Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

emlog 6.0 Article Comment cross site scripting

A vulnerability classified as problematic was found in emlog 6.0. This vulnerability affects an unknown functionality of the component Article Comment Handler. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Mercusys Mercury X18G 1.0.5 src_dport_start/src_dport_end/dest_port cross site scripting

A vulnerability classified as problematic has been found in Mercusys Mercury X18G 1.0.5. This affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

Rukovoditel 2.8.3 cross-site request forgery [CVE-2021-30224]

A vulnerability was found in Rukovoditel 2.8.3. It has been rated as problematic. Affected by this issue is some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

Parallels Desktop 15.1.5-47309 IDE Virtual Device heap-based overflow

A vulnerability was found in Parallels Desktop 15.1.5-47309. It has been declared as critical. Affected by this vulnerability is an unknown code block of the component IDE Virtual Device. There is no information about possible countermeasures...
Auteur: VulDB

Parallels Desktop 15.1.5-47309 IDE Virtual Device heap-based overflow

A vulnerability was found in Parallels Desktop 15.1.5-47309. It has been classified as critical. Affected is an unknown code of the component IDE Virtual Device. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Parallels Desktop 15.1.5-47309 Open Tools Gate heap-based overflow

A vulnerability was found in Parallels Desktop 15.1.5-47309 and classified as critical. This issue affects an unknown part of the component Open Tools Gate. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Parallels Desktop 16.1.0-48950 Toolgate stack-based overflow

A vulnerability has been found in Parallels Desktop 16.1.0-48950 and classified as critical. This vulnerability affects some unknown functionality of the component Toolgate. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Pega Infinity up to 8.5.2 Password Recovery improper authentication

A vulnerability, which was classified as critical, was found in Pega Infinity up to 8.5.2. This affects an unknown functionality of the component Password Recovery. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

Babel 2.9.0 path traversal [CVE-2021-20095]

A vulnerability, which was classified as critical, has been found in Babel 2.9.0. Affected by this issue is an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected object with...
Auteur: VulDB

novel-plus 3.5.1 FileController.java fileDownload filePath pathname traversal

A vulnerability classified as problematic was found in novel-plus 3.5.1. Affected by this vulnerability is the function fileDownload of the file com/java2nb/common/controller/FileController.java. There is no information about possible...
Auteur: VulDB

China Mobile An Lianbao WF-1 1.01 set_online_client ip command injection

A vulnerability classified as critical has been found in China Mobile An Lianbao WF-1 1.01. Affected is an unknown code block of the file /api/ZRQos/set_online_client. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Mercusys Mercury X18G 1.0.5 listen_http_lan denial of service

A vulnerability was found in Mercusys Mercury X18G 1.0.5. It has been rated as problematic. This issue affects an unknown code. There is no information about possible countermeasures known. It may be suggested to replace the affected object with...
Auteur: VulDB

GNU Binutils 2.35 readelf memory corruption

A vulnerability was found in GNU Binutils 2.35 (Programming Tool Software). It has been declared as critical. This vulnerability affects an unknown part of the component readelf. There is no information about possible countermeasures known. It...
Auteur: VulDB

Ansible Engine 2.9.18 No Log basic.py information disclosure

A vulnerability was found in Ansible Engine 2.9.18. It has been classified as problematic. This affects some unknown functionality of the file basic.py of the component No Log Handler. Applying a patch is able to eliminate this problem. The...
Auteur: VulDB

Inxedu 2.0.6 ids sql injection

A vulnerability was found in Inxedu 2.0.6 and classified as critical. Affected by this issue is an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

Samurai 1.2 Build File build.c printstatus null pointer dereference

A vulnerability has been found in Samurai 1.2 and classified as problematic. Affected by this vulnerability is the function printstatus of the file build.c of the component Build File Handler. Applying a patch is able to eliminate this problem....
Auteur: VulDB

Samurai 1.2 Build File util.c writefile null pointer dereference

A vulnerability, which was classified as problematic, was found in Samurai 1.2. Affected is the function writefile of the file util.c of the component Build File Handler. Applying a patch is able to eliminate this problem. The bugfix is ready for...
Auteur: VulDB

md4c 0.4.7 Markdown Document md4c.c md_analyze_line denial of service

A vulnerability, which was classified as problematic, has been found in md4c 0.4.7. This issue affects the function md_analyze_line of the file md4c.c of the component Markdown Document Handler. Applying a patch is able to eliminate this problem....
Auteur: VulDB

LIVE555 Streaming Media prior 2021.3.16 unknown vulnerability

A vulnerability classified as problematic was found in LIVE555 Streaming Media. Upgrading to version 2021.3.16 eliminates this vulnerability.
Auteur: VulDB

Inim Electronics SmartLiving SmartLAN up to 6.x Telnet/SSH/FTP hard-coded credentials

A vulnerability classified as critical has been found in Inim Electronics SmartLiving SmartLAN up to 6.x. This affects an unknown part of the component Telnet/SSH/FTP. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Parallels Desktop 15.1.5-47309 IDE Virtual Device out-of-bounds read

A vulnerability was found in Parallels Desktop 15.1.5-47309. It has been rated as problematic. Affected by this issue is some unknown functionality of the component IDE Virtual Device. There is no information about possible countermeasures known....
Auteur: VulDB

Parallels Desktop 15.1.5-47309 IDE Virtual Device out-of-bounds read

A vulnerability was found in Parallels Desktop 15.1.5-47309. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component IDE Virtual Device. There is no information about possible...
Auteur: VulDB

Parallels Desktop 15.1.5-47309 IDE Virtual Device out-of-bounds read

A vulnerability was found in Parallels Desktop 15.1.5-47309. It has been classified as problematic. Affected is an unknown function of the component IDE Virtual Device. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Parallels Desktop 16.1.2-49151 Parallels Tools integer overflow

A vulnerability was found in Parallels Desktop 16.1.2-49151 and classified as critical. This issue affects some unknown processing of the component Parallels Tools. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

Parallels Desktop 16.1.2-49151 Parallels Tools integer overflow

A vulnerability has been found in Parallels Desktop 16.1.2-49151 and classified as critical. This vulnerability affects an unknown code block of the component Parallels Tools. There is no information about possible countermeasures known. It may...
Auteur: VulDB
First234567891011Last

Événements SSI