mardi 7 avril 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Deskpro prior 2019.8.0 Endpoint /api/people information disclosure

A vulnerability classified as problematic has been found in Deskpro. Affected is some unknown functionality of the file /api/people of the component Endpoint. Upgrading to version 2019.8.0 eliminates this vulnerability.
Auteur: VulDB

Deskpro prior 2019.8.0 /api/email_accounts privilege escalation

A vulnerability was found in Deskpro. It has been rated as critical. This issue affects an unknown functionality of the file /api/email_accounts. Upgrading to version 2019.8.0 eliminates this vulnerability.
Auteur: VulDB

pfSense up to 2.4.4 WebGUI system_usermanager_addprivs.php descr cross site scripting

A vulnerability was found in pfSense up to 2.4.4. It has been declared as problematic. This vulnerability affects an unknown function of the file system_usermanager_addprivs.php of the component WebGUI. Upgrading to version 2.4.5 eliminates this...
Auteur: VulDB

LimeSurvey up to 4.1 surveySettings.php cross site scripting

A vulnerability was found in LimeSurvey up to 4.1. It has been classified as problematic. This affects some unknown processing of the file application/views/admin/surveysgroups/surveySettings.php. Upgrading to version 4.1.12+200324 eliminates...
Auteur: VulDB

LimeSurvey up to 4.1 LimeSurveyFileManager.php directory traversal

A vulnerability was found in LimeSurvey up to 4.1 and classified as critical. Affected by this issue is an unknown code block of the file application/controllers/admin/LimeSurveyFileManager.php. Upgrading to version 4.1.12+200324 eliminates this...
Auteur: VulDB

Technicolor TC7337 8.89.17 Backup File backupsettings.conf information disclosure

A vulnerability has been found in Technicolor TC7337 8.89.17 and classified as problematic. Affected by this vulnerability is an unknown code of the file backupsettings.conf of the component Backup File Handler. There is no information about...
Auteur: VulDB

Jon Hedley AlienForm2 2.0.2 af.cgi Request privilege escalation

A vulnerability, which was classified as critical, was found in Jon Hedley AlienForm2 2.0.2. Affected is an unknown part of the file af.cgi. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe RPC Call privilege escalation

A vulnerability, which was classified as critical, has been found in Avast Antivirus up to 19. This issue affects some unknown functionality of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this...
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe privilege escalation

A vulnerability classified as critical was found in Avast Antivirus up to 19. This vulnerability affects an unknown functionality of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this vulnerability.
Auteur: VulDB

Avast Access Point up to 19 TaskEx Library AvastSvc.exe information disclosure

A vulnerability classified as problematic has been found in Avast Access Point up to 19. This affects an unknown function of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this vulnerability.
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe privilege escalation

A vulnerability was found in Avast Antivirus up to 19. It has been rated as critical. Affected by this issue is some unknown processing of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this...
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe denial of service

A vulnerability was found in Avast Antivirus up to 19. It has been declared as problematic. Affected by this vulnerability is an unknown code block of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this...
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe denial of service

A vulnerability was found in Avast Antivirus up to 19. It has been classified as problematic. Affected is an unknown code of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this vulnerability.
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe privilege escalation

A vulnerability was found in Avast Antivirus up to 19 (Anti-Malware Software) and classified as critical. This issue affects an unknown part of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version 20 eliminates this...
Auteur: VulDB

Avast Antivirus up to 19 TaskEx Library AvastSvc.exe denial of service

A vulnerability has been found in Avast Antivirus up to 19 (Anti-Malware Software) and classified as problematic. This vulnerability affects some unknown functionality of the file AvastSvc.exe of the component TaskEx Library. Upgrading to version...
Auteur: VulDB

Avast Antivirus up to 19 aswAvLog Log Library AvastSvc.exe denial of service

A vulnerability, which was classified as problematic, was found in Avast Antivirus up to 19 (Anti-Malware Software). This affects an unknown functionality of the file AvastSvc.exe of the component aswAvLog Log Library. Upgrading to version 20...
Auteur: VulDB

BD Pyxis MedStation ES System 1.6.1 Kiosk Mode privilege escalation

A vulnerability, which was classified as critical, has been found in BD Pyxis MedStation ES System and Pyxis Anesthesia ES System 1.6.1. Affected by this issue is an unknown function of the component Kiosk Mode. There is no information about...
Auteur: VulDB

TP-LINK NC200/NC210/NC220/NC230/NC250/NC260/NC450 up to 2.1.8_Build_171109 NULL Pointer Dereference denial of service

A vulnerability classified as problematic was found in TP-LINK NC200, NC210, NC220, NC230, NC250, NC260 and NC450 up to 2.1.8_Build_171109. Affected by this vulnerability is some unknown processing. There is no information about possible...
Auteur: VulDB

Sonatype Nexus Repository up to 3.21.1 Remote Code Execution

A vulnerability classified as critical has been found in Sonatype Nexus Repository up to 3.21.1. Affected is an unknown code block. Upgrading to version 3.21.2 eliminates this vulnerability.
Auteur: VulDB

Sonatype Nexus Repository up to 3.21.1 cross site scripting [CVE-2020-10203]

A vulnerability was found in Sonatype Nexus Repository up to 3.21.1. It has been rated as problematic. This issue affects an unknown code. Upgrading to version 3.21.2 eliminates this vulnerability.
Auteur: VulDB

Sonatype Nexus Repository up to 3.21.1 JavaEL Injection privilege escalation

A vulnerability was found in Sonatype Nexus Repository up to 3.21.1. It has been declared as critical. This vulnerability affects an unknown part of the component JavaEL Handler. Upgrading to version 3.21.2 eliminates this vulnerability.
Auteur: VulDB

March Networks Command Client up to 2.7.1 XAML Object privilege escalation

A vulnerability was found in March Networks Command Client up to 2.7.1. It has been classified as critical. This affects some unknown functionality of the component XAML Object Handler. Upgrading to version 2.7.2 eliminates this vulnerability.
Auteur: VulDB

Parrot ANAFI Web Server Command Crash denial of service

A vulnerability was found in Parrot ANAFI (affected version not known) and classified as problematic. Affected by this issue is an unknown functionality of the component Web Server. There is no information about possible countermeasures known. It...
Auteur: VulDB

Parrot ANAFI denial of service [CVE-2019-3944]

A vulnerability has been found in Parrot ANAFI (affected version unknown) and classified as problematic. Affected by this vulnerability is an unknown function. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Advantech WebAccess 8.3.4 RPC RPC Call information disclosure

A vulnerability, which was classified as problematic, was found in Advantech WebAccess 8.3.4 (SCADA Software). Affected is some unknown processing of the component RPC Handler. There is no information about possible countermeasures known. It may...
Auteur: VulDB
12345678910Last

Événements SSI