mercredi 18 septembre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

apng-drawable up to 1.6.0 Integer Overflow memory corruption

A vulnerability was found in apng-drawable up to 1.6.0. It has been classified as critical. Affected is some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

Smart TV Box Service Port 5555 privilege escalation

A vulnerability was found in Smart TV Box (Digital Media Player) (unknown version) and classified as critical. This issue affects an unknown functionality of the component Service Port 5555. There is no information about possible countermeasures...
Auteur: VulDB

ApeosWare Management Suite Open Redirect

A vulnerability has been found in ApeosWare Management Suite (the affected version is unknown) and classified as critical. This vulnerability affects an unknown function. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Amazon Pay Plugin up to 2.4.2 on EC-CUBE cross site scripting

A vulnerability, which was classified as problematic, was found in Amazon Pay Plugin up to 2.4.2 on EC-CUBE. This affects some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Video Insight VMS up to 7.3.2.5 sql injection

A vulnerability, which was classified as critical, has been found in Video Insight VMS up to 7.3.2.5. Affected by this issue is an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

Category Specific RSS Feed Subscription up to 2.0 cross site request forgery

A vulnerability classified as problematic was found in Category Specific RSS Feed Subscription up to 2.0. Affected by this vulnerability is an unknown code. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Ultra Simple Paypal Shopping Cart up to 4.4 on WordPress cross site request forgery

A vulnerability classified as problematic has been found in Ultra Simple Paypal Shopping Cart up to 4.4 on WordPress (WordPress Plugin). Affected is an unknown part. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Cybozu Garoon up to 4.10.3 sql injection

A vulnerability was found in Cybozu Garoon up to 4.10.3. It has been rated as critical. This issue affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

Hikari Denwa Router/Home GateWay cross site request forgery

A vulnerability was found in Hikari Denwa Router and Home GateWay (the affected version is unknown). It has been declared as problematic. This vulnerability affects an unknown functionality. There is no information about possible countermeasures...
Auteur: VulDB

Hikari Denwa Router/Home GateWay cross site scripting

A vulnerability was found in Hikari Denwa Router and Home GateWay (the affected version unknown). It has been classified as problematic. This affects an unknown function. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Cybozu Garoon up to 4.10.2 Scheduler Open Redirect

A vulnerability was found in Cybozu Garoon up to 4.10.2 (Groupware Software) and classified as critical. Affected by this issue is some unknown processing of the component Scheduler. There is no information about possible countermeasures known....
Auteur: VulDB

Cybozu Garoon up to 4.10.2 E-Mail Mail Header privilege escalation

A vulnerability has been found in Cybozu Garoon up to 4.10.2 (Groupware Software) and classified as critical. Affected by this vulnerability is an unknown code block of the component E-Mail. There is no information about possible countermeasures...
Auteur: VulDB

Cybozu Garoon up to 4.10.2 denial of service

A vulnerability, which was classified as problematic, was found in Cybozu Garoon up to 4.10.2 (Groupware Software). Affected is an unknown code. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Cybozu Garoon up to 4.10.2 DOM-Based cross site scripting

A vulnerability, which was classified as problematic, has been found in Cybozu Garoon up to 4.10.2 (Groupware Software). This issue affects an unknown part. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

WonderCMS up to 2.6.0 directory traversal

A vulnerability classified as critical was found in WonderCMS up to 2.6.0. This vulnerability affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

McAfee Web Gateway up to 7.8.2.12 Administrators Web Console Reflected cross site scripting

A vulnerability classified as problematic has been found in McAfee Web Gateway up to 7.8.2.12 (Firewall Software). This affects an unknown functionality of the component Administrators Web Console. Upgrading to version 7.8.2.13 eliminates this...
Auteur: VulDB

hostapd/wpa_supplicant up to 2.9 Disconnection Source Address denial of service

A vulnerability was found in hostapd and wpa_supplicant up to 2.9. It has been rated as problematic. Affected by this issue is an unknown function of the component Disconnection Handler. Upgrading to version 2.10 eliminates this vulnerability.
Auteur: VulDB

Tripp Lite PDUMH15AT up to 12.04.0052 /Forms/ POST Request denial of service

A vulnerability was found in Tripp Lite PDUMH15AT up to 12.04.0052. It has been declared as problematic. Affected by this vulnerability is some unknown processing of the file /Forms/. Upgrading to version 12.04.0053 eliminates this vulnerability.
Auteur: VulDB

Motorola Device SIMalliance Toolbox Browser SMS Message information disclosure

A vulnerability was found in Motorola Device (version unknown). It has been classified as problematic. Affected is an unknown code block of the component SIMalliance Toolbox Browser. There is no information about possible countermeasures known....
Auteur: VulDB

Samsung Device SIMalliance Toolbox Browser SMS Message information disclosure

A vulnerability was found in Samsung Device (unknown version) and classified as problematic. This issue affects an unknown code of the component SIMalliance Toolbox Browser. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

AfterLogic Aurora up to 8.3.9-build-a3 cross site scripting

A vulnerability has been found in AfterLogic Aurora up to 8.3.9-build-a3 and classified as problematic. This vulnerability affects an unknown part. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

NXP Kinetis KV1x/Kinetis KV3x/Kinetis K8x FAC privilege escalation

A vulnerability, which was classified as critical, was found in NXP Kinetis KV1x, Kinetis KV3x and Kinetis K8x (the affected version unknown). This affects some unknown functionality of the component FAC. There is no information about possible...
Auteur: VulDB

STMicroelectronics STM32L0/STM32L1/STM32L4/STM32F4/STM32F7/STM32H7 PCROP privilege escalation

A vulnerability, which was classified as critical, has been found in STMicroelectronics STM32L0, STM32L1, STM32L4, STM32F4, STM32F7 and STM32H7. Affected by this issue is an unknown functionality of the component PCROP. There is no information...
Auteur: VulDB

Philips IntelliVue WLAN Remote Code Execution

A vulnerability classified as critical was found in Philips IntelliVue WLAN (Wireless LAN Software) (affected version unknown). Affected by this vulnerability is an unknown function. There is no information about possible countermeasures known....
Auteur: VulDB

Philips IntelliVue WLAN FTP Default Credentials weak authentication

A vulnerability classified as critical has been found in Philips IntelliVue WLAN (Wireless LAN Software) (version unknown). Affected is some unknown processing of the component FTP. There is no information about possible countermeasures known. It...
Auteur: VulDB
First3456789101112Last

Événements SSI

LES ASSISES

Grand rendez-vous annuel des RSSI, les Assises de la sécurité des systèmes d'information se tiennent à Monaco (Grimaldi Forum) du 9 au 12 octobre 2019. Organisées par DG Consultants.

BLOCKCHAIN

Conférence et exposition sur les applications d'entreprise de la blockchain à Paris, cité universitaire internationale, les 13 et 14 novembre 2019. Organisés par Corp Agency.

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes (palais des festivals) du 26 au 28 novembre 2019. Organisé par Comexposium.

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS