samedi 4 avril 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

BD Pyxis MedStation ES System 1.6.1 Kiosk Mode privilege escalation

A vulnerability, which was classified as critical, has been found in BD Pyxis MedStation ES System and Pyxis Anesthesia ES System 1.6.1. Affected by this issue is an unknown function of the component Kiosk Mode. There is no information about...
Auteur: VulDB

TP-LINK NC200/NC210/NC220/NC230/NC250/NC260/NC450 up to 2.1.8_Build_171109 NULL Pointer Dereference denial of service

A vulnerability classified as problematic was found in TP-LINK NC200, NC210, NC220, NC230, NC250, NC260 and NC450 up to 2.1.8_Build_171109. Affected by this vulnerability is some unknown processing. There is no information about possible...
Auteur: VulDB

Sonatype Nexus Repository up to 3.21.1 Remote Code Execution

A vulnerability classified as critical has been found in Sonatype Nexus Repository up to 3.21.1. Affected is an unknown code block. Upgrading to version 3.21.2 eliminates this vulnerability.
Auteur: VulDB

Sonatype Nexus Repository up to 3.21.1 cross site scripting [CVE-2020-10203]

A vulnerability was found in Sonatype Nexus Repository up to 3.21.1. It has been rated as problematic. This issue affects an unknown code. Upgrading to version 3.21.2 eliminates this vulnerability.
Auteur: VulDB

Sonatype Nexus Repository up to 3.21.1 JavaEL Injection privilege escalation

A vulnerability was found in Sonatype Nexus Repository up to 3.21.1. It has been declared as critical. This vulnerability affects an unknown part of the component JavaEL Handler. Upgrading to version 3.21.2 eliminates this vulnerability.
Auteur: VulDB

March Networks Command Client up to 2.7.1 XAML Object privilege escalation

A vulnerability was found in March Networks Command Client up to 2.7.1. It has been classified as critical. This affects some unknown functionality of the component XAML Object Handler. Upgrading to version 2.7.2 eliminates this vulnerability.
Auteur: VulDB

Parrot ANAFI Web Server Command Crash denial of service

A vulnerability was found in Parrot ANAFI (affected version not known) and classified as problematic. Affected by this issue is an unknown functionality of the component Web Server. There is no information about possible countermeasures known. It...
Auteur: VulDB

Parrot ANAFI denial of service [CVE-2019-3944]

A vulnerability has been found in Parrot ANAFI (affected version unknown) and classified as problematic. Affected by this vulnerability is an unknown function. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Advantech WebAccess 8.3.4 RPC RPC Call information disclosure

A vulnerability, which was classified as problematic, was found in Advantech WebAccess 8.3.4 (SCADA Software). Affected is some unknown processing of the component RPC Handler. There is no information about possible countermeasures known. It may...
Auteur: VulDB

Apache Dubbo up to 2.5.x/2.6.7/2.7.4 POST Request Deserialization privilege escalation

A vulnerability, which was classified as critical, has been found in Apache Dubbo up to 2.5.x/2.6.7/2.7.4. This issue affects an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Kubernetes up to 1.1-1.14/1.15.9/1.16.6/1.17.2 kube-apiserver CPU Exhaustion denial of service

A vulnerability classified as problematic was found in Kubernetes up to 1.1-1.14/1.15.9/1.16.6/1.17.2 (Virtualization Software). This vulnerability affects an unknown code of the component kube-apiserver. Upgrading to version 1.15.10, 1.16.7 or...
Auteur: VulDB

Apache Solr up to 7.6 Node Request privilege escalation

A vulnerability classified as critical has been found in Apache Solr up to 7.6. This affects an unknown part of the component Node Handler. Upgrading to version 7.7 eliminates this vulnerability.
Auteur: VulDB

Netgear WC7500/WC7520/WC7600v1/WC7600v2/WC9500 request_handler.php command injection

A vulnerability was found in Netgear WC7500, WC7520, WC7600v1, WC7600v2 and WC9500. It has been rated as critical. Affected by this issue is some unknown functionality of the file request_handler.php. Upgrading eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 80.0.3987.162 Media Use-After-Free memory corruption

A vulnerability classified as critical was found in Google Chrome. This vulnerability affects some unknown functionality of the component Media. Upgrading to version 80.0.3987.162 eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Google Chrome prior 80.0.3987.162 WebAudio Use-After-Free memory corruption

A vulnerability classified as critical has been found in Google Chrome. This affects an unknown functionality of the component WebAudio. Upgrading to version 80.0.3987.162 eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Google Chrome prior 80.0.3987.162 WebAudio Use-After-Free memory corruption

A vulnerability was found in Google Chrome. It has been rated as critical. Affected by this issue is an unknown function of the component WebAudio. Upgrading to version 80.0.3987.162 eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Tiki-Wiki CMS up to 20.0 Web Page cross site scripting

A vulnerability was found in Tiki-Wiki CMS up to 20.0. It has been declared as problematic. Affected by this vulnerability is some unknown processing of the component Web Page. There is no information about possible countermeasures known. It may...
Auteur: VulDB

Apple iCloud up to 7.17 on Windows WebKit Page Loading privilege escalation

A vulnerability was found in Apple iCloud up to 7.17 on Windows. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component WebKit Page Loading. Upgrading to version 7.18 eliminates this...
Auteur: VulDB

Apple iCloud up to 7.17 on Windows WebKit cross site scripting

A vulnerability was found in Apple iCloud up to 7.17 on Windows. It has been classified as problematic. Affected is an unknown function of the component WebKit. Upgrading to version 7.18 eliminates this vulnerability. A possible mitigation has...
Auteur: VulDB

Apple iCloud up to 7.17 on Windows WebKit memory corruption

A vulnerability was found in Apple iCloud up to 7.17 on Windows and classified as critical. This issue affects some unknown processing of the component WebKit. Upgrading to version 7.18 eliminates this vulnerability. A possible mitigation has...
Auteur: VulDB

Apple iCloud up to 7.17 on Windows WebKit Type Confusion memory corruption

A vulnerability has been found in Apple iCloud up to 7.17 on Windows and classified as critical. This vulnerability affects an unknown code block of the component WebKit. Upgrading to version 7.18 eliminates this vulnerability. A possible...
Auteur: VulDB

Apple iCloud up to 7.17 on Windows WebKit Use-After-Free memory corruption

A vulnerability, which was classified as critical, was found in Apple iCloud up to 7.17 on Windows. This affects an unknown code of the component WebKit. Upgrading to version 7.18 eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Apple iCloud up to 7.17 on Windows WebKit race condition information disclosure

A vulnerability, which was classified as problematic, has been found in Apple iCloud up to 7.17 on Windows. Affected by this issue is an unknown part of the component WebKit. Upgrading to version 7.18 eliminates this vulnerability. A possible...
Auteur: VulDB

Apple iCloud up to 7.17 on Windows WebKit memory corruption

A vulnerability classified as critical was found in Apple iCloud up to 7.17 on Windows (Cloud Software). Affected by this vulnerability is some unknown functionality of the component WebKit. Upgrading to version 7.18 eliminates this...
Auteur: VulDB

Apple iCloud up to 7.17 on Windows WebKit memory corruption

A vulnerability classified as critical has been found in Apple iCloud up to 7.17 on Windows (Cloud Software). Affected is an unknown functionality of the component WebKit. Upgrading to version 7.18 eliminates this vulnerability. A possible...
Auteur: VulDB
12345678910Last

Événements SSI