Les dernières vulnérabilités publiées sur la National Vulnerability Database (NVD)

CVE-2012-6302 - Soapbox through 0.3.1: Sandbox bypass - runs a second instance of Soapbox within a sandboxed Soapbox.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-6302
Partager : LinkedIn / Twitter / Facebook

CVE-2012-6451 - Lorex LNC116 and LNC104 IP Cameras have a Remote Authentication Bypass Vulnerability
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-6451
Partager : LinkedIn / Twitter / Facebook

CVE-2013-1594 - An Information Disclosure vulnerability exists via a GET request in Vivotek PT7135 IP Camera 0300a and 0400a due to wireless keys and 3rd party credentials stored in clear text.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-1594
Partager : LinkedIn / Twitter / Facebook

CVE-2013-1595 - A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-1595
Partager : LinkedIn / Twitter / Facebook

CVE-2013-1596 - An Authentication Bypass Vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via specially crafted RTSP packets to TCP port 554.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-1596
Partager : LinkedIn / Twitter / Facebook

CVE-2013-1597 - A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via a specially crafted GET request, which could let a malicious user obtain user credentials.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-1597
Partager : LinkedIn / Twitter / Facebook

CVE-2013-1598 - A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary code.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-1598
Partager : LinkedIn / Twitter / Facebook

CVE-2013-3960 - Easytime Studio Easy File Manager 1.1 has a HTTP request security bypass
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-3960
Partager : LinkedIn / Twitter / Facebook

CVE-2013-4333 - OpenPNE 3 versions 3.8.7, 3.6.11, 3.4.21.1, 3.2.7.6, 3.0.8.5 has an External Entity Injection Vulnerability
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-4333
Partager : LinkedIn / Twitter / Facebook

CVE-2014-1922 - Absolute path traversal vulnerability in tools/pdfViewer.pl in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 allows remote attackers to read arbitrary files via unspecified vectors.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-1922
Partager : LinkedIn / Twitter / Facebook

CVE-2014-1923 - Multiple directory traversal vulnerabilities in the (1) staff interface help editor (edithelp.pl) or (2) member-picupload.pl in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 allow remote attackers to write to arbitrary files via unspecified vectors.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-1923
Partager : LinkedIn / Twitter / Facebook

CVE-2014-1924 - The MARC framework import/export function (admin/import_export_framework.pl) in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 does not require authentication, which allows remote attackers to conduct SQL injection attacks via unspecified vectors.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-1924
Partager : LinkedIn / Twitter / Facebook

CVE-2014-1925 - SQL injection vulnerability in the MARC framework import/export function (admin/import_export_framework.pl) in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. NOTE: this can be leveraged by remote attackers using CVE-2014-1924.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-1925
Partager : LinkedIn / Twitter / Facebook

CVE-2014-4172 - A URL parameter injection vulnerability was found in the back-channel ticket validation step of the CAS protocol in Jasig Java CAS Client before 3.3.2, .NET CAS Client before 1.0.2, and phpCAS before 1.3.3 that allow remote attackers to inject arbitrary web script or HTML via the (1) service parameter to validation/AbstractUrlBasedTicketValidator.java or (2) pgtUrl parameter to validation/Cas20ServiceTicketValidator.java.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-4172
Partager : LinkedIn / Twitter / Facebook

CVE-2014-9625 - The GetUpdateFile function in misc/update.c in the Updater in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows remote attackers to conduct buffer overflow attacks and execute arbitrary code via a crafted update status file, aka an "integer truncation" vulnerability.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-9625
Partager : LinkedIn / Twitter / Facebook

CVE-2014-9626 - Integer underflow in the MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a box size less than 7.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-9626
Partager : LinkedIn / Twitter / Facebook

CVE-2014-9627 - The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large box size.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-9627
Partager : LinkedIn / Twitter / Facebook

