12345678910Last

Événements SSI