vendredi 22 mars 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

GNU LibreDWG 0.7/0.7.1645 dxf_header_write memory corruption

A vulnerability was found in GNU LibreDWG 0.7/0.7.1645 and classified as critical. This issue affects the function dxf_header_write. The manipulation with an unknown input leads to a memory corruption vulnerability (Heap-based). Using CWE to...
Auteur: VulDB

GNU LibreDWG 0.7/0.7.1645 dwg_dxf_LTYPE denial of service

A vulnerability has been found in GNU LibreDWG 0.7/0.7.1645 and classified as problematic. This vulnerability affects the function dwg_dxf_LTYPE. The manipulation with an unknown input leads to a denial of service vulnerability (NULL Pointer...
Auteur: VulDB

GNU LibreDWG 0.7/0.7.1645 dwg_dxf_BLOCK_CONTROL memory corruption

A vulnerability, which was classified as critical, was found in GNU LibreDWG 0.7/0.7.1645. This affects the function dwg_dxf_BLOCK_CONTROL. The manipulation with an unknown input leads to a memory corruption vulnerability (Out-of-Bounds). CWE is...
Auteur: VulDB

GNU LibreDWG 0.7/0.7.1645 bits.c bit_read_B memory corruption

A vulnerability, which was classified as critical, has been found in GNU LibreDWG 0.7/0.7.1645. Affected by this issue is the function bit_read_B of the file bits.c. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

GNU LibreDWG 0.7/0.7.1645 decode.c dwg_decode_eed_data memory corruption

A vulnerability classified as critical was found in GNU LibreDWG 0.7/0.7.1645. Affected by this vulnerability is the function dwg_decode_eed_data of the file decode.c. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

GNU LibreDWG 0.7/0.7.1645 dwg_dxf_LEADER denial of service

A vulnerability classified as problematic has been found in GNU LibreDWG 0.7/0.7.1645. Affected is the function dwg_dxf_LEADER. The manipulation with an unknown input leads to a denial of service vulnerability (NULL Pointer Dereference). CWE is...
Auteur: VulDB

GNU LibreDWG 0.7/0.7.1645 bits.c bit_convert_TU denial of service

A vulnerability was found in GNU LibreDWG 0.7/0.7.1645. It has been rated as problematic. This issue affects the function bit_convert_TU of the file bits.c. The manipulation with an unknown input leads to a denial of service vulnerability (NULL...
Auteur: VulDB

GNU LibreDWG 0.7/0.7.1645 decode.c dwg_decode_eed_data memory corruption

A vulnerability was found in GNU LibreDWG 0.7/0.7.1645. It has been declared as critical. This vulnerability affects the function dwg_decode_eed_data of the file decode.c. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

PilusCart 1.4.1 index.php cross site request forgery

A vulnerability was found in PilusCart 1.4.1. It has been classified as problematic. This affects code of the file index.php?module=users&action=newUser. The manipulation with an unknown input leads to a cross site request forgery vulnerability....
Auteur: VulDB

Thinkst Canarytokens up to 2019-03-01 Word Document information disclosure

A vulnerability was found in Thinkst Canarytokens up to 2019-03-01 and classified as problematic. Affected by this issue is a part of the component Word Document Handler. The manipulation with an unknown input leads to a information disclosure...
Auteur: VulDB

Free MP3 CD Ripper 2.6 File Converter wma File Stack-based memory corruption

A vulnerability has been found in Free MP3 CD Ripper 2.6 and classified as critical. Affected by this vulnerability is a functionality of the component File Converter. The manipulation as part of a wma File leads to a memory corruption...
Auteur: VulDB

Free MP3 CD Ripper 2.6 File Converter MP3 File Stack-based memory corruption

A vulnerability, which was classified as critical, was found in Free MP3 CD Ripper 2.6. Affected is a function of the component File Converter. The manipulation as part of a MP3 File leads to a memory corruption vulnerability (Stack-based). CWE...
Auteur: VulDB

Blog_mini 1.0 Comment app/main/views.py articleDetails() cross site scripting

A vulnerability, which was classified as problematic, has been found in Blog_mini 1.0 (Blog Software). This issue affects the function articleDetails() of the file app/main/views.py of the component Comment Handler. The manipulation with an...
Auteur: VulDB