CVE-2014-9628 - The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to trigger an unintended zero-size malloc and conduct buffer overflow attacks, and consequently execute arbitrary code, via a box size of 7.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-9628
Partager : LinkedIn / Twitter / Facebook

CVE-2014-9629 - Integer overflow in the Encode function in modules/codec/schroedinger.c in VideoLAN VLC media player before 2.1.6 and 2.2.x before 2.2.1 allows remote attackers to conduct buffer overflow attacks and execute arbitrary code via a crafted length value.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-9629
Partager : LinkedIn / Twitter / Facebook

CVE-2014-9630 - The rtp_packetize_xiph_config function in modules/stream_out/rtpfmt.c in VideoLAN VLC media player before 2.1.6 uses a stack-allocation approach with a size determined by arbitrary input data, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted length value.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-9630
Partager : LinkedIn / Twitter / Facebook

CVE-2014-9720 - Tornado before 3.2.2 sends arbitrary responses that contain a fixed CSRF token and may be sent with HTTP compression, which makes it easier for remote attackers to conduct a BREACH attack and determine this token via a series of crafted requests.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-9720
Partager : LinkedIn / Twitter / Facebook

CVE-2015-1525 - audio/AudioPolicyManagerBase.cpp in Android before 5.1 allows attackers to cause a denial of service (audio_policy application outage) via a crafted application that provides a NULL device address.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-1525
Partager : LinkedIn / Twitter / Facebook

CVE-2015-1530 - media/libmedia/IAudioPolicyService.cpp in Android before 5.1 allows attackers to execute arbitrary code with media_server privileges or cause a denial of service (integer overflow) via a crafted application that provides an invalid array size.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-1530
Partager : LinkedIn / Twitter / Facebook

CVE-2015-2688 - buf_pullup in Tor before 0.2.4.26 and 0.2.5.x before 0.2.5.11 does not properly handle unexpected arrival times of buffers with invalid layouts, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via crafted packets.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-2688
Partager : LinkedIn / Twitter / Facebook

CVE-2015-2689 - Tor before 0.2.4.26 and 0.2.5.x before 0.2.5.11 does not properly handle pending-connection resolve states during periods of high DNS load, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via crafted packets.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-2689
Partager : LinkedIn / Twitter / Facebook

CVE-2015-2928 - The Hidden Service (HS) server implementation in Tor before 0.2.4.27, 0.2.5.x before 0.2.5.12, and 0.2.6.x before 0.2.6.7 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via unspecified vectors.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-2928
Partager : LinkedIn / Twitter / Facebook

CVE-2015-2929 - The Hidden Service (HS) client implementation in Tor before 0.2.4.27, 0.2.5.x before 0.2.5.12, and 0.2.6.x before 0.2.6.7 allows remote servers to cause a denial of service (assertion failure and application exit) via a malformed HS descriptor.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-2929
Partager : LinkedIn / Twitter / Facebook

CVE-2015-4041 - The keycompare_mb function in sort.c in sort in GNU Coreutils through 8.23 on 64-bit platforms performs a size calculation without considering the number of bytes occupied by multibyte characters, which allows attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via long UTF-8 strings.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-4041
Partager : LinkedIn / Twitter / Facebook

CVE-2015-4042 - Integer overflow in the keycompare_mb function in sort.c in sort in GNU Coreutils through 8.23 might allow attackers to cause a denial of service (application crash) or possibly have unspecified other impact via long strings.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-4042
Partager : LinkedIn / Twitter / Facebook

CVE-2015-9541 - Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-9541
Partager : LinkedIn / Twitter / Facebook

CVE-2018-8654 - An elevation of privilege vulnerability exists in Microsoft Dynamics 365 Server, aka 'Microsoft Dynamics 365 Elevation of Privilege Vulnerability'.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2018-8654
Partager : LinkedIn / Twitter / Facebook

CVE-2019-1349 - A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1350, CVE-2019-1352, CVE-2019-1354, CVE-2019-1387.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-1349
Partager : LinkedIn / Twitter / Facebook

