Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mongodb-client-encryption 1.2.0 on Node.js certificate validation

A vulnerability was found in mongodb-client-encryption 1.2.0 on Node.js (Database Software). It has been rated as critical. This issue affects an unknown code block. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

QEMU up to 5.2.0 vmxnet3 NIC Emulator integer overflow

A vulnerability was found in QEMU up to 5.2.0 (Virtualization Software). It has been declared as critical. This vulnerability affects an unknown code of the component vmxnet3 NIC Emulator. There is no information about possible countermeasures...
Auteur: VulDB

restify-paginate 0.0.5 on Node.js HTTP Host Header denial of service

A vulnerability was found in restify-paginate 0.0.5 on Node.js (JavaScript Library). It has been classified as problematic. This affects an unknown part of the component HTTP Host Header Handler. There is no information about possible...
Auteur: VulDB

tpm2-tss up to 2.4.2/3.0.0 Initialization initialization

A vulnerability was found in tpm2-tss up to 2.4.2/3.0.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Initialization Handler. Upgrading to version 2.4.3 or 3.0.1 eliminates this...
Auteur: VulDB

gopeak masterlab 2.1.5 Upgrade.php source server-side request forgery

A vulnerability has been found in gopeak masterlab 2.1.5 and classified as critical. Affected by this vulnerability is an unknown functionality of the file Upgrade.php. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 information disclosure

A vulnerability, which was classified as problematic, has been found in Micro Focus Solutions Business Manager up to 11.7.0. This issue affects some unknown processing. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 session fixiation

A vulnerability classified as critical was found in Micro Focus Solutions Business Manager up to 11.7.0. This vulnerability affects an unknown code block. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 access control

A vulnerability classified as critical has been found in Micro Focus Solutions Business Manager up to 11.7.0. This affects an unknown code. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 cross site scriting

A vulnerability was found in Micro Focus Solutions Business Manager up to 11.7.0. It has been rated as problematic. Affected by this issue is an unknown part. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 xml external entity reference

A vulnerability was found in Micro Focus Solutions Business Manager up to 11.7.0. It has been declared as problematic. Affected by this vulnerability is some unknown functionality. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Microsoft Windows up to Server 2019 Extended Protection for Authentication improper authentication

A vulnerability, which was classified as critical, was found in Microsoft Windows (Operating System). Affected is an unknown function of the component Extended Protection for Authentication. Applying a patch is able to eliminate this problem. A...
Auteur: VulDB

Micro Focus Solutions Business Manager up to 11.7.0 cross site scripting

A vulnerability was found in Micro Focus Solutions Business Manager up to 11.7.0. It has been classified as problematic. Affected is an unknown functionality. Upgrading to version 11.7.1 eliminates this vulnerability.
Auteur: VulDB

Trojan.Win32.Gofot.htx SkinH.dll buffer overflow

A vulnerability was found in Trojan.Win32.Gofot.htx (unknown version) and classified as critical. This issue affects an unknown function in the library SkinH.dll. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

Backdoor.Win32.Wollf.h Service Port 7614 wrm.exe improper authentication

A vulnerability has been found in Backdoor.Win32.Wollf.h (Remote Access Software) (the affected version is unknown) and classified as critical. This vulnerability affects some unknown processing of the file wrm.exe of the component Service Port...
Auteur: VulDB

Backdoor.Win32.Delf.adag FTP Server hard-coded credentials

A vulnerability, which was classified as critical, was found in Backdoor.Win32.Delf.adag (Remote Access Software) (the affected version unknown). This affects an unknown code block of the component FTP Server. It is possible to mitigate the...
Auteur: VulDB

Backdoor.Win32.Agent.xw HTTP GET Request null pointer dereference

A vulnerability, which was classified as problematic, has been found in Backdoor.Win32.Agent.xw (Remote Access Software) (affected version not known). Affected by this issue is an unknown code of the component HTTP GET Request Handler. Addressing...
Auteur: VulDB

Backdoor.Win32.Agent.xs C:\Recycler permission

A vulnerability classified as critical was found in Backdoor.Win32.Agent.xs (Remote Access Software) (affected version unknown). Affected by this vulnerability is an unknown part of the file C:\Recycler. There is no information about possible...
Auteur: VulDB

Backdoor.Win32.DarkKomet.irv C:\Windupdt permission

A vulnerability classified as critical has been found in Backdoor.Win32.DarkKomet.irv (Remote Access Software) (version unknown). Affected is some unknown functionality of the file C:\Windupdt. There is no information about possible...
Auteur: VulDB

Trojan.Win32.Pincav.cmfl C:\Windupdt permission

A vulnerability was found in Trojan.Win32.Pincav.cmfl (unknown version). It has been rated as critical. This issue affects an unknown functionality of the file C:\Windupdt. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Trojan.Win32.Pluder.o C:\z_Drivers permission

A vulnerability was found in Trojan.Win32.Pluder.o (the affected version is unknown). It has been declared as critical. This vulnerability affects an unknown function of the file C:\z_Drivers. There is no information about possible...
Auteur: VulDB

Trojan-Proxy.Win32.Daemonize.i Service Port 5823 memory corruption

A vulnerability was found in Trojan-Proxy.Win32.Daemonize.i (Firewall Software) (the affected version unknown). It has been classified as critical. This affects some unknown processing of the component Service Port 5823. It is possible to...
Auteur: VulDB

Backdoor.Win32.Ketch.h Web Server buffer overflow

A vulnerability was found in Backdoor.Win32.Ketch.h (Remote Access Software) (affected version not known) and classified as critical. Affected by this issue is an unknown code block of the component Web Server. Addressing this vulnerability is...
Auteur: VulDB

Backdoor.Win32.Inject.tyq C:\hotfix permission

A vulnerability has been found in Backdoor.Win32.Inject.tyq (Remote Access Software) (affected version unknown) and classified as critical. Affected by this vulnerability is an unknown code of the file C:\hotfix. There is no information about...
Auteur: VulDB

Backdoor.Win32.Bionet.10 Service Port 12348 missing authentication

A vulnerability, which was classified as critical, was found in Backdoor.Win32.Bionet.10 (Remote Access Software) (version unknown). Affected is an unknown part of the component Service Port 12348. It is possible to mitigate the weakness by...
Auteur: VulDB

Backdoor.Win32.DarkKomet.apcc C:\msdcsc.exe permission

A vulnerability, which was classified as critical, has been found in Backdoor.Win32.DarkKomet.apcc (Remote Access Software) (unknown version). This issue affects some unknown functionality of the file C:\msdcsc.exe. There is no information about...
Auteur: VulDB
First3456789101112Last

Événements SSI