GNU LibreDWG 0.7/0.7.1645 dwg_dxf_LTYPE memory corruption

A vulnerability was found in GNU LibreDWG 0.7/0.7.1645. It has been classified as critical. Affected is the function dwg_dxf_LTYPE. The manipulation with an unknown input leads to a memory corruption vulnerability (Heap-based). CWE is...
Auteur: VulDB

WordPress up to 5.1.0 Comment Content Filter Code Execution cross site request forgery

A vulnerability classified as problematic was found in WordPress up to 5.1.0 (Content Management System). This vulnerability affects the functionality of the component Comment Content Filter. The manipulation with an unknown input leads to a...
Auteur: VulDB

gitnote 3.1.0 Markdown File IMG Element memory corruption

A vulnerability classified as critical has been found in gitnote 3.1.0 (Versioning Software). This affects an unknown function of the component Markdown File Handler. The manipulation with the input value...
Auteur: VulDB

Highcharts JS up to 6.0.x Regular Expression js/parts/SvgRenderer.js denial of service

A vulnerability was found in Highcharts JS up to 6.0.x. It has been rated as problematic. Affected by this issue is some processing of the file js/parts/SvgRenderer.js of the component Regular Expression. The manipulation with an unknown input...
Auteur: VulDB

Intel CSME up to 11.8/11.11/11.22/12.0 AMT privilege escalation

A vulnerability, which was classified as critical, has been found in Intel CSME up to 11.8/11.11/11.22/12.0. This issue affects some functionality of the component AMT. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Intel CSME/TXE HECI Subsystem memory corruption [CVE-2018-12208]

A vulnerability classified as critical has been found in Intel CSME and TXE. This affects an unknown function of the component HECI Subsystem. The manipulation with an unknown input leads to a memory corruption vulnerability. CWE is classifying...
Auteur: VulDB

Intel Celeron N4000 Platform Sample/Silicon Reference firmware memory corruption

A vulnerability has been found in Intel Core Processor 7th Generation, Core Processor 8th Generation, Pentium Silver J5005, Pentium Silver N5000, Celeron J4105, Celeron J4005, Celeron N4100 and Celeron N4000 and classified as critical. This...
Auteur: VulDB

Intel Capability Licensing Service prior 1.50.638.1 Access Control privilege escalation

A vulnerability, which was classified as critical, was found in Intel Capability Licensing Service. This affects a function of the component Access Control. The manipulation with an unknown input leads to a privilege escalation vulnerability....
Auteur: VulDB

Intel CSME/TXE OS Component memory corruption [CVE-2018-12199]

A vulnerability, which was classified as critical, has been found in Intel CSME and TXE. Affected by this issue is some functionality of the component OS Component. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Intel Server Platform Service prior SPS_E5_04.00.04.393.0 HECI Subsystem denial of service

A vulnerability classified as problematic was found in Intel Server Platform Service. Affected by this vulnerability is the functionality of the component HECI Subsystem. The manipulation with an unknown input leads to a denial of service...
Auteur: VulDB

Intel AMT/CSME up to 11.8/11.11/11.22/12.0 Code Execution [CVE-2018-12196]

A vulnerability classified as critical has been found in Intel AMT and CSME up to 11.8/11.11/11.22/12.0. Affected is an unknown function. The manipulation with an unknown input leads to a privilege escalation vulnerability (Code Execution). CWE...
Auteur: VulDB

Intel CSME MEBx Authentication privilege escalation [CVE-2018-12192]

A vulnerability was found in Intel CSME, Server Platform Services and Trusted Execution Engine Firmware. It has been rated as critical. This issue affects some processing of the component MEBx Authentication. The manipulation with an unknown...
Auteur: VulDB
12345678910Last

Événements SSI

IT & IT SECURITY MEETINGS

IT & IT Security Meetings, «salon des réseaux, du cloud, de la mobilité et de la sécurité informatique», se tient à Cannes, Palais des Festivals et des Congrès du 19 au 21 mars 2019. Organisé par Weyou Group.

RSS