samedi 4 avril 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Sling CMS up to 0.15.x Administrative Console Reflected cross site scripting

A vulnerability classified as problematic has been found in Sling CMS up to 0.15.x. This affects an unknown code of the component Administrative Console. Upgrading to version 0.16.0 eliminates this vulnerability.
Auteur: VulDB

Apache OFBiz up to 16.11.07 /control/stream cross site scripting

A vulnerability was found in Apache OFBiz up to 16.11.07. It has been rated as problematic. Affected by this issue is an unknown part of the file /control/stream. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

Apache HTTP Server up to 2.4.41 mod_proxy_ftp Uninitialized Memory memory corruption

A vulnerability was found in Apache HTTP Server up to 2.4.41. It has been declared as critical. Affected by this vulnerability is some unknown functionality of the component mod_proxy_ftp. There is no information about possible countermeasures...
Auteur: VulDB

Apache HTTP Server up to 2.4.41 mod_rewrite Request privilege escalation

A vulnerability was found in Apache HTTP Server up to 2.4.41. It has been classified as critical. Affected is an unknown functionality of the component mod_rewrite. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

Zoom Client for Meetings up to 4.6.8 on macOS Library privilege escalation

A vulnerability was found in Zoom Client for Meetings up to 4.6.8 on macOS and classified as critical. This issue affects an unknown function of the component Library Handler. There is no information about possible countermeasures known. It may...
Auteur: VulDB

Zoom Client for Meetings up to 4.6.8 on macOS Installation privilege escalation

A vulnerability has been found in Zoom Client for Meetings up to 4.6.8 on macOS and classified as critical. This vulnerability affects some unknown processing of the component Installation. There is no information about possible countermeasures...
Auteur: VulDB

Deskpro prior 2019.8.0 Helpdesk Interface template-sources code Remote Code Execution

A vulnerability, which was classified as critical, was found in Deskpro. This affects an unknown code block of the file /portal/api/style/edit-theme-set/template-sources of the component Helpdesk Interface. Upgrading to version 2019.8.0...
Auteur: VulDB

Deskpro prior 2019.8.0 Endpoint /api/tickets information disclosure

A vulnerability, which was classified as problematic, has been found in Deskpro. Affected by this issue is an unknown code of the file /api/tickets of the component Endpoint. Upgrading to version 2019.8.0 eliminates this vulnerability.
Auteur: VulDB

Deskpro prior 2019.8.0 Helpdesk Application /api/apps/ information disclosure

A vulnerability classified as problematic was found in Deskpro. Affected by this vulnerability is an unknown part of the file /api/apps/ of the component Helpdesk Application Handler. Upgrading to version 2019.8.0 eliminates this vulnerability.
Auteur: VulDB

Deskpro prior 2019.8.0 Endpoint /api/people information disclosure

A vulnerability classified as problematic has been found in Deskpro. Affected is some unknown functionality of the file /api/people of the component Endpoint. Upgrading to version 2019.8.0 eliminates this vulnerability.
Auteur: VulDB

Deskpro prior 2019.8.0 /api/email_accounts privilege escalation

A vulnerability was found in Deskpro. It has been rated as critical. This issue affects an unknown functionality of the file /api/email_accounts. Upgrading to version 2019.8.0 eliminates this vulnerability.
Auteur: VulDB

pfSense up to 2.4.4 WebGUI system_usermanager_addprivs.php descr cross site scripting

A vulnerability was found in pfSense up to 2.4.4. It has been declared as problematic. This vulnerability affects an unknown function of the file system_usermanager_addprivs.php of the component WebGUI. Upgrading to version 2.4.5 eliminates this...
Auteur: VulDB

LimeSurvey up to 4.1 surveySettings.php cross site scripting

A vulnerability was found in LimeSurvey up to 4.1. It has been classified as problematic. This affects some unknown processing of the file application/views/admin/surveysgroups/surveySettings.php. Upgrading to version 4.1.12+200324 eliminates...
Auteur: VulDB

LimeSurvey up to 4.1 LimeSurveyFileManager.php directory traversal

A vulnerability was found in LimeSurvey up to 4.1 and classified as critical. Affected by this issue is an unknown code block of the file application/controllers/admin/LimeSurveyFileManager.php. Upgrading to version 4.1.12+200324 eliminates this...
Auteur: VulDB

Technicolor TC7337 8.89.17 Backup File backupsettings.conf information disclosure

A vulnerability has been found in Technicolor TC7337 8.89.17 and classified as problematic. Affected by this vulnerability is an unknown code of the file backupsettings.conf of the component Backup File Handler. There is no information about...
Auteur: VulDB

Jon Hedley AlienForm2 2.0.2 af.cgi Request privilege escalation

A vulnerability, which was classified as critical, was found in Jon Hedley AlienForm2 2.0.2. Affected is an unknown part of the file af.cgi. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe RPC Call privilege escalation

A vulnerability, which was classified as critical, has been found in Avast Antivirus up to 19. This issue affects some unknown functionality of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this...
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe privilege escalation

A vulnerability classified as critical was found in Avast Antivirus up to 19. This vulnerability affects an unknown functionality of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this vulnerability.
Auteur: VulDB

Avast Access Point up to 19 TaskEx Library AvastSvc.exe information disclosure

A vulnerability classified as problematic has been found in Avast Access Point up to 19. This affects an unknown function of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this vulnerability.
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe privilege escalation

A vulnerability was found in Avast Antivirus up to 19. It has been rated as critical. Affected by this issue is some unknown processing of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this...
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe denial of service

A vulnerability was found in Avast Antivirus up to 19. It has been declared as problematic. Affected by this vulnerability is an unknown code block of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this...
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe denial of service

A vulnerability was found in Avast Antivirus up to 19. It has been classified as problematic. Affected is an unknown code of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this vulnerability.
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe privilege escalation

A vulnerability was found in Avast Antivirus up to 19 (Anti-Malware Software) and classified as critical. This issue affects an unknown part of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this...
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe denial of service

A vulnerability has been found in Avast Antivirus up to 19 (Anti-Malware Software) and classified as problematic. This vulnerability affects some unknown functionality of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version...
Auteur: VulDB

Avast Antivirus up to 19 aswAvLog Log Library AvastSvc.exe denial of service

A vulnerability, which was classified as problematic, was found in Avast Antivirus up to 19 (Anti-Malware Software). This affects an unknown functionality of the file AvastSvc.exe of the component aswAvLog Log Library. Upgrading to version 20...
Auteur: VulDB
12345678910Last

Événements SSI