dimanche 21 avril 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Contao up to 3.5.38/4.7.2 Password Recovery unknown vulnerability

A vulnerability was found in Contao up to 3.5.38/4.7.2. It has been rated as problematic. Affected by this issue is some processing of the component Password Recovery. The impact remains unknown. CVE summarizes:Contao before 3.5.39 and 4.x before...
Auteur: VulDB

Intel Broadwell U i5 vPro prior MYBDWi5v.86A Firmware privilege escalation

A vulnerability was found in Intel Broadwell U i5 vPro. It has been declared as critical. Affected by this vulnerability is a code block of the component Firmware. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Intel Microprocessor Virtual Memory Mapping information disclosure

A vulnerability was found in Intel Microprocessor. It has been classified as problematic. Affected is code of the component Virtual Memory Mapping. The manipulation with an unknown input leads to a information disclosure vulnerability. CWE is...
Auteur: VulDB

Intel Graphics Performance Analyzer up to 18.3 on Linux privilege escalation

A vulnerability was found in Intel Graphics Performance Analyzer up to 18.3 on Linux and classified as critical. This issue affects a part. The manipulation with an unknown input leads to a privilege escalation vulnerability. Using CWE to...
Auteur: VulDB

Contao up to 3.5.36/4.4.30/4.6.10 Access Control privilege escalation

A vulnerability has been found in Contao up to 3.5.36/4.4.30/4.6.10 and classified as critical. This vulnerability affects a functionality of the component Access Control. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Intel Media SDK up to 2018 R2.0 Directory Permission privilege escalation

A vulnerability, which was classified as critical, was found in Intel Media SDK up to 2018 R2.0. This affects a function of the component Directory Permission. The manipulation with an unknown input leads to a privilege escalation vulnerability....
Auteur: VulDB

Cisco Wireless LAN Controller up to 8.1/8.5 Web-based Interface Hijacking weak authentication

A vulnerability, which was classified as critical, has been found in Cisco Wireless LAN Controller up to 8.1/8.5 (Wireless LAN Software). Affected by this issue is some functionality of the component Web-based Interface. The manipulation with an...
Auteur: VulDB

Cisco Wireless LAN Controller up to 8.3/8.5/8.8 GUI Configuration denial of service

A vulnerability classified as problematic was found in Cisco Wireless LAN Controller up to 8.3/8.5/8.8 (Wireless LAN Software). Affected by this vulnerability is the functionality of the component GUI Configuration. The manipulation with an...
Auteur: VulDB

Oracle Releases April 2019 Security Bulletin

Original release date: April 16, 2019 Oracle has released its Critical Patch Update for April 2019 to address 297 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an...
Auteur: US Cert

CERTFR-2019-AVI-171 : Multiples vulnérabilités dans Foxit Reader et PhantomPDF (16 avril 2019)

De multiples vulnérabilités ont été découvertes dans Foxit Reader et PhantomPDF. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et une atteinte à la confidentialité des données.

Auteur: Cert FR

madskristensen Miniblog.Core up to 2019-01-16 IMG Element BlogController.cs SaveFilesToDisk Base64 String privilege escalation

A vulnerability classified as critical was found in madskristensen Miniblog.Core up to 2019-01-16 (Blog Software). This vulnerability affects the function SaveFilesToDisk of the file Controllers/BlogController.cs of the component IMG Element...
Auteur: VulDB

GitLab Community/Enterprise up to 9.x/10.5.7/11.6.5/11.7.0 Access Control privilege escalation

A vulnerability classified as critical has been found in GitLab Community and Enterprise up to 9.x/10.5.7/11.6.5/11.7.0. This affects an unknown function of the component Access Control. The manipulation with an unknown input leads to a...
Auteur: VulDB

TP-LINK WR840N v2 3.16.9 Build 150701 Rel.51516n Diagnostic denial of service

A vulnerability was found in TP-LINK WR840N v2 3.16.9 Build 150701 Rel.51516n. It has been rated as problematic. Affected by this issue is some processing of the component Diagnostic. The manipulation with an unknown input leads to a denial of...
Auteur: VulDB

Oracle Secure Global Desktop 5.4 Application Server unknown vulnerability

A vulnerability classified as problematic has been found in Oracle Secure Global Desktop 5.4 (Connectivity Software). Affected is an unknown function of the component Application Server. The impact remains unknown. The weakness was released ...
Auteur: VulDB

Oracle Secure Global Desktop 5.4 OpenSSL information disclosure

A vulnerability was found in Oracle Secure Global Desktop 5.4 (Connectivity Software). It has been rated as critical. This issue affects some processing of the component OpenSSL. The manipulation with an unknown input leads to a information...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.27/6.0.5 Core information disclosure