CVE-2019-1350 - A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1352, CVE-2019-1354, CVE-2019-1387.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-1350
Partager : LinkedIn / Twitter / Facebook

CVE-2019-1351 - A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-1351
Partager : LinkedIn / Twitter / Facebook

CVE-2019-1352 - A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1354, CVE-2019-1387.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-1352
Partager : LinkedIn / Twitter / Facebook

CVE-2019-1354 - A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1387.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-1354
Partager : LinkedIn / Twitter / Facebook

CVE-2019-1414 - An elevation of privilege vulnerability exists in Visual Studio Code when it exposes a debug listener to users of a local computer, aka 'Visual Studio Code Elevation of Privilege Vulnerability'.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-1414
Partager : LinkedIn / Twitter / Facebook

CVE-2019-1454 - An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles symlinks, aka 'Windows User Profile Service Elevation of Privilege Vulnerability'.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-1454
Partager : LinkedIn / Twitter / Facebook

CVE-2019-1460 - A spoofing vulnerability exists in the way Microsoft Outlook for Android software parses specifically crafted email messages, aka 'Outlook for Android Spoofing Vulnerability'.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-1460
Partager : LinkedIn / Twitter / Facebook

CVE-2019-18900 - : Incorrect Default Permissions vulnerability in libzypp of SUSE CaaS Platform 3.0, SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15 allowed local attackers to read a cookie store used by libzypp, exposing private cookies. This issue affects: SUSE CaaS Platform 3.0 libzypp versions prior to 16.21.2-27.68.1. SUSE Linux Enterprise Server 12 libzypp versions prior to 16.21.2-2.45.1. SUSE Linux Enterprise Server 15 17.19.0-3.34.1.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-18900
Partager : LinkedIn / Twitter / Facebook

CVE-2019-19363 - An issue was discovered in Ricoh (including Savin and Lanier) Windows printer drivers prior to 2020 that allows attackers local privilege escalation. Affected drivers and versions are: PCL6 Driver for Universal Print - Version 4.0 or later PS Driver for Universal Print - Version 4.0 or later PC FAX Generic Driver - All versions Generic PCL5 Driver - All versions RPCS Driver - All versions PostScript3 Driver - All versions PCL6 (PCL XL) Driver - All versions RPCS Raster Driver - All version
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-19363
Partager : LinkedIn / Twitter / Facebook

CVE-2019-19631 - An issue was discovered in Big Switch Big Monitoring Fabric 6.2 through 6.2.4, 6.3 through 6.3.9, 7.0 through 7.0.3, and 7.1 through 7.1.3; Big Cloud Fabric 4.5 through 4.5.5, 4.7 through 4.7.7, 5.0 through 5.0.1, and 5.1 through 5.1.4; and Multi-Cloud Director through 1.1.0. A read-only user can access sensitive information via an API endpoint that reveals session cookies of authenticated administrators, leading to privilege escalation.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-19631
Partager : LinkedIn / Twitter / Facebook

CVE-2019-19632 - An issue was discovered in Big Switch Big Monitoring Fabric 6.2 through 6.2.4, 6.3 through 6.3.9, 7.0 through 7.0.3, and 7.1 through 7.1.3; Big Cloud Fabric 4.5 through 4.5.5, 4.7 through 4.7.7, 5.0 through 5.0.1, and 5.1 through 5.1.4; and Multi-Cloud Director through 1.1.0. An unauthenticated attacker may inject stored arbitrary JavaScript (XSS), and execute it in the content of authenticated administrators.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-19632
Partager : LinkedIn / Twitter / Facebook

CVE-2019-3687 - The permission package in SUSE Linux Enterprise Server allowed all local users to run dumpcap in the "easy" permission profile and sniff network traffic. This issue affects: SUSE Linux Enterprise Server permissions versions starting from 85c83fef7e017f8ab7f8602d3163786d57344439 to 081d081dcfaf61710bda34bc21c80c66276119aa.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-3687
Partager : LinkedIn / Twitter / Facebook

