mercredi 26 février 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

coTURN 4.5.1.1 HTTP POST Request Heap-based memory corruption

A vulnerability was found in coTURN 4.5.1.1. It has been rated as critical. This issue affects an unknown code. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative...
Auteur: VulDB

VMware vRealize Operations up to 6.6.0/6.7.0 information disclosure

A vulnerability was found in VMware vRealize Operations up to 6.6.0/6.7.0. It has been declared as problematic. This vulnerability affects an unknown part. Upgrading to version 6.6.1 or 6.7.1 eliminates this vulnerability.
Auteur: VulDB

VMware vRealize Operations up to 6.6.0/6.7.0 Trust Store weak authentication

A vulnerability was found in VMware vRealize Operations up to 6.6.0/6.7.0. It has been classified as critical. This affects some unknown functionality of the component Trust Store. Upgrading to version 6.6.1 or 6.7.1 eliminates this vulnerability.
Auteur: VulDB

VMware vRealize Operations up to 6.6.0/6.7.0 JMX RMI Service privilege escalation

A vulnerability was found in VMware vRealize Operations up to 6.6.0/6.7.0 and classified as critical. Affected by this issue is an unknown functionality of the component JMX RMI Service. Upgrading to version 6.6.1 or 6.7.1 eliminates this...
Auteur: VulDB

Cisco Unified Contact Center Enterprise Live Data Server Crafted Packet denial of service

A vulnerability has been found in Cisco Unified Contact Center Enterprise (affected version unknown) and classified as problematic. Affected by this vulnerability is an unknown function of the component Live Data Server. Upgrading eliminates this...
Auteur: VulDB

Cisco Meeting Server Extensible Messaging and Presence Protocol Crash denial of service

A vulnerability, which was classified as problematic, was found in Cisco Meeting Server (Unified Communication Software) (version unknown). Affected is some unknown processing of the component Extensible Messaging and Presence Protocol. Upgrading...
Auteur: VulDB

Cisco Finesse Web-based Management Interface cross site scripting

A vulnerability, which was classified as problematic, has been found in Cisco Finesse (unknown version). This issue affects an unknown code block of the component Web-based Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco Smart Software Manager On-Prem High Availability Service information disclosure

A vulnerability classified as problematic was found in Cisco Smart Software Manager On-Prem (the affected version is unknown). This vulnerability affects an unknown code of the component High Availability Service. Upgrading eliminates this...
Auteur: VulDB

Cisco Identity Services Engine Log Stored cross site scripting

A vulnerability classified as problematic has been found in Cisco Identity Services Engine (Policy Management Software) (the affected version unknown). This affects an unknown part of the component Log Handler. Upgrading eliminates this...
Auteur: VulDB

Cisco Cloud Web Security Web-based Management Interface sql injection

A vulnerability was found in Cisco Cloud Web Security (Anti-Malware Software) (affected version not known). It has been rated as critical. Affected by this issue is some unknown functionality of the component Web-based Management Interface....
Auteur: VulDB

Cisco AnyConnect Secure Mobility Client on Windows privilege escalation

A vulnerability was found in Cisco AnyConnect Secure Mobility Client on Windows (Network Encryption Software) (affected version unknown). It has been declared as critical. Affected by this vulnerability is an unknown functionality. Upgrading...
Auteur: VulDB

Cisco Enterprise NFV Infrastructure Software Signature Validation privilege escalation

A vulnerability was found in Cisco Enterprise NFV Infrastructure Software (version unknown). It has been classified as critical. Affected is an unknown function of the component Signature Validation. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco Email Security Appliance Email Message Scanner denial of service

A vulnerability was found in Cisco Email Security Appliance (Anti-Malware Software) (unknown version) and classified as problematic. This issue affects some unknown processing of the component Email Message Scanner. Upgrading eliminates this...
Auteur: VulDB

Cisco Data Center Network Manager Web-based Management Interface cross site request forgery

A vulnerability has been found in Cisco Data Center Network Manager (the affected version is unknown) and classified as problematic. This vulnerability affects an unknown code block of the component Web-based Management Interface. Upgrading...
Auteur: VulDB

Cisco Data Center Network Manager Web-based Management Interface cross site scripting

A vulnerability, which was classified as problematic, was found in Cisco Data Center Network Manager (the affected version unknown). This affects an unknown code of the component Web-based Management Interface. Upgrading eliminates this...
Auteur: VulDB

Cisco Data Center Network Manager REST API Endpoint privilege escalation

A vulnerability, which was classified as critical, has been found in Cisco Data Center Network Manager (affected version not known). Affected by this issue is an unknown part of the component REST API Endpoint. Upgrading eliminates this...
Auteur: VulDB

Cisco UCS C-Series Rack Servers 16.11 Signature Validation privilege escalation

A vulnerability classified as problematic was found in Cisco UCS C-Series Rack Servers 16.11. Affected by this vulnerability is some unknown functionality of the component Signature Validation. Upgrading eliminates this vulnerability.
Auteur: VulDB

TIBCO EBX up to 5.9.7 Web Server Stored cross site scripting

A vulnerability classified as problematic has been found in TIBCO EBX up to 5.9.7. Affected is an unknown functionality of the component Web Server. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

SilverStripe up to 4.3.3 GraphQL cross site request forgery

A vulnerability was found in SilverStripe up to 4.3.3. It has been rated as problematic. This issue affects an unknown function of the component GraphQL. Applying a patch is able to eliminate this problem.
Auteur: VulDB

SilverStripe up to 4.3.3 URL Tools denial of service

A vulnerability was found in SilverStripe up to 4.3.3. It has been declared as problematic. This vulnerability affects some unknown processing of the component URL Tools. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

WSO2 transport-http up to 6.3.0 Netty HTTP Response Response Splitting privilege escalation

A vulnerability was found in WSO2 transport-http up to 6.3.0. It has been classified as critical. This affects an unknown code block of the component Netty. Upgrading to version 6.3.1 eliminates this vulnerability.
Auteur: VulDB

IBM DB2 11.1/11.5 Command privilege escalation

A vulnerability was found in IBM DB2 11.1/11.5 (Database Software) and classified as critical. Affected by this issue is an unknown code of the component Command Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

IBM DB2 9.7/10.1/10.5/11.1/11.5 memory corruption [CVE-2020-4204]

A vulnerability has been found in IBM DB2 9.7/10.1/10.5/11.1/11.5 (Database Software) and classified as critical. Affected by this vulnerability is an unknown part. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

IBM DB2 10.5/11.1/11.5 Command denial of service

A vulnerability, which was classified as problematic, was found in IBM DB2 10.5/11.1/11.5 (Database Software). Affected is some unknown functionality of the component Command Handler. There is no information about possible countermeasures known....
Auteur: VulDB

IBM DB2 11.5 Command denial of service

A vulnerability, which was classified as problematic, has been found in IBM DB2 11.5 (Database Software). This issue affects an unknown functionality of the component Command Handler. There is no information about possible countermeasures known....
Auteur: VulDB
First3456789101112Last

Événements SSI