A vulnerability was found in Oracle VM VirtualBox up to 5.2.27/6.0.5 (Virtualization Software). It has been declared as critical. This vulnerability affects a code block of the component Core. The manipulation with an unknown input leads to a...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.27/6.0.5 Core information disclosure

A vulnerability was found in Oracle VM VirtualBox up to 5.2.27/6.0.5 (Virtualization Software). It has been classified as critical. This affects code of the component Core. The manipulation with an unknown input leads to a information disclosure...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.27/6.0.5 Core unknown vulnerability

A vulnerability was found in Oracle VM VirtualBox up to 5.2.27/6.0.5 (Virtualization Software) and classified as critical. Affected by this issue is a part of the component Core. The impact remains unknown. The weakness was disclosed 04/16/2019...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.27/6.0.5 Core unknown vulnerability

A vulnerability has been found in Oracle VM VirtualBox up to 5.2.27/6.0.5 (Virtualization Software) and classified as critical. Affected by this vulnerability is a functionality of the component Core. The impact remains unknown. The weakness was...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.27/6.0.5 Core unknown vulnerability

A vulnerability, which was classified as critical, was found in Oracle VM VirtualBox up to 5.2.27/6.0.5 (Virtualization Software). Affected is a function of the component Core. The impact remains unknown. The weakness was published 04/16/2019 as...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.27/6.0.5 Core unknown vulnerability

A vulnerability, which was classified as critical, has been found in Oracle VM VirtualBox up to 5.2.27/6.0.5 (Virtualization Software). This issue affects some functionality of the component Core. The impact remains unknown. The weakness was...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.27/6.0.5 Core unknown vulnerability

A vulnerability classified as critical was found in Oracle VM VirtualBox up to 5.2.27/6.0.5 (Virtualization Software). This vulnerability affects the functionality of the component Core. The impact remains unknown. The weakness was presented ...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.27/6.0.5 Core unknown vulnerability

A vulnerability classified as critical has been found in Oracle VM VirtualBox up to 5.2.27/6.0.5 (Virtualization Software). This affects an unknown function of the component Core. The impact remains unknown. The weakness was disclosed 04/16/2019...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.27/6.0.5 Core unknown vulnerability

A vulnerability was found in Oracle VM VirtualBox up to 5.2.27/6.0.5 (Virtualization Software). It has been rated as critical. Affected by this issue is some processing of the component Core. The impact remains unknown. The weakness was released...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.27/6.0.5 Core unknown vulnerability

A vulnerability was found in Oracle VM VirtualBox up to 5.2.27/6.0.5 (Virtualization Software). It has been declared as critical. Affected by this vulnerability is a code block of the component Core. The impact remains unknown. The weakness was...
Auteur: VulDB
First3456789101112Last

Événements SSI

READY FOR IT

La première édition de Ready For IT se déroule du 20 au 22 mai 2019 à Monaco (Grimaldi Forum) : conférences, keynotes, ateliers et rendez-vous one-to-one. Organisé par DG Consultants.

Présentation de l'événement par l'organisateur

DG Consultants, l’organisateur depuis 18 ans des Assises de la Sécurité, innove en lançant Ready For It, un nouveau rendez-vous business, centré sur la convergence des technologies et l’expérience client.
Pourquoi ce nouvel événement ?
Parce que la demande explose de la part des entreprises qui sont toutes engagées dans la transformation numérique.
Tandis que les fournisseurs font évoluer leurs offres et s’organisent en écosystèmes technologiques afin d’ être au plus proches des besoins de leurs clients.
Entre les impératifs business, les demandes des métiers, les contraintes techniques, les promesses des nouveaux concepts (IA, BlockChain…), les organisations sont en attente de solutions, de conseils et de service.
S’engager dans le Cloud ?
Oui mais comment et avec quel partenaire ?
Structurer les données mais avec quelles technologies et dans quel cadre ? Et quid de la sécurité qui doit désormais être au cœur de tous les processus IT ?
Voilà pourquoi DG Consultants, la référence dans le monde des rencontres d’affaires a conçu Ready For It.
Pour réunir dans un cadre convivial et autour de contenu de qualité tous les acteurs importants de l’IT, mais également les start-ups qui savent apporter l’innovation et la « disruption ».
Rendez-vous du 20 au 22 mai 2019 à Monaco !

Plus d'infos sur le site dédié à l'événement.

 

HACK IN PARIS

Pour sa 9ème édition la conférence Hack In Paris sur la sécurité IT se tient du 16 au 20 juin 2019 à Paris, Maison de la Chimie. Organisée par Sysdream.

RSS