Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Mozilla Firefox/Firefox ESR/Thunderbird PDF Reader unknown vulnerability

A vulnerability has been found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) (the affected version is unknown) and classified as critical. This vulnerability affects an unknown part of the component PDF Reader. Upgrading...
Auteur: VulDB

ZTE ZXR10 8900E up to 3.03.20R2B30P1 memory leak [CVE-2021-21724]

A vulnerability, which was classified as problematic, was found in ZTE ZXR10 8900E up to 3.03.20R2B30P1. This affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

aiohttp up to 3.7.3 on Python redirect [CVE-2021-21330]

A vulnerability, which was classified as problematic, has been found in aiohttp up to 3.7.3 on Python. Affected by this issue is an unknown functionality. Upgrading to version 3.7.4 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

Vapor up to 4.40.0 Bootstrap denial of service

A vulnerability classified as problematic was found in Vapor up to 4.40.0. Affected by this vulnerability is an unknown function of the component Bootstrap Handler. Upgrading to version 4.40.1 eliminates this vulnerability. The upgrade is hosted...
Auteur: VulDB

mongo-java-driver certificate validation [CVE-2021-20328]

A vulnerability classified as critical has been found in mongo-java-driver, mongodb-driver, mongodb-driver-sync and mongodb-driver-legacy (Database Software) (version unknown). Affected is some unknown processing. Upgrading eliminates this...
Auteur: VulDB

mongodb-client-encryption 1.2.0 on Node.js certificate validation

A vulnerability was found in mongodb-client-encryption 1.2.0 on Node.js (Database Software). It has been rated as critical. This issue affects an unknown code block. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

QEMU up to 5.2.0 vmxnet3 NIC Emulator integer overflow

A vulnerability was found in QEMU up to 5.2.0 (Virtualization Software). It has been declared as critical. This vulnerability affects an unknown code of the component vmxnet3 NIC Emulator. There is no information about possible countermeasures...
Auteur: VulDB

restify-paginate 0.0.5 on Node.js HTTP Host Header denial of service

A vulnerability was found in restify-paginate 0.0.5 on Node.js (JavaScript Library). It has been classified as problematic. This affects an unknown part of the component HTTP Host Header Handler. There is no information about possible...
Auteur: VulDB

tpm2-tss up to 2.4.2/3.0.0 Initialization initialization

A vulnerability was found in tpm2-tss up to 2.4.2/3.0.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Initialization Handler. Upgrading to version 2.4.3 or 3.0.1 eliminates this...
Auteur: VulDB

gopeak masterlab 2.1.5 Upgrade.php source server-side request forgery

A vulnerability has been found in gopeak masterlab 2.1.5 and classified as critical. Affected by this vulnerability is an unknown functionality of the file Upgrade.php. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 information disclosure

A vulnerability, which was classified as problematic, has been found in Micro Focus Solutions Business Manager up to 11.7.0. This issue affects some unknown processing. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 session fixiation

A vulnerability classified as critical was found in Micro Focus Solutions Business Manager up to 11.7.0. This vulnerability affects an unknown code block. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 access control

A vulnerability classified as critical has been found in Micro Focus Solutions Business Manager up to 11.7.0. This affects an unknown code. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 cross site scriting

A vulnerability was found in Micro Focus Solutions Business Manager up to 11.7.0. It has been rated as problematic. Affected by this issue is an unknown part. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 xml external entity reference

A vulnerability was found in Micro Focus Solutions Business Manager up to 11.7.0. It has been declared as problematic. Affected by this vulnerability is some unknown functionality. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Microsoft Windows up to Server 2019 Extended Protection for Authentication improper authentication

A vulnerability, which was classified as critical, was found in Microsoft Windows (Operating System). Affected is an unknown function of the component Extended Protection for Authentication. Applying a patch is able to eliminate this problem. A...
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 cross site scripting

A vulnerability was found in Micro Focus Solutions Business Manager up to 11.7.0. It has been classified as problematic. Affected is an unknown functionality. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Trojan.Win32.Gofot.htx SkinH.dll buffer overflow

A vulnerability was found in Trojan.Win32.Gofot.htx (unknown version) and classified as critical. This issue affects an unknown function in the library SkinH.dll. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

Backdoor.Win32.Wollf.h Service Port 7614 wrm.exe improper authentication

A vulnerability has been found in Backdoor.Win32.Wollf.h (Remote Access Software) (the affected version is unknown) and classified as critical. This vulnerability affects some unknown processing of the file wrm.exe of the component Service Port...
Auteur: VulDB

Backdoor.Win32.Delf.adag FTP Server hard-coded credentials

A vulnerability, which was classified as critical, was found in Backdoor.Win32.Delf.adag (Remote Access Software) (the affected version unknown). This affects an unknown code block of the component FTP Server. It is possible to mitigate the...
Auteur: VulDB

Backdoor.Win32.Agent.xw HTTP GET Request null pointer dereference

A vulnerability, which was classified as problematic, has been found in Backdoor.Win32.Agent.xw (Remote Access Software) (affected version not known). Affected by this issue is an unknown code of the component HTTP GET Request Handler. Addressing...
Auteur: VulDB

Backdoor.Win32.Agent.xs C:\Recycler permission

A vulnerability classified as critical was found in Backdoor.Win32.Agent.xs (Remote Access Software) (affected version unknown). Affected by this vulnerability is an unknown part of the file C:\Recycler. There is no information about possible...
Auteur: VulDB

Backdoor.Win32.DarkKomet.irv C:\Windupdt permission

A vulnerability classified as critical has been found in Backdoor.Win32.DarkKomet.irv (Remote Access Software) (version unknown). Affected is some unknown functionality of the file C:\Windupdt. There is no information about possible...
Auteur: VulDB

Trojan.Win32.Pincav.cmfl C:\Windupdt permission

A vulnerability was found in Trojan.Win32.Pincav.cmfl (unknown version). It has been rated as critical. This issue affects an unknown functionality of the file C:\Windupdt. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Trojan.Win32.Pluder.o C:\z_Drivers permission

A vulnerability was found in Trojan.Win32.Pluder.o (the affected version is unknown). It has been declared as critical. This vulnerability affects an unknown function of the file C:\z_Drivers. There is no information about possible...
Auteur: VulDB
12345678910Last

Événements SSI