mardi 11 décembre 2018    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

MISP up to 2.4.9x Import app/Model/Event.php Filename String privilege escalation

A vulnerability, which was classified as critical, has been found in MISP up to 2.4.9x. Affected by this issue is an unknown function of the file app/Model/Event.php of the component Import Handler. The manipulation as part of a Filename String...
Auteur: VulDB

QEMU Bluetooth Subsystem Negative Value memory corruption

A vulnerability classified as critical was found in QEMU (affected version unknown). Affected by this vulnerability is an unknown function of the component Bluetooth Subsystem. The manipulation as part of a Negative Value leads to a memory...
Auteur: VulDB

Moxa NPort W2x50A up to 2.1 Web Server webSettingProfileSecurity HTTP POST Request privilege escalation

A vulnerability classified as critical has been found in Moxa NPort W2x50A up to 2.1. Affected is an unknown function of the file /goform/webSettingProfileSecurity of the component Web Server. The manipulation as part of a HTTP POST Request...
Auteur: VulDB

Sales & Company Management System 2018-06-06 member/member_order.php type/O_state sql injection

A vulnerability, which was classified as critical, was found in Sales & Company Management System 2018-06-06. Affected is an unknown function of the file member/member_order.php. The manipulation of the argument type/O_state as part of a...
Auteur: VulDB

Sales & Company Management System up to 2018-06-06 Request cross site scripting

A vulnerability, which was classified as problematic, has been found in Sales & Company Management System up to 2018-06-06. This issue affects an unknown function. The manipulation as part of a Request leads to a cross site scripting...
Auteur: VulDB

Sales & Company Management System up to 2018-06-06 member_email.php cross site request forgery

A vulnerability classified as problematic was found in Sales & Company Management System up to 2018-06-06. This vulnerability affects an unknown function of the file member/member_email.php?action=edit. The manipulation with an unknown input...
Auteur: VulDB

Google Android up to 9.0 l2c_fcr.cc l2c_lcc_proc_pdu memory corruption

A vulnerability classified as critical has been found in Google Android up to 9.0. This affects the function l2c_lcc_proc_pdu of the file l2c_fcr.cc. The manipulation with an unknown input leads to a memory corruption vulnerability...
Auteur: VulDB

Google Android 7.0/7.1.1/7.1.2/8.0/8.1 IMediaExtractor.cp dumpExtractors information disclosure

A vulnerability was found in Google Android 7.0/7.1.1/7.1.2/8.0/8.1. It has been rated as problematic. Affected by this issue is the function dumpExtractors of the file IMediaExtractor.cp. The manipulation with an unknown input leads to a...
Auteur: VulDB

Google Android up to 9.0 mkvparser.cc MasteringMetadata::Parse memory corruption

A vulnerability was found in Google Android up to 9.0. It has been declared as critical. Affected by this vulnerability is the function MasteringMetadata::Parse of the file mkvparser.cc. The manipulation with an unknown input leads to a memory...
Auteur: VulDB

Google Android up to 9.0 ihevcd_sao.c ihevcd_sao_shift_ctb memory corruption

A vulnerability was found in Google Android up to 9.0. It has been classified as problematic. Affected is the function ihevcd_sao_shift_ctb of the file ihevcd_sao.c. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Google Android 9.0 Media Server aacdecoder.cpp CAacDecoder_Init memory corruption

A vulnerability was found in Google Android 9.0 and classified as critical. This issue affects the function CAacDecoder_Init of the file aacdecoder.cpp of the component Media Server. The manipulation with an unknown input leads to a memory...
Auteur: VulDB

Google Android 9.0 aacdecoder.cpp CAacDecoder_Init memory corruption

A vulnerability has been found in Google Android 9.0 and classified as critical. This vulnerability affects the function CAacDecoder_Init of the file aacdecoder.cpp. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Google Android up to 9.0 lpp_tran.cpp lppTransposer memory corruption

A vulnerability, which was classified as critical, was found in Google Android up to 9.0. This affects the function lppTransposer of the file lpp_tran.cpp. The manipulation with an unknown input leads to a memory corruption vulnerability...
Auteur: VulDB

