Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

iCMS 7.0.13 HTTP Request database.admincp.php do_del path traversal

A vulnerability was found in iCMS 7.0.13 (Content Management System). It has been classified as critical. This affects the function do_del of the file database.admincp.php of the component HTTP Request Handler. There is no information about...
Auteur: VulDB

NVIDIA Virtual GPU Manager up to 8.6/11.3/12.1 Address Space Layout Randomization information disclosure

A vulnerability was found in NVIDIA Virtual GPU Manager up to 8.6/11.3/12.1 and classified as problematic. Affected by this issue is some unknown processing of the component Address Space Layout Randomization. Upgrading to version 8.7, 11.4 or...
Auteur: VulDB

NVIDIA Virtual GPU Manager up to 8.6/11.3/12.1 Shared Memory buffer overflow

A vulnerability has been found in NVIDIA Virtual GPU Manager up to 8.6/11.3/12.1 and classified as critical. Affected by this vulnerability is an unknown code block of the component Shared Memory Handler. Upgrading to version 8.7, 11.4 or 12.2...
Auteur: VulDB

yii2_fecshop 2.x Check Cart Page cross site scripting

A vulnerability, which was classified as problematic, was found in yii2_fecshop 2.x. Affected is an unknown code of the component Check Cart Page. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com.
Auteur: VulDB

vTiger CRM 7.2 Calendar Export sql injection

A vulnerability, which was classified as critical, has been found in vTiger CRM 7.2 (Customer Relationship Management System). This issue affects an unknown part of the component Calendar Export. There is no information about possible...
Auteur: VulDB

Jeesns 1.4.2 CkeditorUploadController.java CKEditorFuncNum cross site scripting

A vulnerability classified as problematic was found in Jeesns 1.4.2. This vulnerability affects some unknown functionality of the file CkeditorUploadController.java. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

NVIDIA Virtual GPU Manager up to 11.3/12.1 Kernel Mode Driver buffer overflow

A vulnerability classified as critical has been found in NVIDIA Virtual GPU Manager up to 11.3/12.1. This affects an unknown functionality of the component Kernel Mode Driver Handler. Upgrading to version 11.4 or 12.2 eliminates this...
Auteur: VulDB

NVIDIA Virtual GPU Manager up to 8.6/11.3/12.1 Local Privilege Escalation

A vulnerability was found in NVIDIA Virtual GPU Manager up to 8.6/11.3/12.1. It has been rated as critical. Upgrading to version 8.7, 11.4 or 12.2 eliminates this vulnerability.
Auteur: VulDB

NVIDIA Virtual GPU Manager up to 8.6/11.3/12.1 Local Privilege Escalation

A vulnerability was found in NVIDIA Virtual GPU Manager up to 8.6/11.3/12.1. It has been declared as critical. Upgrading to version 8.7, 11.4 or 12.2 eliminates this vulnerability.
Auteur: VulDB

django-filter up to 2.3.x numeric conversion [CVE-2020-15225]

A vulnerability was found in django-filter up to 2.3.x (Content Management System). It has been classified as problematic. Affected is an unknown code block. Upgrading to version 2.4.0 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

Ghost up to 4.3.2 Endpoint /ghost/preview cross site scripting

A vulnerability was found in Ghost up to 4.3.2 and classified as problematic. This issue affects an unknown code of the file /ghost/preview of the component Endpoint. Upgrading to version 4.3.3 eliminates this vulnerability. The upgrade is hosted...
Auteur: VulDB

NVIDIA Virtual GPU Manager up to 8.6/11.3/12.1 access control

A vulnerability has been found in NVIDIA Virtual GPU Manager up to 8.6/11.3/12.1 and classified as critical. This vulnerability affects an unknown part. Upgrading to version 8.7, 11.4 or 12.2 eliminates this vulnerability.
Auteur: VulDB

