mercredi 13 novembre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

McAfee Total Protection up to 16.0.R22 Microsoft Windows Client privilege escalation

A vulnerability was found in McAfee Total Protection up to 16.0.R22. It has been classified as critical. Affected is an unknown function of the component Microsoft Windows Client. There is no information about possible countermeasures known. It...
Auteur: VulDB

Lenovo ThinkPad T460p/T470p BIOS Tamper Detection privilege escalation

A vulnerability was found in Lenovo ThinkPad T460p/T470p and classified as critical. This issue affects some unknown processing of the component BIOS Tamper Detection Handler. There is no information about possible countermeasures known. It may...
Auteur: VulDB

Lenovo ThinkPad SMI Callback Code Execution [CVE-2019-6172]

A vulnerability has been found in Lenovo ThinkPad (the affected version is unknown) and classified as critical. This vulnerability affects an unknown code block of the component SMI Callback Handler. There is no information about possible...
Auteur: VulDB

Lenovo ThinkPad SMM Code Execution [CVE-2019-6170]

A vulnerability, which was classified as critical, was found in Lenovo ThinkPad (the affected version unknown). This affects an unknown code of the component SMM. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

NVIDIA GeForce Experience/Windows GPU Display Driver Local Service Provider Code Execution

A vulnerability, which was classified as critical, has been found in NVIDIA GeForce Experience and Windows GPU Display Driver (Hardware Driver Software) (affected version not known). Affected by this issue is an unknown part of the component...
Auteur: VulDB

Huawei Smartphone up to ELLE-AL00B 9.1.0.109(C00E106R1P21) Parameter Code Execution

A vulnerability classified as critical was found in Huawei Smartphone (Smartphone Operating System). Affected by this vulnerability is some unknown functionality. There is no information about possible countermeasures known. It may be suggested...
Auteur: VulDB

Huawei Smartphone up to 10.0.0 privilege escalation [CVE-2019-5233]

A vulnerability classified as critical has been found in Huawei Smartphone up to 10.0.0 (Smartphone Operating System). Affected is an unknown functionality. Upgrading to version Taurus-AL00B 10.0.0.41(SP2C00E41R3P2) eliminates this vulnerability.
Auteur: VulDB

Huawei P30 up to 9.1.0 privilege escalation [CVE-2019-5231]

A vulnerability was found in Huawei P30 up to 9.1.0 (Smartphone Operating System). It has been rated as critical. This issue affects an unknown function. Upgrading to version ELLE-AL00B 9.1.0.186(C00E180R2P1) eliminates this vulnerability.
Auteur: VulDB

Huawei P20 Pro/P20/Mate RS Application privilege escalation [CVE-2019-5230]

A vulnerability was found in Huawei P20 Pro, P20 and Mate RS (Smartphone Operating System) (the affected version is unknown). It has been declared as critical. This vulnerability affects some unknown processing. Upgrading eliminates this...
Auteur: VulDB

Huawei P30 up to 9.1.0 Parameter Code Execution

A vulnerability was found in Huawei P30 up to 9.1.0 (Smartphone Operating System). It has been classified as critical. This affects an unknown code block. Upgrading to version ELLE-AL00B 9.1.0.193(C00E190R2P1) eliminates this vulnerability.
Auteur: VulDB

Huawei P30/P30 Pro/V20 Detection Module Code Execution memory corruption

A vulnerability was found in Huawei P30, P30 Pro and V20 (Smartphone Operating System) (affected version not known) and classified as critical. Affected by this issue is an unknown code of the component Detection Module. Upgrading eliminates this...
Auteur: VulDB

Huawei Honor Play up to 9.1.0 weak authentication [CVE-2019-5213]

A vulnerability has been found in Huawei Honor Play up to 9.1.0 and classified as critical. Affected by this vulnerability is an unknown part. Upgrading to version Cornell-AL00A 9.1.0.321(C00E320R1P1T8) eliminates this vulnerability.
Auteur: VulDB

IBM Spectrum Protect Plus 10.1.0/10.1.1/10.1.2/10.1.3/10.1.4 privilege escalation