Google Android up to 9.0 ContentProvider.java privilege escalation

A vulnerability, which was classified as critical, has been found in Google Android up to 9.0. Affected by this issue is an unknown function of the file ContentProvider.java. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Google Android 8.1/9.0 GraphicBuffer.cpp privilege escalation

A vulnerability classified as critical was found in Google Android 8.1/9.0. Affected by this vulnerability is an unknown function of the file GraphicBuffer.cpp. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Google Android 8.1/9.0 v4l2_slice_video_decode_accelerator.cc Dequeue memory corruption

A vulnerability classified as critical has been found in Google Android 8.1/9.0. Affected is the function V4L2SliceVideoDecodeAccelerator::Dequeue of the file v4l2_slice_video_decode_accelerator.cc. The manipulation with an unknown input leads...
Auteur: VulDB

McAfee True Key up to 5.1.230.7 Microsoft Windows Client privilege escalation

A vulnerability was found in McAfee True Key up to 5.1.230.7. It has been rated as critical. This issue affects an unknown function of the component Microsoft Windows Client. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

McAfee True Key up to 5.1.230.7 Microsoft Windows Client privilege escalation

A vulnerability was found in McAfee True Key up to 5.1.230.7. It has been declared as critical. This vulnerability affects an unknown function of the component Microsoft Windows Client. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

McAfee True Key up to 5.1.230.7 Microsoft Windows Client privilege escalation

A vulnerability was found in McAfee True Key up to 5.1.230.7. It has been classified as critical. This affects an unknown function of the component Microsoft Windows Client. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Zenitel Norway IP-StationWeb up to 4.2.3.8 zForm_save_changes sip_nick cross site scripting

A vulnerability was found in Zenitel Norway IP-StationWeb up to 4.2.3.8 and classified as problematic. Affected by this issue is an unknown function of the file goform/zForm_save_changes. The manipulation of the argument sip_nick as part of a...
Auteur: VulDB

Zenitel Norway IP-StationWeb up to 4.2.3.8 goform/ PATH_INFO cross site scripting

A vulnerability has been found in Zenitel Norway IP-StationWeb up to 4.2.3.8 and classified as problematic. Affected by this vulnerability is an unknown function of the file goform/. The manipulation of the argument PATH_INFO with an unknown...
Auteur: VulDB

Google Android sock.c sk_clone_lock memory corruption

A vulnerability classified as critical was found in Google Android (affected version unknown). Affected by this vulnerability is the function sk_clone_lock of the file sock.c. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Google Android on Pixel Verified Boot Fingerprint privilege escalation

A vulnerability classified as critical has been found in Google Android on Pixel (version unknown). Affected is an unknown function of the component Verified Boot. The manipulation as part of a Fingerprint leads to a privilege escalation...
Auteur: VulDB

Google Android up to 9.0 sdp_discovery.c process_service_search_rsp memory corruption

A vulnerability was found in Google Android up to 9.0. It has been rated as critical. This issue affects the function process_service_search_rsp of the file sdp_discovery.c. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Google Android 9.0 xltdecwbxml.c readBytes Integer memory corruption

A vulnerability was found in Google Android 9.0. It has been declared as critical. This vulnerability affects the function readBytes of the file xltdecwbxml.c. The manipulation as part of a Integer leads to a memory corruption vulnerability...
Auteur: VulDB
First234567891011Last

Événements SSI

FIC

Le 11ème Forum International de la Cybersécurité occupe les 22 et 23 janvier 2019 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RENCONTRES AMRAE

Les 27èmes Rencontres de l'AMRAE (Association française des professionnels de la gestion des risques et des assurances) , le congrès annuel de référence des métiers du risque et des assurances, ont lieu du 6 au 8 février 2019 à Deauville (Centre International) sur le thème : "Le risque au coeur de la transformation". Organisées par l'AMRAE.

ACCESSECURITY

AccesSecurity, salon euro-méditerranéen de la sécurité globale, se tient à Marseille (Chanot) les 6 et 7 mars 2019. Organisé par Safim.

IT & IT SECURITY MEETINGS

IT & IT Security Meetings, «salon des réseaux, du cloud, de la mobilité et de la sécurité informatique», se tient à Cannes, Palais des Festivals et des Congrès du 19 au 21 mars 2019. Organisé par Weyou Group.

RSS