Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

projectworlds Visitor Management System Stored cross site scripting

A vulnerability was found in projectworlds Visitor Management System (the affected version unknown). It has been classified as problematic. This affects an unknown code. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

projectworlds Visitor Management System sql injection [CVE-2020-25760]

A vulnerability was found in projectworlds Visitor Management System (affected version not known) and classified as critical. Affected by this issue is an unknown part. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Sourcecodester Seat Reservation System sql injection [CVE-2020-25762]

A vulnerability has been found in Sourcecodester Seat Reservation System (affected version unknown) and classified as critical. Affected by this vulnerability is some unknown functionality. There is no information about possible countermeasures...
Auteur: VulDB

Sourcecodester Seat Reservation System File Upload privilege escalation

A vulnerability, which was classified as critical, was found in Sourcecodester Seat Reservation System (version unknown). Affected is an unknown functionality. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Observium Professional/Enterprise/Community 20.8.10631 metric Code Execution directory traversal

A vulnerability, which was classified as critical, has been found in Observium Professional, Enterprise and Community 20.8.10631. This issue affects an unknown function of the file /device/device=345/?tab=health. There is no information about...
Auteur: VulDB

Observium Professional/Enterprise/Community 20.8.10631 /iftype/ type cross site scripting

A vulnerability classified as problematic was found in Observium Professional, Enterprise and Community 20.8.10631. This vulnerability affects some unknown processing of the file /iftype/. There is no information about possible countermeasures...
Auteur: VulDB

Observium Professional/Enterprise/Community 20.8.10631 authenticate.inc.php username[0] sql injection

A vulnerability classified as critical has been found in Observium Professional, Enterprise and Community 20.8.10631. This affects an unknown code block of the file includes/authenticate.inc.php. There is no information about possible...
Auteur: VulDB

Observium Professional/Enterprise/Community 20.8.10631 /syslog_rules cross site scripting

A vulnerability was found in Observium Professional, Enterprise and Community 20.8.10631. It has been rated as problematic. Affected by this issue is an unknown code of the file /syslog_rules. There is no information about possible...
Auteur: VulDB

Observium Professional/Enterprise/Community 20.8.10631 view Code Execution directory traversal

A vulnerability was found in Observium Professional, Enterprise and Community 20.8.10631. It has been declared as critical. Affected by this vulnerability is an unknown part of the file /device/device=345/?tab=ports. There is no information about...
Auteur: VulDB

Observium Professional/Enterprise/Community 20.8.10631 /apps/ app Code Execution directory traversal

A vulnerability was found in Observium Professional, Enterprise and Community 20.8.10631. It has been classified as critical. Affected is some unknown functionality of the file /apps/. There is no information about possible countermeasures known....
Auteur: VulDB

Observium Professional/Enterprise/Community 20.8.10631 device_entities.php device_id[] sql injection

A vulnerability was found in Observium Professional, Enterprise and Community 20.8.10631 and classified as critical. This issue affects an unknown functionality of the file /ajax/device_entities.php?entity_type=netscalervsvr. There is no...
Auteur: VulDB

Observium Professional/Enterprise/Community 20.8.10631 /addsrv cross site request forgery

A vulnerability has been found in Observium Professional, Enterprise and Community 20.8.10631 and classified as problematic. This vulnerability affects an unknown function of the file /addsrv. There is no information about possible...
Auteur: VulDB

Observium Professional/Enterprise/Community 20.8.10631 view cross site scripting

A vulnerability, which was classified as problematic, was found in Observium Professional, Enterprise and Community 20.8.10631. This affects some unknown processing of the file /device/device=140/tab=wifi/view. There is no information about...
Auteur: VulDB

GE Reason S20 Ethernet Switch cross site scripting [CVE-2020-16242]

A vulnerability, which was classified as problematic, has been found in GE Reason S20 Ethernet Switch (affected version not known). Affected by this issue is an unknown code block. There is no information about possible countermeasures known. It...
Auteur: VulDB

TensorFlow up to 2.2.0/2.3.0 memory corruption [CVE-2020-15214]

A vulnerability classified as critical was found in TensorFlow up to 2.2.0/2.3.0 (Artificial Intelligence Software). Affected by this vulnerability is an unknown code. Upgrading to version 2.2.1 or 2.3.1 eliminates this vulnerability. Applying...
Auteur: VulDB

TensorFlow up to 2.2.0/2.3.0 Memory Exhaustion denial of service

A vulnerability classified as problematic has been found in TensorFlow up to 2.2.0/2.3.0 (Artificial Intelligence Software). Affected is an unknown part. Upgrading to version 2.2.1 or 2.3.1 eliminates this vulnerability. Applying the patch...
Auteur: VulDB

TensorFlow up to 2.2.0/2.3.0 Heap-based memory corruption

A vulnerability was found in TensorFlow up to 2.2.0/2.3.0 (Artificial Intelligence Software). It has been rated as critical. This issue affects some unknown functionality. Upgrading to version 2.2.1 or 2.3.1 eliminates this vulnerability....
Auteur: VulDB

TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 Heap-based memory corruption

A vulnerability was found in TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 (Artificial Intelligence Software). It has been declared as critical. This vulnerability affects an unknown functionality. Upgrading to version 1.15.4, 2.0.3, 2.1.2,...
Auteur: VulDB

TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 TFLite Model Segmentation Fault memory corruption

A vulnerability was found in TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 (Artificial Intelligence Software). It has been classified as critical. This affects an unknown function of the component TFLite Model Handler. Upgrading to version...
Auteur: VulDB

TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 TFLite Model NULL Pointer Dereference denial of service

A vulnerability was found in TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 (Artificial Intelligence Software) and classified as problematic. Affected by this issue is some unknown processing of the component TFLite Model Handler. Upgrading to...
Auteur: VulDB

TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 Out-of-Bounds memory corruption

A vulnerability has been found in TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 (Artificial Intelligence Software) and classified as critical. Affected by this vulnerability is an unknown code block. Upgrading to version 1.15.4, 2.0.3, 2.1.2,...
Auteur: VulDB

TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 ResolveAxis Negative Value Out-of-Bounds memory corruption

A vulnerability, which was classified as critical, was found in TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 (Artificial Intelligence Software). Affected is the function ResolveAxis. Upgrading to version 1.15.4, 2.0.3, 2.1.2, 2.2.1 or 2.3.1...
Auteur: VulDB

TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 denial of service

A vulnerability, which was classified as problematic, has been found in TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 (Artificial Intelligence Software). This issue affects an unknown part. Upgrading to version 1.15.4, 2.0.3, 2.1.2, 2.2.1 or...
Auteur: VulDB

TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 tf.raw_ops.StringNGrams data_splits Stack-based memory corruption

A vulnerability classified as critical was found in TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 (Artificial Intelligence Software). This vulnerability affects the function tf.raw_ops.StringNGrams. Upgrading to version 1.15.4, 2.0.3, 2.1.2,...
Auteur: VulDB

TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 ctx->session_state() NULL Pointer Dereference denial of service

A vulnerability classified as problematic has been found in TensorFlow up to 1.15.3/2.0.2/2.1.1/2.2.0/2.3.0 (Artificial Intelligence Software). This affects the function ctx->session_state(). Upgrading to version 1.15.4, 2.0.3, 2.1.2, 2.2.1 or...
Auteur: VulDB
12345678910Last

Événements SSI