CVE-2019-3692 - The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local attackers to escalate from user inn to root via symlink attacks. This issue affects: SUSE Linux Enterprise Server 11 inn version 2.4.2-170.21.3.1 and prior versions. openSUSE Factory inn version 2.6.2-2.2 and prior versions. openSUSE Leap 15.1 inn version 2.5.4-lp151.2.47 and prior versions.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-3692
Partager : LinkedIn / Twitter / Facebook

CVE-2019-3693 - A symlink following vulnerability in the packaging of mailman in SUSE Linux Enterprise Server 11, SUSE Linux Enterprise Server 12; openSUSE Leap 15.1 allowed local attackers to escalate their privileges from user wwwrun to root. Additionally arbitrary files could be changed to group mailman. This issue affects: SUSE Linux Enterprise Server 11 mailman versions prior to 2.1.15-9.6.15.1. SUSE Linux Enterprise Server 12 mailman versions prior to 2.1.17-3.11.1. openSUSE Leap 15.1 mailman version 2.1.29-lp151.2.14 and prior versions.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-3693
Partager : LinkedIn / Twitter / Facebook

CVE-2019-3694 - A Symbolic Link (Symlink) Following vulnerability in the packaging of munin in openSUSE Factory, Leap 15.1 allows local attackers to escalate from user munin to root. This issue affects: openSUSE Factory munin version 2.0.49-4.2 and prior versions. openSUSE Leap 15.1 munin version 2.0.40-lp151.1.1 and prior versions.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-3694
Partager : LinkedIn / Twitter / Facebook

CVE-2019-3697 - UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of gnump3d in openSUSE Leap 15.1 allows local attackers to escalate from user gnump3d to root. This issue affects: openSUSE Leap 15.1 gnump3d version 3.0-lp151.2.1 and prior versions.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-3697
Partager : LinkedIn / Twitter / Facebook

CVE-2019-3699 - UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of privoxy on openSUSE Leap 15.1, Factory allows local attackers to escalate from user privoxy to root. This issue affects: openSUSE Leap 15.1 privoxy version 3.0.28-lp151.1.1 and prior versions. openSUSE Factory privoxy version 3.0.28-2.1 and prior versions.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-3699
Partager : LinkedIn / Twitter / Facebook

CVE-2019-3700 - yast2-security didn't use secure defaults to protect passwords. This became a problem on 2019-10-07 when configuration files that set secure settings were moved to a different location. As of the 20191022 snapshot the insecure default settings were used until yast2-security switched to stronger defaults in 4.2.6 and used the new configuration file locations. Password created during this time used DES password encryption and are not properly protected against attackers that are able to access the password hashes.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-3700
Partager : LinkedIn / Twitter / Facebook

CVE-2020-5219 - Angular Expressions before version 1.0.1 has a remote code execution vulnerability if you call expressions.compile(userControlledInput) where userControlledInput is text that comes from user input. If running angular-expressions in the browser, an attacker could run any browser script when the application code calls expressions.compile(userControlledInput). If running angular-expressions on the server, an attacker could run any Javascript expression, thus gaining Remote Code Execution.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-5219
Partager : LinkedIn / Twitter / Facebook

CVE-2020-5224 - In Django User Sessions (django-user-sessions) before 1.7.1, the views provided allow users to terminate specific sessions. The session key is used to identify sessions, and thus included in the rendered HTML. In itself this is not a problem. However if the website has an XSS vulnerability, the session key could be extracted by the attacker and a session takeover could happen.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-5224
Partager : LinkedIn / Twitter / Facebook

