jeudi 28 mai 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Google Chrome prior 83.0.4103.61 Developer Tools privilege escalation

A vulnerability was found in Google Chrome (Web Browser). It has been declared as critical. Affected by this vulnerability is an unknown function of the component Developer Tools. Upgrading to version 83.0.4103.61 eliminates this vulnerability. A...
Auteur: VulDB

Google Chrome prior 83.0.4103.61 Clipboard privilege escalation

A vulnerability was found in Google Chrome (Web Browser). It has been classified as critical. Affected is some unknown processing of the component Clipboard Handler. Upgrading to version 83.0.4103.61 eliminates this vulnerability. A possible...
Auteur: VulDB

Google Chrome prior 83.0.4103.61 Developer Tools privilege escalation

A vulnerability was found in Google Chrome (Web Browser) and classified as critical. This issue affects an unknown code block of the component Developer Tools. Upgrading to version 83.0.4103.61 eliminates this vulnerability. A possible mitigation...
Auteur: VulDB

Google Chrome prior 83.0.4103.61 v8 Type Confusion memory corruption

A vulnerability has been found in Google Chrome and classified as critical. This vulnerability affects an unknown code of the component v8. Upgrading to version 83.0.4103.61 eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Google Chrome prior 83.0.4103.61 WebRTC Use-After-Free memory corruption

A vulnerability, which was classified as critical, was found in Google Chrome (Web Browser). This affects an unknown part of the component WebRTC. Upgrading to version 83.0.4103.61 eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB

Google Chrome prior 83.0.4103.61 Media Use-After-Free memory corruption

A vulnerability, which was classified as critical, has been found in Google Chrome (Web Browser). Affected by this issue is some unknown functionality of the component Media. Upgrading to version 83.0.4103.61 eliminates this vulnerability. A...
Auteur: VulDB

Google Chrome prior 83.0.4103.61 Reader Mode Use-After-Free memory corruption

A vulnerability classified as critical was found in Google Chrome (Web Browser). Affected by this vulnerability is an unknown functionality of the component Reader Mode. Upgrading to version 83.0.4103.61 eliminates this vulnerability. A possible...
Auteur: VulDB

Apache Tomcat up to 7.0.103/8.5.54/9.0.34/10.0.0-M4 Deserialization privilege escalation

A vulnerability classified as critical has been found in Apache Tomcat up to 7.0.103/8.5.54/9.0.34/10.0.0-M4. Affected is an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

TIBCO JasperReports Server up to 7.1.1 Report Generator HTML Injection cross site scripting

A vulnerability was found in TIBCO JasperReports Server, JasperReports Server for AWS Marketplace and JasperReports Server for ActiveMatrix BPM up to 7.1.1. It has been rated as problematic. This issue affects some unknown processing of the...
Auteur: VulDB

TIBCO JasperReports Server up to 7.1.1 Administrative UI privilege escalation

A vulnerability was found in TIBCO JasperReports Server, JasperReports Server for AWS Marketplace and JasperReports Server for ActiveMatrix BPM up to 7.1.1 (Business Process Management Software). It has been declared as critical. This...
Auteur: VulDB

Signal Messenger on Android/iOS information disclosure [CVE-2020-5753]

A vulnerability was found in Signal Messenger on Android/iOS (Messaging Software) (the affected version unknown). It has been classified as problematic. This affects an unknown code. There is no information about possible countermeasures known....
Auteur: VulDB

Paid Memberships up to 2.3.2 sql injection [CVE-2020-5579]

A vulnerability was found in Paid Memberships up to 2.3.2 and classified as critical. Affected by this issue is an unknown part. Upgrading to version 2.3.3 eliminates this vulnerability.
Auteur: VulDB

Dell EMC Isilon OneFS up to 8.2.2 Default Credentials weak authentication

A vulnerability has been found in Dell EMC Isilon OneFS up to 8.2.2 and classified as critical. Affected by this vulnerability is some unknown functionality. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Dell EMC Isilon OneFS up to 8.2.2 SNMPv2 Community String Default Credentials weak authentication

A vulnerability, which was classified as problematic, was found in Dell EMC Isilon OneFS up to 8.2.2. Affected is an unknown functionality of the component SNMPv2. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

IBM Security Access Manager Appliance 9.0.7.1 privilege escalation

A vulnerability, which was classified as critical, has been found in IBM Security Access Manager Appliance 9.0.7.1. This issue affects an unknown function. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

VMware Cloud Director up to 9.1.0.3/9.5.0.5/9.7.0.4/10.0.0.1 Code Execution

A vulnerability classified as critical was found in VMware Cloud Director up to 9.1.0.3/9.5.0.5/9.7.0.4/10.0.0.1. This vulnerability affects some unknown processing. Upgrading to version 9.1.0.4, 9.5.0.6, 9.7.0.5 or 10.0.0.2 eliminates this...
Auteur: VulDB

CouchDB 3.0.0 /_up denial of service

A vulnerability classified as problematic has been found in CouchDB 3.0.0. This affects an unknown code block of the file /_up. Upgrading to version 3.0.1 or 3.1.0 eliminates this vulnerability.
Auteur: VulDB

MariaDB Connector up to 3.1.7 libmariadb/mariadb_lib.c OK Packet unknown vulnerability

A vulnerability was found in MariaDB Connector up to 3.1.7. It has been rated as problematic. Affected by this issue is an unknown code of the file libmariadb/mariadb_lib.c. Upgrading to version 3.1.8 eliminates this vulnerability.
Auteur: VulDB

Gitea up to 1.11.5 Ownership Transfer Deadlock denial of service

A vulnerability was found in Gitea up to 1.11.5. It has been declared as problematic. Affected by this vulnerability is an unknown part of the component Ownership Transfer Handler. There is no information about possible countermeasures known. It...
Auteur: VulDB

Microweber 1.1.18 File Upload load_module:users#edit-user=1 privilege escalation

A vulnerability was found in Microweber 1.1.18. It has been classified as critical. Affected is some unknown functionality of the file admin/view:modules/load_module:users#edit-user=1 of the component File Upload. There is no information about...
Auteur: VulDB

Dolibarr 11.0.4 DMS/ECM cross site scripting

A vulnerability was found in Dolibarr 11.0.4 and classified as problematic. This issue affects an unknown functionality of the component DMS/ECM. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Dolibarr 11.0.4 DMS/ECM attachment cross site scripting

A vulnerability has been found in Dolibarr 11.0.4 and classified as problematic. This vulnerability affects an unknown function of the component DMS/ECM. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

Cacti up to 1.2.10 Admin Email Change auth_profile.php cross site request forgery

A vulnerability, which was classified as problematic, was found in Cacti up to 1.2.10. This affects some unknown processing of the file auth_profile.php?action=edit of the component Admin Email Change Handler. Upgrading to version 1.2.11...
Auteur: VulDB

Cacti up to 1.2.10 privilege escalation [CVE-2020-13230]

A vulnerability, which was classified as critical, has been found in Cacti up to 1.2.10. Affected by this issue is an unknown code block. Upgrading to version 1.2.11 eliminates this vulnerability.
Auteur: VulDB

WSO2 API Manager 3.0.0 Publisher Node Server-Side Request Forgery

A vulnerability classified as critical was found in WSO2 API Manager 3.0.0 (Automation Software). Affected by this vulnerability is an unknown code of the component Publisher Node Handler. There is no information about possible countermeasures...
Auteur: VulDB
First3456789101112Last

Événements SSI