Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Gallagher Command Centre Server prior 8.20.1259/8.30.1359/8.40.1888 Configuration escape output

A vulnerability was found in Gallagher Command Centre Server. It has been rated as critical. Affected by this issue is an unknown functionality of the component Configuration Handler. Upgrading to version 8.20.1259, 8.30.1359 or 8.40.1888...
Auteur: VulDB

Gallagher Command Centre Server prior 8.30.1359/8.40.1888 OSDP Key Material information disclosure

A vulnerability was found in Gallagher Command Centre Server. It has been declared as problematic. Affected by this vulnerability is an unknown function of the component OSDP Key Material Handler. Upgrading to version 8.30.1359 or 8.40.1888...
Auteur: VulDB

Gallagher Command Centre Server prior 8.40.1888 OSDP Reader Master Key cleartext storage

A vulnerability was found in Gallagher Command Centre Server. It has been classified as problematic. Affected is some unknown processing of the component OSDP Reader Master Key Handler. Upgrading to version 8.40.1888 eliminates this vulnerability.
Auteur: VulDB

Gallagher Command Centre Server prior 8.20.1259/8.30.1359/8.40.1888 Command Line Macro improper authorization

A vulnerability was found in Gallagher Command Centre Server and classified as critical. This issue affects an unknown code block of the component Command Line Macro Handler. Upgrading to version 8.20.1259, 8.30.1359 or 8.40.1888 eliminates this...
Auteur: VulDB

Gallagher Command Centre Server prior 8.20.1259/8.30.1359/8.40.1888 improper authorization

A vulnerability has been found in Gallagher Command Centre Server and classified as critical. This vulnerability affects an unknown code. Upgrading to version 8.20.1259, 8.30.1359 or 8.40.1888 eliminates this vulnerability.
Auteur: VulDB

Nextcloud End-to-End Encryption up to 1.5.2/1.6.2/1.7.0 Folder Lock resource consumption

A vulnerability, which was classified as problematic, was found in Nextcloud End-to-End Encryption up to 1.5.2/1.6.2/1.7.0 (Cloud Software). This affects an unknown part of the component Folder Lock Handler. Upgrading to version 1.5.3, 1.6.3 or...
Auteur: VulDB

cURL/libcURL up to 7.76.1 Command Line Option CURLOPT_TELNETOPTIONS information disclosure

A vulnerability, which was classified as problematic, has been found in cURL and libcURL up to 7.76.1 (Network Utility Software). Affected by this issue is some unknown functionality of the component Command Line Option Handler. Applying a patch...
Auteur: VulDB

Schneider Electric Enerlin'X Com'X 510 up to 6.8.3 Configuration information disclosure

A vulnerability classified as problematic was found in Schneider Electric Enerlin'X Com'X 510 up to 6.8.3 (SCADA Software). Affected by this vulnerability is an unknown functionality of the component Configuration Handler. Upgrading to version...
Auteur: VulDB

Schneider Electric IGSS Definition up to 15.0.0.21140 CGF File Def.exe out-of-bounds write

A vulnerability classified as critical has been found in Schneider Electric IGSS Definition up to 15.0.0.21140 (SCADA Software). Affected is an unknown function of the file Def.exe of the component CGF File Handler. Applying a patch is able to...
Auteur: VulDB

GitLab Community Edition/Enterprise Edition 11.8 Pipeline Relationship resource consumption

A vulnerability was found in GitLab Community Edition and Enterprise Edition 11.8 (Bug Tracking Software). It has been rated as problematic. This issue affects some unknown processing of the component Pipeline Relationship Handler. There is no...
Auteur: VulDB

NetApp E-Series SANtricity OS Controller Software up to 11.70.0 unknown vulnerability

A vulnerability was found in NetApp E-Series SANtricity OS Controller Software up to 11.70.0. It has been declared as problematic. Upgrading to version 11.70.1 eliminates this vulnerability.
Auteur: VulDB

Samsung NPU Driver prior SMR JUN-2021 Release 1 out-of-bounds write

A vulnerability was found in Samsung NPU Driver (Hardware Driver Software). It has been classified as critical. This affects an unknown code. Upgrading to version SMR JUN-2021 Release 1 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

Samsung NPU Firmware prior SMR MAY-2021 Release 1 out-of-bounds write

A vulnerability was found in Samsung NPU Firmware (Firmware Software) and classified as critical. Affected by this issue is an unknown part. Upgrading to version SMR MAY-2021 Release 1 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

Schneider Electric PowerLogic EGX100/PowerLogic EGX300 HTTP Packet input validation

A vulnerability has been found in Schneider Electric PowerLogic EGX100 and PowerLogic EGX300 (SCADA Software) (affected version unknown) and classified as critical. Affected by this vulnerability is some unknown functionality of the component...
Auteur: VulDB

Schneider Electric PowerLogic EGX100/PowerLogic EGX300 HTTP Packet input validation

