Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Pulse Connect Secure up to 9.1R7 Meeting Detail information disclosure

A vulnerability was found in Pulse Connect Secure up to 9.1R7. It has been declared as problematic. Affected by this vulnerability is an unknown code block of the component Meeting Detail Handler. Upgrading to version 9.1R8 eliminates this...
Auteur: VulDB

UniFi Protect up to 1.13.3 Web Application HTTP Response information disclosure

A vulnerability was found in UniFi Protect up to 1.13.3. It has been classified as problematic. Affected is an unknown code of the component Web Application. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Pulse Connect Secure prior 9.1RB Google TOTP weak authentication

A vulnerability was found in Pulse Connect Secure and classified as critical. This issue affects an unknown part of the component Google TOTP. Upgrading to version 9.1RB eliminates this vulnerability.
Auteur: VulDB

Pulse Connect Secure up to 9.1R4 PSAL Page cross site scripting

A vulnerability has been found in Pulse Connect Secure up to 9.1R4 and classified as problematic. This vulnerability affects some unknown functionality of the component PSAL Page. Upgrading to version 9.1R5 eliminates this vulnerability.
Auteur: VulDB

NextCloud Preferred Providers App 1.6.0 Long Password denial of service

A vulnerability, which was classified as problematic, was found in NextCloud Preferred Providers App 1.6.0 (Cloud Software). This affects an unknown functionality. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

Fastify 2.14.1/3.0.0-rc.4 Resource Exhaustion denial of service

A vulnerability, which was classified as problematic, has been found in Fastify 2.14.1/3.0.0-rc.4. Affected by this issue is an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

IBM Security Guardium 10.5/10.6/11.1 Login Page information disclosure

A vulnerability classified as problematic was found in IBM Security Guardium 10.5/10.6/11.1 (Policy Management Software). Affected by this vulnerability is some unknown processing of the component Login Page. There is no information about...
Auteur: VulDB

IBM Security Guardium 10.5/10.6/11.1 weak encryption [CVE-2020-4185]

A vulnerability classified as problematic has been found in IBM Security Guardium 10.5/10.6/11.1 (Policy Management Software). Affected is an unknown code block. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Qualcomm Snapdragon Mobile Saipan/SM8250/SXR2130 camx Driver Notification Use-After-Free memory corruption

A vulnerability was found in Qualcomm Snapdragon Mobile Saipan/SM8250/SXR2130. It has been rated as critical. This issue affects an unknown code of the component camx Driver. Upgrading eliminates this vulnerability.
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR2130 Out-of-Bounds information disclosure

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables and Snapdragon Wired Infrastructure and Networking. It...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR2130 assoc Response Out-of-Bounds memory corruption

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables. It...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR2130 QoS DSCP Mapping Out-of-Bounds memory corruption

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables and...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR2130 MP4 File memory corruption

A vulnerability has been found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables and classified as...
Auteur: VulDB

Qualcomm Snapdragon Compute up to SXR2130 OpenGL ES Use-After-Free memory corruption

A vulnerability, which was classified as critical, was found in Qualcomm Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Voice & Music up to SXR2130. Affected is some unknown processing of...
Auteur: VulDB

grub2 up to 2.05 squashfs Filesystem Heap-based memory corruption

A vulnerability, which was classified as critical, has been found in grub2 up to 2.05. This issue affects an unknown code block of the component squashfs Filesystem Handler. Upgrading to version 2.06 eliminates this vulnerability.
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR2130 memory corruption [CVE-2019-14130]

A vulnerability classified as critical was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile and Snapdragon Wired Infrastructure and Networking up to SXR2130 (Chip Software). This vulnerability affects an unknown code....
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR2130 Protection Module memory corruption

A vulnerability classified as critical has been found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile and Snapdragon Wired Infrastructure and Networking up to SXR2130 (Chip Software). This affects an unknown part of the...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR2130 memory corruption [CVE-2019-14123]

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile and Snapdragon Wired Infrastructure & Networking up to SXR2130 (Chip Software). It has been rated as critical. Affected by this issue is some unknown...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR1130 Command Out-of-Bounds information disclosure

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SM8150 debugfs unknown vulnerability

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Voice & Music up to SM8150 (Chip Software). It has been classified as problematic....
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR2130 memory corruption [CVE-2019-14099]

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables (Chip Software) and classified as critical. This...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SDX20 Display Module Out-of-Bounds memory corruption

A vulnerability has been found in Qualcomm Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables (Chip Software) and...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR1130 Socket Use-After-Free memory corruption

A vulnerability, which was classified as critical, was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR2130 Kernel Thread Use-After-Free memory corruption

A vulnerability, which was classified as critical, has been found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables up to...
Auteur: VulDB

express-fileupload up to 1.1.7 HTTP Request Remote Code Execution

A vulnerability classified as critical was found in express-fileupload up to 1.1.7. Affected by this vulnerability is some unknown functionality. Upgrading to version 1.1.8 eliminates this vulnerability.
Auteur: VulDB
12345678910Last

Événements SSI