Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Google Android Airbrush FW memory corruption [CVE-2020-0221]

A vulnerability, which was classified as critical, was found in Google Android (the affected version unknown). This affects an unknown code of the component Airbrush FW. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android msm-cirrus-playback.c crus_afe_callback memory corruption

A vulnerability, which was classified as critical, has been found in Google Android (affected version not known). Affected by this issue is the function crus_afe_callback of the file msm-cirrus-playback.c. Applying a patch is able to eliminate...
Auteur: VulDB

Google Android psi.c psi_write memory corruption

A vulnerability classified as critical was found in Google Android (affected version unknown). Affected by this vulnerability is the function psi_write of the file psi.c. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 9.0/10.0 Permission Check NotificationManagerService.java simulatePackageSuspendBroadcast Notification privilege escalation

A vulnerability classified as critical has been found in Google Android 9.0/10.0. Affected is the function simulatePackageSuspendBroadcast of the file NotificationManagerService.java of the component Permission Check. Applying a patch is able to...
Auteur: VulDB

Google Android 10.0 SDK Version Check PhoneInterfaceManager.java getCellLocation information disclosure

A vulnerability was found in Google Android 10.0. It has been rated as problematic. This issue affects the function getCellLocation of the file PhoneInterfaceManager.java of the component SDK Version Check. Applying a patch is able to eliminate...
Auteur: VulDB

Google Android 9.0/10.0 Permission Check key_store_service.cpp onKeyguardVisibilityChanged privilege escalation

A vulnerability was found in Google Android 9.0/10.0. It has been declared as critical. This vulnerability affects the function onKeyguardVisibilityChanged of the file key_store_service.cpp of the component Permission Check. Applying a patch is...
Auteur: VulDB

Google Android 9.0/10.0 KeyguardStateMonitor.java onShowingStateChanged information disclosure

A vulnerability was found in Google Android 9.0/10.0. It has been classified as problematic. This affects the function onShowingStateChanged of the file KeyguardStateMonitor.java. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 9.0/10.0 a2dp_aac_decoder.cc a2dp_aac_decoder_cleanup memory corruption

A vulnerability was found in Google Android 9.0/10.0 (Smartphone Operating System) and classified as critical. Affected by this issue is the function a2dp_aac_decoder_cleanup of the file a2dp_aac_decoder.cc. Applying a patch is able to eliminate...
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 gatt_server.cc GattServer::SendResponse memory corruption

A vulnerability has been found in Google Android 8.0/8.1/9.0/10.0 and classified as critical. Affected by this vulnerability is the function GattServer::SendResponse of the file gatt_server.cc. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 ICrypto.cpp BnCrypto::onTransact information disclosure

A vulnerability, which was classified as problematic, was found in Google Android 8.0/8.1/9.0/10.0. Affected is the function BnCrypto::onTransact of the file ICrypto.cpp. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 8.0/8.1 IHDCP.cpp onTransact information disclosure

A vulnerability, which was classified as problematic, has been found in Google Android 8.0/8.1 (Smartphone Operating System). This issue affects the function onTransact of the file IHDCP.cpp. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 ActivityStack.java navigateUpToLocked privilege escalation

A vulnerability classified as critical was found in Google Android 8.0/8.1/9.0/10.0. This vulnerability affects the function navigateUpToLocked of the file ActivityStack.java. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 9.0/10.0 PackageManagerService.java privilege escalation

A vulnerability classified as critical has been found in Google Android 9.0/10.0. This affects some unknown processing of the file PackageManagerService.java. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 8.0/8.1/9.0 ActivityStartController.java startActivities privilege escalation

A vulnerability was found in Google Android 8.0/8.1/9.0. It has been rated as critical. Affected by this issue is the function startActivities of the file ActivityStartController.java. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 9.0/10.0 ExifUtils.cpp setImageHeight/setImageWidth memory corruption

A vulnerability was found in Google Android 9.0/10.0. It has been declared as critical. Affected by this vulnerability is the function setImageHeight/setImageWidth of the file ExifUtils.cpp. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 exif-data.c exif_data_save_data_entry information disclosure

A vulnerability was found in Google Android 8.0/8.1/9.0/10.0. It has been classified as problematic. Affected is the function exif_data_save_data_entry of the file exif-data.c. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android NotificationStackScrollLayout.java setHideSensitive information disclosure

A vulnerability was found in Google Android (Smartphone Operating System) (unknown version) and classified as problematic. This issue affects the function setHideSensitive of the file NotificationStackScrollLayout.java. Applying a patch is able...
Auteur: VulDB

Google Android mnld driver_cfg privilege escalation

A vulnerability has been found in Google Android (the affected version is unknown) and classified as critical. This vulnerability affects an unknown functionality of the component mnld. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android Email privilege escalation [CVE-2020-0090]

A vulnerability, which was classified as critical, was found in Google Android (the affected version unknown). This affects an unknown function of the component Email. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android Receiver privilege escalation [CVE-2020-0065]

A vulnerability, which was classified as critical, has been found in Google Android (affected version not known). Affected by this issue is some unknown processing of the component Receiver. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android privilege escalation [CVE-2020-0064]

A vulnerability classified as critical was found in Google Android (affected version unknown). Affected by this vulnerability is an unknown code block. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Google Android 8.0/8.1/9.0/10.0 SettingsBaseActivity.java onCreate privilege escalation

A vulnerability classified as critical has been found in Google Android 8.0/8.1/9.0/10.0 (Smartphone Operating System). Affected is the function onCreate of the file SettingsBaseActivity.java. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Apache RocketMQ up to 4.6.0 Broker directory traversal

A vulnerability was found in Apache RocketMQ up to 4.6.0. It has been rated as critical. This issue affects an unknown part of the component Broker. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Apache CloudStack up to 4.13.0 baremetal mac command injection

A vulnerability was found in Apache CloudStack up to 4.13.0 (Cloud Software). It has been declared as critical. This vulnerability affects some unknown functionality of the component baremetal. Upgrading to version 4.13.1 eliminates this...
Auteur: VulDB

Zoho ManageEngine ServiceDesk Plus up to 10.0 Asset cross site scripting

A vulnerability was found in Zoho ManageEngine ServiceDesk Plus up to 10.0. It has been classified as problematic. This affects an unknown functionality of the component Asset Handler. Upgrading to version 10.0 10500 eliminates this vulnerability.
Auteur: VulDB
First396397398399400401402403404405Last

Événements SSI