Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Centreon Web 19.04.4 Macro Expression Location Setting Remote Code Execution

A vulnerability was found in Centreon Web 19.04.4. It has been classified as critical. Affected is an unknown part of the component Macro Expression Location Setting Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Belkin Linksys Velop 1.1.8.192419 /sysinfo_json.cgi Request information disclosure

A vulnerability was found in Belkin Linksys Velop 1.1.8.192419 and classified as problematic. This issue affects some unknown functionality of the file /sysinfo_json.cgi. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Fortinet FortiClient on Mac SSL VPN Gateway information disclosure

A vulnerability has been found in Fortinet FortiClient on Mac (the affected version is unknown) and classified as problematic. This vulnerability affects an unknown functionality of the component SSL VPN Gateway. There is no information about...
Auteur: VulDB

GOG Galaxy up to 1.2.59 on Windows GalaxyClientService TCP Packets privilege escalation

A vulnerability, which was classified as critical, was found in GOG Galaxy up to 1.2.59 on Windows. This affects an unknown function of the component GalaxyClientService. Upgrading to version 1.2.60 or 2.0 Beta eliminates this vulnerability.
Auteur: VulDB

Symfony up to 4.2.11/4.3.7 VarExport symfony/var-exporter privilege escalation

A vulnerability, which was classified as critical, has been found in Symfony up to 4.2.11/4.3.7. Affected by this issue is some unknown processing of the file symfony/var-exporter of the component VarExport. Upgrading to version 4.2.12 or 4.3.8...
Auteur: VulDB

ioBroker Local File Inclusion privilege escalation [CVE-2019-10767]

A vulnerability classified as critical was found in ioBroker (affected version unknown). Affected by this vulnerability is an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Qualcomm IPS up to 2019.1 Interpreter Integer Overflow memory corruption

A vulnerability classified as critical has been found in Qualcomm IPS up to 2019.1. Affected is an unknown code of the component Interpreter. Upgrading to version 2019.2 eliminates this vulnerability.
Auteur: VulDB

Qualcomm Snapdragon Auto up to SXR2130 WLAN Module memory corruption

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Voice & Music. It has been declared as...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SDX24 Message memory corruption

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Voice & Music up to SDX24 (Chip Software). It has been...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SDX20 Loop Out-of-Bounds memory corruption

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Voice & Music (Chip Software) and...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SDX20 Camera Driver Out-of-Bounds memory corruption

A vulnerability has been found in Qualcomm Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables (Chip Software) and...
Auteur: VulDB

Qualcomm Snapdragon Auto up to SM8150 Ressource Lock Out-of-Bounds memory corruption

A vulnerability, which was classified as critical, was found in Qualcomm Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...
Auteur: VulDB

Fotinet FortiOS 5.6/6.0 URL/SPAM/AV Default Key weak encryption

A vulnerability, which was classified as problematic, has been found in Fotinet FortiOS 5.6/6.0 (Firewall Software). This issue affects an unknown code of the component URL/SPAM/AV. There is no information about possible countermeasures known. It...
Auteur: VulDB

Asuswrt-Merlin up to 384.3 blocking.asp flag/mac/cat_id memory corruption

A vulnerability classified as critical was found in Asuswrt-Merlin up to 384.3. This vulnerability affects an unknown part of the file blocking.asp. Upgrading to version 384.4 eliminates this vulnerability.
Auteur: VulDB

Synametrics SynaMan/Syncrify/SynTail cross site request forgery

A vulnerability classified as problematic has been found in Synametrics SynaMan, Syncrify and SynTail (the affected version unknown). This affects some unknown functionality. Upgrading eliminates this vulnerability.
Auteur: VulDB

Ikiwiki prior 3.20150329 openid-selector.tmpl openid_identifier cross site scripting

A vulnerability was found in Ikiwiki. It has been rated as problematic. Affected by this issue is an unknown functionality of the file templates/openid-selector.tmpl. Upgrading to version 3.20150329 eliminates this vulnerability. A possible...
Auteur: VulDB

Zhone zNID 2426A prior S3.0.501 Web Administrative Portal Response privilege escalation

A vulnerability was found in Zhone zNID 2426A. It has been declared as critical. Affected by this vulnerability is an unknown function of the component Web Administrative Portal. Upgrading to version S3.0.501 eliminates this vulnerability.
Auteur: VulDB

xcfa up to 5.0.0 Temp File Symlink privilege escalation

A vulnerability was found in xcfa up to 5.0.0. It has been classified as critical. Affected is some unknown processing of the component Temp File Handler. Upgrading to version 5.0.1 eliminates this vulnerability. Applying a patch is able to...
Auteur: VulDB

Qualcomm QCA6174_9377 Registry privilege escalation [CVE-2019-10617]

A vulnerability was found in Qualcomm QCA6174_9377 (unknown version). It has been rated as critical. This issue affects an unknown part of the component Registry Handler. Upgrading eliminates this vulnerability.
Auteur: VulDB

xcfa up to 5.0.0 Temp File Symlink privilege escalation

A vulnerability was found in xcfa up to 5.0.0 and classified as critical. This issue affects an unknown code block of the component Temp File Handler. Upgrading to version 5.0.1 eliminates this vulnerability. Applying a patch is able to eliminate...
Auteur: VulDB

eDeploy up to 2014-10-14 eval() Remote Code Execution

A vulnerability has been found in eDeploy up to 2014-10-14 and classified as critical. This vulnerability affects the function eval(). There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

wolfSSL up to 3.1.x Server Certificate weak authentication

A vulnerability, which was classified as critical, was found in wolfSSL up to 3.1.x. This affects an unknown part of the component Server Certificate Handler. Upgrading to version 3.2.0 eliminates this vulnerability.
Auteur: VulDB

wolfSSL up to 3.1.x CA Certificate weak authentication

A vulnerability, which was classified as critical, has been found in wolfSSL up to 3.1.x. Affected by this issue is some unknown functionality of the component CA Certificate Handler. Upgrading to version 3.2.0 eliminates this vulnerability.
Auteur: VulDB

wolfSSL up to 3.1.x Certificate Hostname weak authentication

A vulnerability classified as critical was found in wolfSSL up to 3.1.x. Affected by this vulnerability is an unknown functionality of the component Certificate Handler. Upgrading to version 3.2.0 eliminates this vulnerability.
Auteur: VulDB

python-rply up to 0.7.3 Temp File /tmp/rply-*.json privilege escalation

A vulnerability classified as critical has been found in python-rply up to 0.7.3. Affected is an unknown function of the file /tmp/rply-*.json of the component Temp File Handler. Upgrading to version 0.7.4 eliminates this vulnerability.
Auteur: VulDB
First627628629630631632633634635636Last

Événements SSI