mardi 25 février 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

CUJO Smart Firewall 7003 Safe Browsing HTTP Requests Bypass privilege escalation

A vulnerability was found in CUJO Smart Firewall 7003 (Firewall Software). It has been rated as critical. Affected by this issue is some processing of the component Safe Browsing. The manipulation as part of a HTTP Requests leads to a privilege...
Auteur: VulDB

CUJO Smart Firewall 7003 mdnscap mDNS Packet Integer Underflow denial of service

A vulnerability was found in CUJO Smart Firewall 7003 (Firewall Software). It has been declared as problematic. Affected by this vulnerability is a code block of the component mdnscap. The manipulation as part of a mDNS Packet leads to a denial...
Auteur: VulDB

CUJO Smart Firewall 7003 mdnscap mDNS Resource Record Heap-based memory corruption

A vulnerability was found in CUJO Smart Firewall 7003 (Firewall Software). It has been classified as critical. Affected is code of the component mdnscap. The manipulation as part of a mDNS Resource Record leads to a memory corruption...
Auteur: VulDB

CUJO Smart Firewall mdnscap mDNS Packet Double-Free memory corruption

A vulnerability was found in CUJO Smart Firewall (Firewall Software) and classified as critical. This issue affects a part of the component mdnscap. The manipulation as part of a mDNS Packet leads to a memory corruption vulnerability...
Auteur: VulDB

CUJO Smart Firewall Verified Boot Protection dhcpd.conf privilege escalation

A vulnerability has been found in CUJO Smart Firewall (Firewall Software) and classified as critical. This vulnerability affects a functionality of the file dhcpd.conf of the component Verified Boot Protection. The manipulation with an unknown...
Auteur: VulDB

Das U-Boot up to 2014.07-rc2 Verified Boot Protection Kernel privilege escalation

A vulnerability, which was classified as critical, was found in Das U-Boot up to 2014.07-rc2. This affects a function of the component Verified Boot Protection. The manipulation with an unknown input leads to a privilege escalation vulnerability...
Auteur: VulDB

CUJO Smart Firewall DHCP Daemon Configuration dhcpd.conf command injection

A vulnerability, which was classified as critical, has been found in CUJO Smart Firewall (Firewall Software). Affected by this issue is some functionality of the file dhcpd.conf of the component DHCP Daemon Configuration. The manipulation with...
Auteur: VulDB

WSO2 API Manager 2.1.0/2.6.0 Carbon Reflected cross site scripting

A vulnerability classified as problematic was found in WSO2 API Manager 2.1.0/2.6.0. Affected by this vulnerability is the functionality of the component Carbon. The manipulation with an unknown input leads to a cross site scripting...
Auteur: VulDB

WSO2 API Manager 2.1.0/2.6.0 Store DOM-Based cross site scripting

A vulnerability classified as problematic has been found in WSO2 API Manager 2.1.0/2.6.0. Affected is an unknown function of the component Store. The manipulation with an unknown input leads to a cross site scripting vulnerability (DOM-Based)....
Auteur: VulDB

Linux Kernel up to 4.19.13 i915_gem_execbuffer.c access_ok() memory corruption

A vulnerability was found in Linux Kernel up to 4.19.13 (Operating System). It has been rated as critical. This issue affects the function access_ok() of the file drivers/gpu/drm/i915/i915_gem_execbuffer.c. The manipulation with an unknown input...
Auteur: VulDB

PHP Scripts Mall Car Rental Script 2.0.8 accountedit.php cross site request forgery

A vulnerability was found in PHP Scripts Mall Car Rental Script 2.0.8 (Programming Language Software). It has been declared as problematic. This vulnerability affects a code block of the file accountedit.php. The manipulation with an unknown...
Auteur: VulDB

PHP Scripts Mall Car Rental Script 2.0.8 images/ directory traversal

A vulnerability was found in PHP Scripts Mall Car Rental Script 2.0.8 (Programming Language Software). It has been classified as problematic. This affects code of the file images/. The manipulation with an unknown input leads to a directory...
Auteur: VulDB