CVE-2020-5225 - Log injection in SimpleSAMLphp before version 1.18.4. The www/erroreport.php script, which receives error reports and sends them via email to the system administrator, did not properly sanitize the report identifier obtained from the request. This allows an attacker, under specific circumstances, to inject new log lines by manually crafting this report ID. When configured to use the file logging handler, SimpleSAMLphp will output all its logs by appending each log line to a given file. Since the reportID parameter received in a request sent to www/errorreport.php was not properly sanitized, it was possible to inject newline characters into it, effectively allowing a malicious user to inject new log lines with arbitrary content.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-5225
Partager : LinkedIn / Twitter / Facebook

CVE-2020-5226 - Cross-site scripting in SimpleSAMLphp before version 1.18.4. The www/erroreport.php script allows error reports to be submitted and sent to the system administrator. Starting with SimpleSAMLphp 1.18.0, a new SimpleSAML\Utils\EMail class was introduced to handle sending emails, implemented as a wrapper of an external dependency. This new wrapper allows us to use Twig templates in order to create the email sent with an error report. Since Twig provides automatic escaping of variables, manual escaping of the free-text field in www/errorreport.php was removed to avoid double escaping. However, for those not using the new user interface yet, an email template is hardcoded into the class itself in plain PHP. Since no escaping is provided in this template, it is then possible to inject HTML inside the template by manually crafting the contents of the free-text field.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-5226
Partager : LinkedIn / Twitter / Facebook

CVE-2020-6961 - In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station (CSCS) Versions 1.X, a vulnerability exists in the affected products that could allow an attacker to obtain access to the SSH private key in configuration files.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-6961
Partager : LinkedIn / Twitter / Facebook

CVE-2020-6962 - In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station (CSCS) Versions 1.X CARESCAPE Central Station (CSCS) Versions 2.X, B450 Version 2.X, B650 Version 1.X, B650 Version 2.X, B850 Version 1.X, B850 Version 2.X, an input validation vulnerability exists in the web-based system configuration utility that could allow an attacker to obtain arbitrary remote code execution.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-6962
Partager : LinkedIn / Twitter / Facebook

CVE-2020-6963 - In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the affected products utilized hard coded SMB credentials, which may allow an attacker to remotely execute arbitrary code.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-6963
Partager : LinkedIn / Twitter / Facebook

CVE-2020-6964 - In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X and CARESCAPE Central Station (CSCS) Versions 2.X, the integrated service for keyboard switching of the affected devices could allow attackers to obtain remote keyboard input access without authentication over the network.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-6964
Partager : LinkedIn / Twitter / Facebook

CVE-2020-6965 - In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, B450 Version 2.X, B650 Version 1.X, B650 Version 2.X, B850 Version 1.X, B850 Version 2.X, a vulnerability in the software update mechanism allows an authenticated attacker to upload arbitrary files on the system through a crafted update package.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-6965
Partager : LinkedIn / Twitter / Facebook

CVE-2020-6966 - In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the affected products utilize a weak encryption scheme for remote desktop control, which may allow an attacker to obtain remote code execution of devices on the network.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-6966
Partager : LinkedIn / Twitter / Facebook

CVE-2020-7052 - CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-7052
Partager : LinkedIn / Twitter / Facebook

CVE-2020-7226 - CiphertextHeader.java in Cryptacular 1.2.3, as used in Apereo CAS and other products, allows attackers to trigger excessive memory allocation during a decode operation, because the nonce array length associated with "new byte" may depend on untrusted input within the header of encoded data.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-7226
Partager : LinkedIn / Twitter / Facebook

CVE-2020-7964 - An issue was discovered in Mirumee Saleor 2.x before 2.9.1. Incorrect access control in the checkoutCustomerAttach mutations allows attackers to attach their checkouts to any user ID and consequently leak user data (e.g., name, address, and previous orders of any other customer).
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2020-7964
Partager : LinkedIn / Twitter / Facebook

CVE-2007-6758 - Server-side request forgery (SSRF) vulnerability in feed-proxy.php in extjs 5.0.0.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2007-6758
Partager : LinkedIn / Twitter / Facebook

