lundi 6 juillet 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

COMMAX WallPad CDP-1020MB MySQL Code Execution

A vulnerability classified as critical was found in COMMAX WallPad CDP-1020MB. Affected by this vulnerability is an unknown code of the component MySQL. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

CyMiInstaller322 ActiveX File Download privilege escalation [CVE-2019-19161]

A vulnerability classified as critical has been found in CyMiInstaller322 ActiveX (version unknown). Affected is an unknown part of the component File Download. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Mitsubishi Engineering Software denial of service [CVE-2020-5603]

A vulnerability was found in Mitsubishi Engineering Software (unknown version). It has been rated as problematic. This issue affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Mitsubishi Engineering Software XML External Entity [CVE-2020-5602]

A vulnerability was found in Mitsubishi Engineering Software (the affected version is unknown). It has been declared as critical. This vulnerability affects an unknown functionality. There is no information about possible countermeasures known....
Auteur: VulDB

e-Tax Reception System Extension 1.0.0.0 on Chrome privilege escalation

A vulnerability was found in e-Tax Reception System Extension 1.0.0.0 on Chrome. It has been classified as critical. This affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

Cybozu Garoon 5.0.0/5.0.1 directory traversal [CVE-2020-5588]

A vulnerability was found in Cybozu Garoon 5.0.0/5.0.1 (Groupware Software) and classified as problematic. Affected by this issue is some unknown processing. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Cybozu Garoon up to 5.0.1 information disclosure [CVE-2020-5587]

A vulnerability has been found in Cybozu Garoon up to 5.0.1 (Groupware Software) and classified as problematic. Affected by this vulnerability is an unknown code block. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Cybozu Garoon up to 5.0.1 cross site scripting [CVE-2020-5586]

A vulnerability, which was classified as problematic, was found in Cybozu Garoon up to 5.0.1 (Groupware Software). Affected is an unknown code. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Cybozu Garoon 5.0.0/5.0.1 cross site scripting [CVE-2020-5585]

A vulnerability, which was classified as problematic, has been found in Cybozu Garoon 5.0.0/5.0.1 (Groupware Software). This issue affects an unknown part. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Cybozu Garoon up to 5.0.1 information disclosure [CVE-2020-5584]

A vulnerability classified as problematic was found in Cybozu Garoon up to 5.0.1 (Groupware Software). This vulnerability affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Cybozu Garoon up to 5.0.1 Access Restriction privilege escalation

A vulnerability classified as critical has been found in Cybozu Garoon up to 5.0.1 (Groupware Software). This affects an unknown functionality of the component Access Restriction. There is no information about possible countermeasures known. It...
Auteur: VulDB

Cybozu Garoon up to 5.0.1 Access Restriction privilege escalation

A vulnerability was found in Cybozu Garoon up to 5.0.1 (Groupware Software). It has been rated as critical. Affected by this issue is an unknown function of the component Access Restriction. There is no information about possible countermeasures...
Auteur: VulDB

Cybozu Garoon up to 5.0.1 directory traversal [CVE-2020-5581]

A vulnerability was found in Cybozu Garoon up to 5.0.1 (Groupware Software). It has been declared as problematic. Affected by this vulnerability is some unknown processing. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Cybozu Garoon up to 5.0.1 Access Restriction privilege escalation

A vulnerability was found in Cybozu Garoon up to 5.0.1 (Groupware Software). It has been classified as critical. Affected is an unknown code block of the component Access Restriction. There is no information about possible countermeasures known....
Auteur: VulDB

MediaArea MediaInfo 20.03 MediaInfoLib Multiple/File_MpegPs.cpp Streams_Fill_PerStream memory corruption

A vulnerability was found in MediaArea MediaInfo 20.03 and classified as critical. This issue affects the function Streams_Fill_PerStream of the file Multiple/File_MpegPs.cpp of the component MediaInfoLib. There is no information about possible...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 8.2.x Project Configuration cross site scripting

A vulnerability has been found in Atlassian JIRA Server and Data Center up to 8.2.x (Bug Tracking Software) and classified as problematic. This vulnerability affects an unknown part of the component Project Configuration Handler. Upgrading to...
Auteur: VulDB

Atlassian JIRA Server/Data Center up to 7.13.2/8.0.x cross site request forgery

A vulnerability, which was classified as problematic, was found in Atlassian JIRA Server and Data Center up to 7.13.2/8.0.x (Bug Tracking Software). This affects some unknown functionality. Upgrading to version 7.13.3 or 8.1.0 eliminates this...
Auteur: VulDB

CERTFR-2020-AVI-398 : Vulnérabilité dans Palo Alto PAN-OS (30 juin 2020)

Une vulnérabilité a été découverte dans Palo Alto PAN-OS. Elle permet à un attaquant de provoquer un contournement de la politique de sécurité.

Auteur: Cert FR

CERTFR-2020-AVI-397 : Vulnérabilité dans Apache Tomcat (30 juin 2020)

Une vulnérabilité a été découverte dans Apache Tomcat. Elle permet à un attaquant de provoquer un déni de service à distance.

Auteur: Cert FR

CERTFR-2020-AVI-396 : Vulnérabilité dans le noyau Linux de Red Hat (30 juin 2020)

Une vulnérabilité a été découverte dans le noyau Linux de Red Hat. Elle permet à un attaquant de provoquer une atteinte à la confidentialité des données.

Auteur: Cert FR

CERTFR-2020-AVI-395 : Multiples vulnérabilités dans les produits Fortinet (30 juin 2020)

De multiples vulnérabilités ont été découvertes dans les produits Fortinet. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à la confidentialité des données et une élévation de privilèges.
Auteur: Cert FR

NetApp HCI H610S Baseboard Management Controller Default Admin Password weak authentication

A vulnerability, which was classified as critical, has been found in NetApp HCI H610S Baseboard Management Controller (Forum Software) (affected version not known). Affected by this issue is an unknown functionality. There is no information about...
Auteur: VulDB

SuSE Linux Enterprise Debuginfo Symlink privilege escalation

A vulnerability classified as critical was found in SuSE Linux Enterprise Debuginfo, Linux Enterprise Module for Legacy Software, Linux Enterprise Point of Sale, Linux Enterprise Server, Linux Enterprise Server for SAP, Linux Enterprise Debuginfo...
Auteur: VulDB

openSUSE Leap/Tumbleweed Symlink privilege escalation [CVE-2020-8014]

A vulnerability classified as problematic has been found in openSUSE Leap and Tumbleweed (version unknown). Affected is some unknown processing. Upgrading eliminates this vulnerability.
Auteur: VulDB

IBM Business Automation Workflow Web UI cross site scripting

A vulnerability was found in IBM Business Automation Workflow and Business Process Manager (Business Process Management Software) (unknown version). It has been rated as problematic. This issue affects an unknown code block of the component Web...
Auteur: VulDB
First45678910111213Last

Événements SSI