PHP Scripts Mall Basic B2B Script 2.0.9 uploads/ directory traversal

A vulnerability was found in PHP Scripts Mall Basic B2B Script 2.0.9 (Programming Language Software) and classified as problematic. Affected by this issue is a part of the file uploads/. The manipulation with an unknown input leads to a...
Auteur: VulDB

PHP Scripts Mall Basic B2B Script 2.0.9 First Name/Last Name HTML Injection cross site scripting

A vulnerability has been found in PHP Scripts Mall Basic B2B Script 2.0.9 (Programming Language Software) and classified as problematic. Affected by this vulnerability is a functionality. The manipulation of the argument First Name/Last Name...
Auteur: VulDB

PHP Scripts Mall Basic B2B Script 2.0.9 Edit Profile cross site request forgery

A vulnerability, which was classified as problematic, was found in PHP Scripts Mall Basic B2B Script 2.0.9 (Programming Language Software). Affected is a function of the component Edit Profile. The manipulation with an unknown input leads to a...
Auteur: VulDB

PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 assets/ directory traversal

A vulnerability, which was classified as problematic, has been found in PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 (Programming Language Software). This issue affects some functionality of the file assets/. The manipulation with an...
Auteur: VulDB

Xpdf 4.0.0 GfxState.cc mapColorToBase() PDF File memory corruption

A vulnerability was found in Xpdf 4.0.0 (Document Reader Software). It has been declared as critical. This vulnerability affects the function GfxIndexedColorSpace::mapColorToBase() of the file GfxState.cc. The manipulation as part of a PDF File...
Auteur: VulDB

Xpdf 4.01 TextOutputDev.c TextPage::findGaps() PDF File memory corruption

A vulnerability was found in Xpdf 4.01 (Document Reader Software). It has been classified as critical. This affects the function TextPage::findGaps() of the file TextOutputDev.c. The manipulation as part of a PDF File leads to a memory...
Auteur: VulDB

w8tcha oEmbed Plugin on CKEditor plugin.js unknown vulnerability

A vulnerability was found in w8tcha oEmbed Plugin on CKEditor and classified as problematic. Affected by this issue is a part of the file plugin.js. The impact remains unknown. CVE summarizes:plugin.js in the w8tcha oEmbed plugin before...
Auteur: VulDB

Veritas NetBackup Appliance up to 3.1.2 Web Console Password information disclosure

A vulnerability has been found in Veritas NetBackup Appliance up to 3.1.2 (Backup Software) and classified as problematic. Affected by this vulnerability is a functionality of the component Web Console. The manipulation with an unknown input...
Auteur: VulDB

Veritas NetBackup Appliance up to 3.1.2 Web Console Password information disclosure

A vulnerability, which was classified as problematic, was found in Veritas NetBackup Appliance up to 3.1.2 (Backup Software). Affected is a function of the component Web Console. The manipulation with an unknown input leads to a information...
Auteur: VulDB

Linux Kernel up to 5.0.2 inotify_user.c inotify_update_existing_watch() denial of service

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 5.0.2 (Operating System). This issue affects the function inotify_update_existing_watch() of the file fs/notify/inotify/inotify_user.c. The manipulation ...
Auteur: VulDB

Doorkeeper::OpenidConnect up to 1.4.x/1.5.3 Open Redirect [CVE-2019-9837]

A vulnerability classified as problematic was found in Doorkeeper::OpenidConnect up to 1.4.x/1.5.3. This vulnerability affects the functionality. The manipulation with an unknown input leads to a privilege escalation vulnerability (Redirect)....
Auteur: VulDB

Humhub Community Edition 1.3.10 /s/adada/cfiles/upload cross site scripting

A vulnerability classified as problematic has been found in Humhub Community Edition 1.3.10. This affects an unknown function of the file /s/adada/cfiles/upload. The manipulation with an unknown input leads to a cross site scripting...
Auteur: VulDB

Humhub Community Edition 1.3.10 filename Reflected cross site scripting

A vulnerability was found in Humhub Community Edition 1.3.10. It has been rated as problematic. Affected by this issue is some processing. The manipulation of the argument filename as part of a Parameter leads to a cross site scripting...
Auteur: VulDB
First688689690691692693694695696697Last

Événements SSI