Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Netgear R7800 1.0.2.76 DHCP os command injection

A vulnerability was found in Netgear R7800 1.0.2.76 (Wireless LAN Software). It has been classified as critical. Affected is an unknown functionality of the component DHCP Handler. There is no information about possible countermeasures known. It...
Auteur: VulDB

Netgear Nighthawk R7800 Update cleartext transmission [CVE-2021-27251]

A vulnerability was found in Netgear Nighthawk R7800 (unknown version) and classified as critical. This issue affects an unknown function of the component Update Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

D-Link DAP-2020 1.01rc001 CGI Script errorpage file inclusion

A vulnerability has been found in D-Link DAP-2020 1.01rc001 and classified as problematic. This vulnerability affects some unknown processing of the component CGI Script Handler. Upgrading to version 1.01rc00 eliminates this vulnerability.
Auteur: VulDB

D-Link DAP-2020 1.01rc001 CGI Script os command injection

A vulnerability, which was classified as critical, was found in D-Link DAP-2020 1.01rc001. This affects an unknown code block of the component CGI Script Handler. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

D-Link DAP-2020 1.01rc001 CGI Script getpage stack-based overflow

A vulnerability, which was classified as critical, has been found in D-Link DAP-2020 1.01rc001. Affected by this issue is an unknown code of the component CGI Script Handler.
Auteur: VulDB

Tencent WeChat Desktop 2.9.5 out-of-bounds read [CVE-2021-27247]

A vulnerability classified as problematic was found in Tencent WeChat Desktop 2.9.5 (Chat Software). Affected by this vulnerability is an unknown part. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

TP-LINK Archer A7 AC1750 1.0.15 tdpServer Endpoint stack-based overflow

A vulnerability classified as critical has been found in TP-LINK Archer A7 AC1750 1.0.15. Affected is some unknown functionality of the component tdpServer Endpoint. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Alt-N MDaemon up to 20.0.3 Remote Privilege Escalation [CVE-2021-27183]

A vulnerability was found in Alt-N MDaemon up to 20.0.3 (Mail Server Software). It has been rated as critical. Upgrading to version 20.0.4 eliminates this vulnerability. The upgrade is hosted for download at altn.com.
Auteur: VulDB

Alt-N MDaemon up to 20.0.3 Worldclient injection

A vulnerability was found in Alt-N MDaemon up to 20.0.3 (Mail Server Software). It has been declared as critical. This vulnerability affects an unknown function of the component Worldclient. Upgrading to version 20.0.4 eliminates this...
Auteur: VulDB

Alt-N MDaemon up to 20.0.3 cross-site request forgery [CVE-2021-27181]

A vulnerability was found in Alt-N MDaemon up to 20.0.3 (Mail Server Software). It has been classified as problematic. This affects some unknown processing. Upgrading to version 20.0.4 eliminates this vulnerability. The upgrade is hosted for...
Auteur: VulDB

Alt-N MDaemon up to 20.0.3 Worldclient cross site scripting

A vulnerability was found in Alt-N MDaemon up to 20.0.3 (Mail Server Software) and classified as problematic. Affected by this issue is an unknown code block of the component Worldclient. Upgrading to version 20.0.4 eliminates this vulnerability....
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.11/8.13.3 Cookie missing secure attribute

A vulnerability has been found in Atlassian JIRA Server and Data Center up to 8.5.11/8.13.3 (Bug Tracking Software) and classified as problematic. Affected by this vulnerability is an unknown code of the component Cookie Handler. Upgrading to...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.11/8.13.3/8.15.0 Jira Importers Plugin information disclosure

A vulnerability, which was classified as problematic, was found in Atlassian JIRA Server and Data Center up to 8.5.11/8.13.3/8.15.0 (Bug Tracking Software). Affected is an unknown part of the component Jira Importers Plugin. Upgrading to version...
Auteur: VulDB

Joomla! up to 3.9.25 Module Layout Settings unknown vulnerability

A vulnerability, which was classified as critical, has been found in Joomla! up to 3.9.25 (Content Management System). This issue affects some unknown functionality of the component Module Layout Settings. There is no information about possible...
Auteur: VulDB

Joomla! up to 3.9.25 Error Page logo cross site scripting

A vulnerability classified as problematic was found in Joomla! up to 3.9.25 (Content Management System). This vulnerability affects an unknown functionality of the component Error Page Handler. There is no information about possible...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.5.11/8.13.3/8.15.0 Issue Navigation/Search View cross site scripting

A vulnerability classified as problematic has been found in Atlassian JIRA Server and Data Center up to 8.5.11/8.13.3/8.15.0 (Bug Tracking Software). This affects an unknown function of the component Issue Navigation/Search View. Upgrading to...
Auteur: VulDB

Monica up to 2.19.0 Journal Page cross site scripting

A vulnerability was found in Monica up to 2.19.0. It has been rated as problematic. Affected by this issue is some unknown processing of the component Journal Page. Upgrading to version 2.19.1 eliminates this vulnerability. The upgrade is hosted...
Auteur: VulDB

Group Office 6.4.196 Parameter SET_LANGUAGE cross site scripting

A vulnerability was found in Group Office 6.4.196. It has been declared as problematic. Affected by this vulnerability is an unknown code block of the component Parameter Handler. There is no information about possible countermeasures known. It...
Auteur: VulDB

Group Office 6.4.196 Contact Page cross site scripting

A vulnerability was found in Group Office 6.4.196. It has been classified as problematic. Affected is an unknown code of the component Contact Page. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

LavaLite 5.8.0 Address cross site scripting

A vulnerability was found in LavaLite 5.8.0 and classified as problematic. This issue affects an unknown part. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative...
Auteur: VulDB

Backdoor.Win32.Zombam.h HTTP GET Request buffer overflow

A vulnerability has been found in Backdoor.Win32.Zombam.h (Remote Access Software) (the affected version is unknown) and classified as critical. This vulnerability affects some unknown functionality of the component HTTP GET Request Handler....
Auteur: VulDB

Multilaser AC1200 02.03.01.45_pt cross-site request forgery [CVE-2021-31152]

A vulnerability, which was classified as problematic, was found in Multilaser AC1200 02.03.01.45_pt. This affects an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

Razer Synapse 3 File Name unknown vulnerability [CVE-2021-30494]

A vulnerability, which was classified as problematic, has been found in Razer Synapse 3. Affected by this issue is an unknown function of the component File Name Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Razer Synapse 3 File Name unknown vulnerability [CVE-2021-30493]

A vulnerability classified as problematic was found in Razer Synapse 3. Affected by this vulnerability is some unknown processing of the component File Name Handler. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

OpenJPEG 2.4.0 Command Line Option ImgDir integer overflow

A vulnerability classified as problematic has been found in OpenJPEG 2.4.0 (Image Processing Software). Affected is an unknown code block of the component Command Line Option Handler. There is no information about possible countermeasures known....
Auteur: VulDB
First45678910111213Last

Événements SSI