Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Mozilla Firefox up to 85.x on Android Fullscreen improper restriction of rendered ui layers

A vulnerability was found in Mozilla Firefox up to 85.x on Android (Web Browser) and classified as critical. This issue affects an unknown functionality of the component Fullscreen Handler. Upgrading to version 86.0 eliminates this vulnerability....
Auteur: VulDB

Microsoft Edge unknown vulnerability [CVE-2021-24113]

A vulnerability was found in Microsoft Edge (Web Browser) (affected version unknown). It has been declared as problematic. Applying a patch is able to eliminate this problem. A possible mitigation has been published immediately after the...
Auteur: VulDB

Mozilla Firefox up to 85.x Developer Page allocation of resources

A vulnerability has been found in Mozilla Firefox up to 85.x (Web Browser) and classified as problematic. This vulnerability affects an unknown function of the component Developer Page. Upgrading to version 86.0 eliminates this vulnerability. The...
Auteur: VulDB

Mozilla Firefox up to 85.x DOMParser API cross site scripting

A vulnerability, which was classified as problematic, was found in Mozilla Firefox up to 85.x (Web Browser). This affects some unknown processing of the component DOMParser API. Upgrading to version 86.0 eliminates this vulnerability. The upgrade...
Auteur: VulDB

Mozilla Firefox/Firefox ESR/Thunderbird Decoding unknown vulnerability

A vulnerability, which was classified as critical, has been found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) (affected version not known). Affected by this issue is an unknown code block of the component Decoding Handler....
Auteur: VulDB

Mozilla Firefox up to 85.x HTTP Authentication improper restriction of rendered ui layers

A vulnerability classified as critical was found in Mozilla Firefox up to 85.x (Web Browser). Affected by this vulnerability is an unknown code of the component HTTP Authentication Handler. Upgrading to version 86.0 eliminates this vulnerability....
Auteur: VulDB

Mozilla Firefox up to 85.x Referer Policy information disclosure

A vulnerability classified as problematic has been found in Mozilla Firefox up to 85.x (Web Browser). Affected is an unknown part of the component Referer Policy Handler. Upgrading to version 86.0 eliminates this vulnerability. The upgrade is...
Auteur: VulDB

Mozilla Firefox up to 85.x Shared Jump Table assertion

A vulnerability was found in Mozilla Firefox up to 85.x (Web Browser). It has been rated as problematic. This issue affects some unknown functionality of the component Shared Jump Table Handler. Upgrading to version 86.0 eliminates this...
Auteur: VulDB

Mozilla Firefox/Firefox ESR/Thunderbird Content Security Policy information disclosure

A vulnerability was found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) (the affected version is unknown). It has been declared as problematic. This vulnerability affects an unknown functionality of the component Content Security...
Auteur: VulDB

Mozilla Firefox/Firefox ESR/Thunderbird Content Security Policy unknown vulnerability

A vulnerability was found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) (the affected version unknown). It has been classified as critical. This affects an unknown function of the component Content Security Policy Handler....
Auteur: VulDB

Mozilla Firefox up to 84.x WebRTC Share permission

A vulnerability was found in Mozilla Firefox up to 84.x (Web Browser) and classified as critical. Affected by this issue is some unknown processing of the component WebRTC Share Handler. Upgrading to version 85.0 eliminates this vulnerability....
Auteur: VulDB

Mozilla Firefox up to 84.x RowCountChanged denial of service

A vulnerability has been found in Mozilla Firefox up to 84.x (Web Browser) and classified as problematic. Affected by this vulnerability is the function RowCountChanged. Upgrading to version 85.0 eliminates this vulnerability.
Auteur: VulDB

Mozilla Firefox up to 84.x information disclosure [CVE-2021-23961]

A vulnerability, which was classified as problematic, was found in Mozilla Firefox up to 84.x (Web Browser). Affected is an unknown code. Upgrading to version 85.0 eliminates this vulnerability.
Auteur: VulDB

Mozilla Firefox/Firefox ESR/Thunderbird Garbage Collector denial of service

A vulnerability, which was classified as problematic, has been found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) (unknown version). This issue affects an unknown part of the component Garbage Collector. Upgrading eliminates this...
Auteur: VulDB

Mozilla Firefox up to 84.x on Android Error Page cross site scripting

A vulnerability classified as problematic was found in Mozilla Firefox up to 84.x on Android (Web Browser). This vulnerability affects some unknown functionality of the component Error Page Handler. Upgrading to version 85.0 eliminates this...
Auteur: VulDB

Mozilla Firefox up to 84.x Screen Sharing information disclosure

A vulnerability classified as problematic has been found in Mozilla Firefox up to 84.x (Web Browser). This affects an unknown functionality of the component Screen Sharing Handler. Upgrading to version 85.0 eliminates this vulnerability.
Auteur: VulDB

Mozilla Firefox up to 84.x on Android intent Scheme sandbox

A vulnerability was found in Mozilla Firefox up to 84.x on Android (Web Browser). It has been rated as critical. Affected by this issue is an unknown function of the component intent Scheme Handler. Upgrading to version 85.0 eliminates this...
Auteur: VulDB

Mozilla Firefox up to 84.x File Picker unrestricted upload

A vulnerability was found in Mozilla Firefox up to 84.x (Web Browser). It has been declared as critical. Affected by this vulnerability is some unknown processing of the component File Picker. Upgrading to version 85.0 eliminates this...
Auteur: VulDB

Mozilla Firefox up to 84.x Pointer Lock clickjacking

A vulnerability was found in Mozilla Firefox up to 84.x (Web Browser). It has been classified as problematic. Affected is an unknown code block of the component Pointer Lock Handler. Upgrading to version 85.0 eliminates this vulnerability. The...
Auteur: VulDB

Mozilla Firefox/Firefox ESR/Thunderbird prior 78.7 Javascript Switch memory corruption

A vulnerability was found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) and classified as critical. This issue affects an unknown code of the component Javascript Switch Handler. Upgrading to version 78.7 eliminates this...
Auteur: VulDB

Mozilla Firefox/Firefox ESR/Thunderbird PDF Reader unknown vulnerability

A vulnerability has been found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) (the affected version is unknown) and classified as critical. This vulnerability affects an unknown part of the component PDF Reader. Upgrading...
Auteur: VulDB

ZTE ZXR10 8900E up to 3.03.20R2B30P1 memory leak [CVE-2021-21724]

A vulnerability, which was classified as problematic, was found in ZTE ZXR10 8900E up to 3.03.20R2B30P1. This affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

aiohttp up to 3.7.3 on Python redirect [CVE-2021-21330]

A vulnerability, which was classified as problematic, has been found in aiohttp up to 3.7.3 on Python. Affected by this issue is an unknown functionality. Upgrading to version 3.7.4 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

Vapor up to 4.40.0 Bootstrap denial of service

A vulnerability classified as problematic was found in Vapor up to 4.40.0. Affected by this vulnerability is an unknown function of the component Bootstrap Handler. Upgrading to version 4.40.1 eliminates this vulnerability. The upgrade is hosted...
Auteur: VulDB

mongo-java-driver certificate validation [CVE-2021-20328]

A vulnerability classified as critical has been found in mongo-java-driver, mongodb-driver, mongodb-driver-sync and mongodb-driver-legacy (Database Software) (version unknown). Affected is some unknown processing. Upgrading eliminates this...
Auteur: VulDB
First234567891011Last

Événements SSI