A vulnerability, which was classified as problematic, was found in Schneider Electric PowerLogic EGX100 and PowerLogic EGX300 (SCADA Software) (version unknown). Affected is an unknown functionality of the component HTTP Packet Handler. Applying...
Auteur: VulDB

Schneider Electric PowerLogic EGX100/PowerLogic EGX300 3.0.0 HTTP Packet input validation

A vulnerability, which was classified as problematic, has been found in Schneider Electric PowerLogic EGX100 and PowerLogic EGX300 3.0.0 (SCADA Software). This issue affects an unknown function of the component HTTP Packet Handler. Applying a...
Auteur: VulDB

Google Android 10.0 Kernel Filesystem /proc/net information disclosure

A vulnerability classified as problematic was found in Google Android 10.0 (Smartphone Operating System). This vulnerability affects some unknown processing of the file /proc/net of the component Kernel Filesystem Handler. Applying a patch is...
Auteur: VulDB

Samsung RKP API prior SMR JUN-2021 Release 1 Kernel Memory code injection

A vulnerability classified as problematic has been found in Samsung RKP API (Automation Software). This affects an unknown code block of the component Kernel Memory Handler. Upgrading to version SMR JUN-2021 Release 1 eliminates this...
Auteur: VulDB

Gallagher Command Centre prior 8.10.1284/8.20.1259/8.30.1359/8.40.1888 OPCUA Interface sql injection

A vulnerability was found in Gallagher Command Centre. It has been rated as critical. Affected by this issue is an unknown code of the component OPCUA Interface. Upgrading to version 8.10.1284, 8.20.1259, 8.30.1359 or 8.40.1888 eliminates this...
Auteur: VulDB

Nextcloud Server up to 19.0.10/20.0.9/21.0.1 Brute-Force Protection excessive authentication

A vulnerability was found in Nextcloud Server up to 19.0.10/20.0.9/21.0.1 (Cloud Software). It has been declared as problematic. Affected by this vulnerability is an unknown part of the component Brute-Force Protection. Upgrading to version...
Auteur: VulDB

Schneider Electric IGSS Definition up to 15.0.0.21140 CGF File Def.exe release of reference

A vulnerability was found in Schneider Electric IGSS Definition up to 15.0.0.21140 (SCADA Software). It has been classified as critical. Affected is some unknown functionality of the file Def.exe of the component CGF File Handler. Applying a...
Auteur: VulDB

Schneider Electric IGSS Definition up to 15.0.0.21140 CGF File Def.exe use after free

A vulnerability was found in Schneider Electric IGSS Definition up to 15.0.0.21140 (SCADA Software) and classified as critical. This issue affects an unknown functionality of the file Def.exe of the component CGF File Handler. Applying a patch is...
Auteur: VulDB

Schneider Electric IGSS Definition up to 15.0.0.21140 CGF File Def.exe uninitialized pointer

A vulnerability has been found in Schneider Electric IGSS Definition up to 15.0.0.21140 (SCADA Software) and classified as critical. This vulnerability affects an unknown function of the file Def.exe of the component CGF File Handler. Applying a...
Auteur: VulDB

Schneider Electric IGSS Definition up to 15.0.0.21140 CGF File Def.exe out-of-bounds write

A vulnerability, which was classified as critical, was found in Schneider Electric IGSS Definition up to 15.0.0.21140 (SCADA Software). This affects some unknown processing of the file Def.exe of the component CGF File Handler. Applying a patch...
Auteur: VulDB

Schneider Electric IGSS Definition up to 15.0.0.21140 WSP File Def.exe out-of-bounds read

A vulnerability, which was classified as problematic, has been found in Schneider Electric IGSS Definition up to 15.0.0.21140 (SCADA Software). Affected by this issue is an unknown code block of the file Def.exe of the component WSP File Handler....
Auteur: VulDB
12345678910Last

Événements SSI

FIC

Ayant pour thème cette année " Pour une cybersécurité coopérative et collaborative ", le Forum International de la Cybersécurité occupe les 6, 7 et 8 avril 2021 le Grand Palais de Lille. Organisé ...

FIC (REPORTÉ)

Ayant pour thème cette année " Pour une cybersécurité coopérative et collaborative ", le Forum International de la Cybersécurité occupe les 19, 20 et 21 janvier 2021 le Grand Palais de Lille. ...

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes, palais des festivals, du 1er au 3 décembre 2020 . Organisé par Comexposium.

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes, palais des festivals, du 1er au 3 décembre 2020 . Organisé par Comexposium.

TRUSTECH (ANNULÉ)

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes, palais des festivals, du 1er au 3 décembre 2020 . Organisé par Comexposium.

TRUSTECH (ANNULÉ)

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes, palais des festivals, du 1er au 3 décembre 2020 . Organisé par Comexposium.
RSS
12345678910Last