A vulnerability, which was classified as critical, was found in IBM Spectrum Protect Plus 10.1.0/10.1.1/10.1.2/10.1.3/10.1.4 (Backup Software). Affected is some unknown functionality. There is no information about possible countermeasures known....
Auteur: VulDB

Systematic IRIS Standards Management 2.1 SP1 89 Reflected cross site scripting

A vulnerability, which was classified as problematic, has been found in Systematic IRIS Standards Management 2.1 SP1 89. This issue affects an unknown functionality. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Systematic IRIS WebForms 5.4 weak authentication [CVE-2019-18925]

A vulnerability classified as critical was found in Systematic IRIS WebForms 5.4. This vulnerability affects an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

Systematic IRIS WebForms 5.4 directory traversal [CVE-2019-18924]

A vulnerability classified as critical has been found in Systematic IRIS WebForms 5.4. This affects some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

json-jwt Gem up to 1.10.x on Ruby JWE String unknown vulnerability

A vulnerability was found in json-jwt Gem up to 1.10.x on Ruby (Ruby Gem). It has been rated as problematic. Affected by this issue is an unknown code block of the component JWE String. Upgrading to version 1.11.0 eliminates this vulnerability.
Auteur: VulDB

File Sharing Wizard 1.5.0 Build 2008 Structured Exception HTTP GET Request memory corruption

A vulnerability was found in File Sharing Wizard 1.5.0 Build 2008. It has been declared as critical. Affected by this vulnerability is an unknown code of the component Structured Exception Handler. There is no information about possible...
Auteur: VulDB

Hitachi Command Suite up to 7.x/8.6.x Resource Exhaustion denial of service

A vulnerability was found in Hitachi Command Suite up to 7.x/8.6.x. It has been classified as problematic. Affected is an unknown part. Upgrading to version 8.7.0-00 eliminates this vulnerability.
Auteur: VulDB

TIBCO EBX up to 3.20.13/4.1.0/4.2.0/4.2.1/4.2.2 Digital Asset Manager Web Interface Stored cross site scripting

A vulnerability was found in TIBCO EBX up to 3.20.13/4.1.0/4.2.0/4.2.1/4.2.2 and classified as problematic. This issue affects some unknown functionality of the component Digital Asset Manager Web Interface. There is no information about possible...
Auteur: VulDB

TIBCO EBX up to 3.20.13/4.1.0 Data Exchange Web Interface Stored cross site scripting

A vulnerability has been found in TIBCO EBX up to 3.20.13/4.1.0 and classified as problematic. This vulnerability affects an unknown functionality of the component Data Exchange Web Interface. There is no information about possible...
Auteur: VulDB

TIBCO EBX 5.8.1.fixR/5.9.3/5.9.4/5.9.5/5.9.6 Web Server Reflected cross site scripting

A vulnerability, which was classified as problematic, was found in TIBCO EBX 5.8.1.fixR/5.9.3/5.9.4/5.9.5/5.9.6. This affects an unknown function of the component Web Server. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

igniteup Plugin up to 3.4 on WordPress class-coming-soon-creator.php cross site request forgery

A vulnerability, which was classified as problematic, has been found in igniteup Plugin up to 3.4 on WordPress (WordPress Plugin). Affected by this issue is some unknown processing of the file includes/class-coming-soon-creator.php. There is no...
Auteur: VulDB

igniteup Plugin up to 3.4 on WordPress class-coming-soon-creator.php cross site scripting

A vulnerability classified as problematic was found in igniteup Plugin up to 3.4 on WordPress (WordPress Plugin). Affected by this vulnerability is an unknown code block of the file includes/class-coming-soon-creator.php. There is no information...
Auteur: VulDB

igniteup Plugin up to 3.4 on WordPress class-coming-soon-creator.php information disclosure

A vulnerability classified as problematic has been found in igniteup Plugin up to 3.4 on WordPress (WordPress Plugin). Affected is an unknown code of the file includes/class-coming-soon-creator.php. There is no information about possible...
Auteur: VulDB
12345678910Last

Événements SSI

BLOCKCHAIN

Conférence et exposition sur les applications d'entreprise de la blockchain à Paris, cité universitaire internationale, les 13 et 14 novembre 2019. Organisés par Corp Agency.

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes (palais des festivals) du 26 au 28 novembre 2019. Organisé par Comexposium.

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS