lundi 6 juillet 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Nginx Controller up to 3.4.0 API Endpoint Reflected cross site scripting

A vulnerability classified as problematic has been found in Nginx Controller up to 3.4.0. Affected is some unknown functionality of the component API Endpoint. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Nginx Controller up to 1.0.1/2.9.0/3.4.0 User Interface cross site request forgery

A vulnerability was found in Nginx Controller up to 1.0.1/2.9.0/3.4.0. It has been rated as problematic. This issue affects an unknown functionality of the component User Interface. There is no information about possible countermeasures known. It...
Auteur: VulDB

Nginx Controller up to 3.4.0 privilege escalation [CVE-2020-5899]

A vulnerability was found in Nginx Controller up to 3.4.0. It has been declared as critical. This vulnerability affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

GitHub Flavored Markdown up to 0.29.0.gfm.0 Table Extension denial of service

A vulnerability was found in GitHub Flavored Markdown up to 0.29.0.gfm.0. It has been classified as problematic. This affects some unknown processing of the component Table Extension. Upgrading to version 0.29.0.gfm.1 eliminates this...
Auteur: VulDB

IBM DB2 9.7/10.1/10.5/11.1/11.5 denial of service [CVE-2020-4420]

A vulnerability was found in IBM DB2 9.7/10.1/10.5/11.1/11.5 and classified as problematic. Affected by this issue is an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

IBM DB2 9.7/10.1/10.5/11.1/11.5 Shared Memory Request privilege escalation

A vulnerability has been found in IBM DB2 9.7/10.1/10.5/11.1/11.5 and classified as critical. Affected by this vulnerability is an unknown code of the component Shared Memory. There is no information about possible countermeasures known. It may...
Auteur: VulDB

IBM DB2 9.7/10.1/10.5/11.1/11.5 race condition information disclosure

A vulnerability, which was classified as problematic, was found in IBM DB2 9.7/10.1/10.5/11.1/11.5. Affected is an unknown part. There is no information about possible countermeasures known. It may be suggested to replace the affected object with...
Auteur: VulDB

IBM DB2 9.7/10.1/10.5/11.1/11.5 race condition information disclosure

A vulnerability, which was classified as problematic, has been found in IBM DB2 9.7/10.1/10.5/11.1/11.5. This issue affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

IBM MQ/MQ Appliance/MQ for HPE NonStop 8.0.4/8.1.0 pubsub denial of service

A vulnerability classified as problematic was found in IBM MQ, MQ Appliance and MQ for HPE NonStop 8.0.4/8.1.0. This vulnerability affects an unknown functionality of the component pubsub. There is no information about possible countermeasures...
Auteur: VulDB

IBM DB2 9.7/10.1/10.5/11.1/11.5 memory corruption [CVE-2020-4363]

A vulnerability classified as critical has been found in IBM DB2 9.7/10.1/10.5/11.1/11.5. This affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

IBM DB2 9.7/10.1/10.5/11.1/11.5 SSL Renegotiation Request denial of service

A vulnerability was found in IBM DB2 9.7/10.1/10.5/11.1/11.5. It has been rated as problematic. Affected by this issue is some unknown processing of the component SSL Renegotiation Handler. There is no information about possible countermeasures...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.4/8.7.1/8.8.0 createshared information disclosure

A vulnerability was found in Atlassian JIRA Server and Data Center up to 8.5.4/8.7.1/8.8.0. It has been declared as problematic. Affected by this vulnerability is an unknown code block of the file /rest/project-templates/1.0/createshared....
Auteur: VulDB

Atlassian Confluence Server/Data Center up to 7.5.0 Template Injection privilege escalation

A vulnerability was found in Atlassian Confluence Server and Data Center up to 7.5.0. It has been classified as critical. Affected is an unknown code of the component Template Handler. Upgrading to version 7.5.1 eliminates this vulnerability.
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.4/8.8.1/8.9.0 Attachment Download cross site scripting

A vulnerability was found in Atlassian JIRA Server and Data Center up to 8.5.4/8.8.1/8.9.0 (Bug Tracking Software) and classified as problematic. This issue affects an unknown part of the component Attachment Download Handler. Upgrading to...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.4/8.8.1/8.9.0 Attachment Download cross site scripting

A vulnerability has been found in Atlassian JIRA Server and Data Center up to 8.5.4/8.8.1/8.9.0 (Bug Tracking Software) and classified as problematic. This vulnerability affects some unknown functionality of the component Attachment Download...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.4/8.8.1/8.9.0 Attachment Download cross site scripting

A vulnerability, which was classified as problematic, was found in Atlassian JIRA Server and Data Center up to 8.5.4/8.8.1/8.9.0 (Bug Tracking Software). This affects an unknown functionality of the component Attachment Download Handler....
Auteur: VulDB

Cisco Unified Customer Voice Portal RMI Interface Request information disclosure

A vulnerability, which was classified as problematic, has been found in Cisco Unified Customer Voice Portal (affected version not known). Affected by this issue is an unknown function of the component RMI Interface. Upgrading eliminates this...
Auteur: VulDB

Cisco Digital Network Architecture information disclosure [CVE-2020-3391]

A vulnerability classified as problematic was found in Cisco Digital Network Architecture (affected version unknown). Affected by this vulnerability is some unknown processing. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco Identity Services Engine Web-based Management Interface cross site scripting

A vulnerability classified as problematic has been found in Cisco Identity Services Engine (version unknown). Affected is an unknown code block of the component Web-based Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco Small Business Smart Management Interface privilege escalation

A vulnerability was found in Cisco Small Business Smart (unknown version). It has been rated as critical. This issue affects an unknown code of the component Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

QNAP Helpdesk 3.0.1 Kayako Service privilege escalation

A vulnerability was found in QNAP Helpdesk 3.0.1. It has been declared as critical. This vulnerability affects an unknown part of the component Kayako Service. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Maptiler TileServer GL up to 3.0.0 key Reflected cross site scripting

A vulnerability was found in Maptiler TileServer GL up to 3.0.0. It has been classified as problematic. This affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

WAVLINK WL-WN530HG4 M30HG4.V5030.191116 CGI Script Code Execution memory corruption

A vulnerability was found in WAVLINK WL-WN530HG4 M30HG4.V5030.191116 and classified as very critical. Affected by this issue is an unknown functionality of the component CGI Script. There is no information about possible countermeasures known. It...
Auteur: VulDB

WAVLINK WL-WN530HG4 M30HG4.V5030.191116 CGI Script Shell Metacharacter Code Execution

A vulnerability has been found in WAVLINK WL-WN530HG4 M30HG4.V5030.191116 and classified as critical. Affected by this vulnerability is an unknown function of the component CGI Script. There is no information about possible countermeasures known....
Auteur: VulDB

Journal Theme up to 3.0.x on OpenCart SQL Error information disclosure

A vulnerability, which was classified as problematic, was found in Journal Theme up to 3.0.x on OpenCart. Affected is some unknown processing of the component SQL Error Handler. Upgrading to version 3.1.0 eliminates this vulnerability.
Auteur: VulDB
12345678910Last

Événements SSI