lundi 25 mai 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

HTC VIVEPORT up to 1.0.0.35 privilege escalation [CVE-2019-12176]

A vulnerability was found in HTC VIVEPORT up to 1.0.0.35. It has been classified as critical. Affected is code. The manipulation with an unknown input leads to a privilege escalation vulnerability. CWE is classifying the issue as CWE-269. This...
Auteur: VulDB

ATutor 2.2.4 File Upload language_import.php ZIP Archive directory traversal

A vulnerability was found in ATutor 2.2.4 (Learning Management Software) and classified as critical. This issue affects a part of the file mods/_core/languages/language_import.php of the component File Upload. The manipulation with the input...
Auteur: VulDB

Micro Focus Service Manager up to 9.61 privilege escalation [CVE-2019-11646]

A vulnerability has been found in Micro Focus Service Manager up to 9.61 and classified as critical. This vulnerability affects a functionality. The manipulation with an unknown input leads to a privilege escalation vulnerability. The CWE...
Auteur: VulDB

Pulse Secure Pulse Connect Secure/Pulse Policy Secure Admin Web Interface privilege escalation

A vulnerability, which was classified as critical, was found in Pulse Secure Pulse Connect Secure and Pulse Policy Secure (the affected version unknown). This affects a function of the component Admin Web Interface. The manipulation with an...
Auteur: VulDB

Carel pCOWeb up to B1.2.3 config/pw_snmp.html System contact cross site scripting

A vulnerability, which was classified as problematic, has been found in Carel pCOWeb up to B1.2.3. Affected by this issue is some functionality of the file config/pw_snmp.html. The manipulation of the argument System contact with an unknown...
Auteur: VulDB

Carel pCOWeb up to B1.2.3 pw_changeusers.html weak encryption

A vulnerability classified as problematic was found in Carel pCOWeb up to B1.2.3. Affected by this vulnerability is the functionality of the file /config/pw_changeusers.html. The manipulation with an unknown input leads to a weak encryption...
Auteur: VulDB

AUO Solar Data Recorder up to 1.2.x protect/config.htm addr cross site scripting

A vulnerability classified as problematic has been found in AUO Solar Data Recorder up to 1.2.x. Affected is an unknown function of the file protect/config.htm. The manipulation of the argument addr as part of a Parameter leads to a cross site...
Auteur: VulDB

AUO Solar Data Recorder up to 1.2.x HTTP Basic Authentication weak authentication

A vulnerability was found in AUO Solar Data Recorder up to 1.2.x. It has been rated as critical. This issue affects some processing of the component HTTP Basic Authentication. The manipulation with an unknown input leads to a weak authentication...
Auteur: VulDB

Cyrus IMAP Server up to 2.5.12/3.0.9 httpd privilege escalation

A vulnerability was found in Cyrus IMAP Server up to 2.5.12/3.0.9. It has been declared as critical. This vulnerability affects a code block of the component httpd. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

WP Live Chat Support up to 8.0.26 on WordPress File Upload POST Request privilege escalation

A vulnerability was found in WP Live Chat Support up to 8.0.26 on WordPress (Chat Software). It has been classified as critical. This affects code of the component File Upload. The manipulation as part of a POST Request leads to a privilege...
Auteur: VulDB

Citrix SD-WAN Center/Netscaler SD-WAN command injection [CVE-2019-10883]

A vulnerability was found in Citrix SD-WAN Center and Netscaler SD-WAN (Network Management Software) (affected version not known) and classified as critical. Affected by this issue is a part. The manipulation with an unknown input leads to a...
Auteur: VulDB

rkt up to 1.30.0 Process privilege escalation

A vulnerability has been found in rkt up to 1.30.0 and classified as critical. Affected by this vulnerability is a functionality of the component Process Handler. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

rkt up to 1.30.0 Process privilege escalation

A vulnerability, which was classified as critical, was found in rkt up to 1.30.0. Affected is a function of the component Process Handler. The manipulation with an unknown input leads to a privilege escalation vulnerability. CWE is classifying...
Auteur: VulDB

rkt up to 1.30.0 Process privilege escalation

A vulnerability, which was classified as critical, has been found in rkt up to 1.30.0. This issue affects some functionality of the component Process Handler. The manipulation with an unknown input leads to a privilege escalation vulnerability....
Auteur: VulDB

Quest Kace K1000 up to 9.0 CORS privilege escalation

A vulnerability classified as critical was found in Quest Kace K1000 up to 9.0. This vulnerability affects the functionality. The manipulation with an unknown input leads to a privilege escalation vulnerability (CORS). The CWE definition for the...
Auteur: VulDB

Quest Kace K1000 up to 9.0 Tickets Page cross site scripting

A vulnerability classified as problematic has been found in Quest Kace K1000 up to 9.0. This affects an unknown function of the component Tickets Page. The manipulation with an unknown input leads to a cross site scripting vulnerability. CWE is...
Auteur: VulDB

Quest Kace K1000 up to 9.0 User Console sql injection

A vulnerability was found in Quest Kace K1000 up to 9.0. It has been rated as critical. Affected by this issue is some processing of the component User Console. The manipulation with an unknown input leads to a sql injection vulnerability. Using...
Auteur: VulDB

Orpak SiteOmat CGI Stack-based memory corruption

A vulnerability was found in Orpak SiteOmat (affected version unknown). It has been declared as critical. Affected by this vulnerability is a code block of the component CGI. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Orpak SiteOmat OrCU Code Execution [CVE-2017-14853]

A vulnerability was found in Orpak SiteOmat (version unknown). It has been classified as critical. Affected is code of the component OrCU. The manipulation with an unknown input leads to a privilege escalation vulnerability (Code Execution). CWE...
Auteur: VulDB

Orpak SiteOmat Management Console SSL Certificate weak authentication

A vulnerability was found in Orpak SiteOmat (unknown version) and classified as critical. This issue affects a part of the component Management Console. The manipulation as part of a SSL Certificate leads to a weak authentication vulnerability....
Auteur: VulDB

Orpak SiteOmat sql injection [CVE-2017-14851]

A vulnerability has been found in Orpak SiteOmat (the affected version is unknown) and classified as critical. This vulnerability affects a functionality. The manipulation with an unknown input leads to a sql injection vulnerability. The CWE...
Auteur: VulDB

Orpak SiteOmat Web Management Console Stored cross site scripting

A vulnerability, which was classified as problematic, was found in Orpak SiteOmat (the affected version unknown). This affects a function of the component Web Management Console. The manipulation with an unknown input leads to a cross site...
Auteur: VulDB

Orpak SiteOmat weak authentication [CVE-2017-14728]

A vulnerability, which was classified as critical, has been found in Orpak SiteOmat (affected version not known). Affected by this issue is some functionality. The manipulation with an unknown input leads to a weak authentication vulnerability....
Auteur: VulDB

Firejail up to 0.9.59 seccomp Filter privilege escalation

A vulnerability classified as critical was found in Firejail up to 0.9.59. Affected by this vulnerability is the functionality of the component seccomp Filter Handler. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

apcupsd up to 0.3.91_5 apcupsd_status.php Code Execution

A vulnerability classified as critical has been found in apcupsd up to 0.3.91_5 (Printing Software). Affected is an unknown function of the file apcupsd_status.php. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB
First757758759760761762763764765766Last

Événements SSI