NVIDIA Virtual GPU Manager up to 11.3/12.1 Kernel Mode Driver buffer overflow

A vulnerability, which was classified as critical, was found in NVIDIA Virtual GPU Manager up to 11.3/12.1. This affects some unknown functionality of the component Kernel Mode Driver Handler. Upgrading to version 11.4 or 12.2 eliminates this...
Auteur: VulDB

NVIDIA vGPU Software up to 8.6/11.3/12.1 Kernel Mode Driver buffer overflow

A vulnerability, which was classified as critical, has been found in NVIDIA vGPU Software up to 8.6/11.3/12.1. Affected by this issue is an unknown functionality of the component Kernel Mode Driver Handler. Upgrading to version 8.7, 11.4 or 12.2...
Auteur: VulDB

Cygwin Git up to 2.31.1-1 injection [CVE-2021-29468]

A vulnerability classified as problematic was found in Cygwin Git up to 2.31.1-1 (Versioning Software). Affected by this vulnerability is an unknown function. Upgrading to version 2.31.1-2 eliminates this vulnerability. Applying a patch is able...
Auteur: VulDB

systeminformation up to 5.6.3 Parameter os command injection

A vulnerability classified as critical has been found in systeminformation up to 5.6.3. Affected is the function si.inetLatency/si.inetChecksite/si.services/si.processLoad of the component Parameter Handler. Upgrading to version 5.6.4 eliminates...
Auteur: VulDB

Graphviz Graph Visualization Tools lib/common/shapes.c buffer overflow

A vulnerability was found in Graphviz Graph Visualization Tools (unknown version). It has been rated as critical. This issue affects an unknown code block in the library lib/common/shapes.c. There is no information about possible countermeasures...
Auteur: VulDB

Backdoor.Win32.Agent.ggw FTP Service improper authentication

A vulnerability was found in Backdoor.Win32.Agent.ggw (Remote Access Software) (the affected version is unknown). It has been declared as critical. This vulnerability affects an unknown code of the component FTP Service. Proper firewalling of is...
Auteur: VulDB

Worm.Win32.Delf.hu C:\RECYCLER\ permission

A vulnerability was found in Worm.Win32.Delf.hu (the affected version unknown). It has been classified as critical. This affects an unknown part of the file C:\RECYCLER\. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

HEUR.Trojan.Win32.Bayrob.gen C:\rlpzeasjvgnb\ permission

A vulnerability was found in HEUR.Trojan.Win32.Bayrob.gen (affected version not known) and classified as critical. Affected by this issue is some unknown functionality of the file C:\rlpzeasjvgnb\. There is no information about possible...
Auteur: VulDB

Cisco Firepower Threat Defense CLI Command pathname traversal

A vulnerability has been found in Cisco Firepower Threat Defense (Firewall Software) (affected version unknown) and classified as critical. Affected by this vulnerability is an unknown functionality of the component CLI Command Handler. Upgrading...
Auteur: VulDB

Cisco FirePOWER Management Center Web-based Management Interface cross site scripting

A vulnerability, which was classified as problematic, was found in Cisco FirePOWER Management Center (Firewall Software) (version unknown). Affected is an unknown function of the component Web-based Management Interface. Upgrading eliminates this...
Auteur: VulDB

Cisco FirePOWER Management Center Web-based Management Interface cross site scripting

A vulnerability, which was classified as problematic, has been found in Cisco FirePOWER Management Center (Firewall Software) (unknown version). This issue affects some unknown processing of the component Web-based Management Interface. Upgrading...
Auteur: VulDB

Cisco FirePOWER Management Center Web-based Management Interface cross site scripting

A vulnerability classified as problematic was found in Cisco FirePOWER Management Center (Firewall Software) (the affected version is unknown). This vulnerability affects an unknown code block of the component Web-based Management Interface....
Auteur: VulDB

Cisco FirePOWER Management Center Web-based Management Interface cross site scripting

A vulnerability classified as problematic has been found in Cisco FirePOWER Management Center (Firewall Software) (the affected version unknown). This affects an unknown code of the component Web-based Management Interface. Upgrading eliminates...
Auteur: VulDB
12345678910Last

Événements SSI