Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Samsung Mobile Devices N(7.x)/O(8.x) Fingerprint Trustlet Code Execution memory corruption

A vulnerability was found in Samsung Mobile Devices N(7.x)/O(8.x) (Smartphone Operating System). It has been rated as critical. Affected by this issue is some unknown functionality of the component Fingerprint Trustlet. Applying a patch is able...
Auteur: VulDB

Samsung Mobile Devices N(7.x)/O(8.x) esecomm Trustlet Code Execution memory corruption

A vulnerability was found in Samsung Mobile Devices N(7.x)/O(8.x) (Smartphone Operating System). It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component esecomm Trustlet. Applying a patch is...
Auteur: VulDB

Samsung Mobile Devices N(7.x)/O(8.x) Trustlet memory corruption

A vulnerability was found in Samsung Mobile Devices N(7.x)/O(8.x). It has been classified as critical. Affected is an unknown function of the component Trustlet. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Samsung Mobile Devices O(8.x) Standalone Dex Mode information disclosure

A vulnerability was found in Samsung Mobile Devices O(8.x) and classified as problematic. This issue affects some unknown processing of the component Standalone Dex Mode. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Samsung Mobile Devices O(8.x) Factory Reset Protection privilege escalation

A vulnerability has been found in Samsung Mobile Devices O(8.x) and classified as critical. This vulnerability affects an unknown code block of the component Factory Reset Protection. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Samsung Mobile Devices O(8.x) Emergency Dialer information disclosure

A vulnerability, which was classified as problematic, was found in Samsung Mobile Devices O(8.x). This affects an unknown code of the component Emergency Dialer. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Samsung Mobile Devices N(7.x)/O(8.x) Lockscreen privilege escalation

A vulnerability, which was classified as critical, has been found in Samsung Mobile Devices N(7.x)/O(8.x). Affected by this issue is an unknown part of the component Lockscreen. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Samsung Mobile Devices N(7.x)/O(8.x) SEM Trustlet Code Execution memory corruption

A vulnerability classified as critical was found in Samsung Mobile Devices N(7.x)/O(8.x). Affected by this vulnerability is some unknown functionality of the component SEM Trustlet. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Samsung Mobile Devices O(8.x)/P(9.0) g2d_drv Driver information disclosure

A vulnerability classified as problematic has been found in Samsung Mobile Devices O(8.x)/P(9.0). Affected is an unknown functionality of the component g2d_drv Driver. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Samsung Mobile Devices N(7.x)/O(8.x)/P(9.0) Dual Messenger Code Execution

A vulnerability was found in Samsung Mobile Devices N(7.x)/O(8.x)/P(9.0). It has been rated as critical. This issue affects an unknown function of the component Dual Messenger. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Samsung Mobile Devices O(8.x) Secure Folder App privilege escalation

A vulnerability was found in Samsung Mobile Devices O(8.x). It has been declared as critical. This vulnerability affects some unknown processing of the component Secure Folder App. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Samsung Mobile Devices O(8.x)/P(9.0) g2d Driver Use-After-Free memory corruption

A vulnerability was found in Samsung Mobile Devices O(8.x)/P(9.0). It has been classified as critical. This affects an unknown code block of the component g2d Driver. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Samsung Mobile Devices N(7.0) Quick Tools Lockscreen weak authentication

A vulnerability was found in Samsung Mobile Devices N(7.0) and classified as critical. Affected by this issue is an unknown code of the component Quick Tools. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Samsung Mobile Devices N(7.x) Secure Folder App weak authentication

A vulnerability has been found in Samsung Mobile Devices N(7.x) and classified as critical. Affected by this vulnerability is an unknown part of the component Secure Folder App. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Boutique.Aéro : clôture totale de la mise en demeure

Par décision du 6 avril 2020, la Présidente de la CNIL a décidé de procéder à la clôture totale de la mise en demeure du 5 novembre 2019 adressée à la société Boutique.Aéro.
Auteur: Cnil

COVID-19 : Les conseils de la CNIL pour utiliser les outils de visioconférence

De nombreux professionnels ou enseignants utilisent des outils de discussion et de visioconférence dans le contexte pandémique. Ces logiciels, souvent gratuits, doivent toujours offrir des garanties de protection de la vie privée des...
Auteur: Cnil

Mozilla Releases Security Updates for Firefox, Firefox ESR

Original release date: April 8, 2020Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity...
Auteur: US Cert

Google Releases Security Updates

Original release date: April 8, 2020Google has released Chrome version 81.0.4044.92 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. The Cybersecurity and...
Auteur: US Cert

CERTFR-2020-AVI-196 : Multiples vulnérabilités dans Mozilla Firefox (08 avril 2020)

De multiples vulnérabilités ont été découvertes dans Mozilla Firefox. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et une atteinte à la confidentialité des données.

Auteur: Cert FR

CERTFR-2020-AVI-195 : Multiples vulnérabilités dans le noyau Linux de SUSE (08 avril 2020)

De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Elles permettent à un attaquant de provoquer un déni de service à distance et une atteinte à la confidentialité des données.

Auteur: Cert FR

CERTFR-2020-AVI-194 : Multiples vulnérabilités dans le noyau Linux de Red Hat (08 avril 2020)

De multiples vulnérabilités ont été découvertes dans le noyau Linux de Red Hat. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et un...
Auteur: Cert FR

CERTFR-2020-AVI-193 : Multiples vulnérabilités dans Google Chrome (08 avril 2020)

De multiples vulnérabilités ont été découvertes dans Google Chrome. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Auteur: Cert FR

CERTFR-2020-AVI-192 : Multiples vulnérabilités dans Nagios XI (08 avril 2020)

De multiples vulnérabilités ont été découvertes dans Nagios XI. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et une injection de code indirecte à...
Auteur: Cert FR

EJBCA up to 6.15.2.5/7.3.1.1 CA UI Code Execution

A vulnerability, which was classified as critical, was found in EJBCA up to 6.15.2.5/7.3.1.1. Affected is some unknown functionality of the component CA UI. Upgrading to version 6.15.2.6 or 7.3.1.2 eliminates this vulnerability.
Auteur: VulDB

EJBCA up to 6.15.2.5/7.3.1.1 Peer Protocol Serialized Object Deserialization privilege escalation

A vulnerability, which was classified as critical, has been found in EJBCA up to 6.15.2.5/7.3.1.1. This issue affects an unknown functionality of the component Peer Protocol Handler. Upgrading to version 6.15.2.6 or 7.3.1.2 eliminates this...
Auteur: VulDB
First399400401402403404405406407408Last

Événements SSI