CVE-2008-7314 - mIRC before 6.35 allows attackers to cause a denial of service (crash) via a long nickname.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2008-7314
Partager : LinkedIn / Twitter / Facebook

CVE-2012-2087 - ISPConfig 3.0.4.3: the "Add new Webdav user" can chmod and chown entire server from client interface.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-2087
Partager : LinkedIn / Twitter / Facebook

CVE-2012-4863 - IBM WebSphere MQ 7.1 and 7.5: Queue manager has a DoS vulnerability
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-4863
Partager : LinkedIn / Twitter / Facebook

CVE-2012-4900 - Corel WordPerfect Office X6 16.0.0.388 has a DoS Vulnerability via untrusted pointer dereference
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-4900
Partager : LinkedIn / Twitter / Facebook

CVE-2012-4981 - Toshiba ConfigFree 8.0.38 has a CF7 File Remote Command Execution Vulnerability
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-4981
Partager : LinkedIn / Twitter / Facebook

CVE-2012-5626 - EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs annotation.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-5626
Partager : LinkedIn / Twitter / Facebook

CVE-2012-5698 - BabyGekko before 1.2.4 has SQL injection.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-5698
Partager : LinkedIn / Twitter / Facebook

CVE-2012-5699 - BabyGekko before 1.2.4 allows PHP file inclusion.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-5699
Partager : LinkedIn / Twitter / Facebook

CVE-2012-5867 - HT Editor 2.0.20 has a Remote Stack Buffer Overflow Vulnerability
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-5867
Partager : LinkedIn / Twitter / Facebook

CVE-2012-6083 - Freeciv before 2.3.3 allows remote attackers to cause a denial of service via a crafted packet.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-6083
Partager : LinkedIn / Twitter / Facebook

CVE-2013-1592 - A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistics() function when sending specially crafted SAP Message Server packets to remote TCP ports 36NN and/or 39NN in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04, which could let a remote malicious user execute arbitrary code.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-1592
Partager : LinkedIn / Twitter / Facebook

CVE-2013-1593 - A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe module in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04 when sending a crafted SAP Message Server packet to TCP ports 36NN and/or 39NN.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-1593
Partager : LinkedIn / Twitter / Facebook

CVE-2013-4175 - MySecureShell 1.31 has a Local Denial of Service Vulnerability
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-4175
Partager : LinkedIn / Twitter / Facebook

CVE-2013-4176 - mysecureshell 1.31: Local Information Disclosure Vulnerability
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-4176
Partager : LinkedIn / Twitter / Facebook

CVE-2013-6358 - PrestaShop 1.5.5 allows remote authenticated attackers to execute arbitrary code by uploading a crafted profile and then accessing it in the module/ directory.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-6358
Partager : LinkedIn / Twitter / Facebook

CVE-2013-6772 - Splunk before 5.0.4 lacks X-Frame-Options which can allow Clickjacking
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-6772
Partager : LinkedIn / Twitter / Facebook

CVE-2013-6773 - Splunk 5.0.3 has an Unquoted Service Path in Windows for Universal Forwarder which can allow an attacker to escalate privileges
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-6773
Partager : LinkedIn / Twitter / Facebook

CVE-2013-6785 - Directory traversal vulnerability in url_redirect.cgi in Supermicro IPMI before SMT_X9_315 allows authenticated attackers to read arbitrary files via the url_name parameter.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-6785
Partager : LinkedIn / Twitter / Facebook

CVE-2013-6792 - Google Android prior to 4.4 has an APK Signature Security Bypass Vulnerability
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-6792
Partager : LinkedIn / Twitter / Facebook

CVE-2014-2050 - Cross-site request forgery (CSRF) vulnerability in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2 allows remote attackers to hijack the authentication of users for requests that reset passwords via a crafted HTTP Host header.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-2050
Partager : LinkedIn / Twitter / Facebook

CVE-2015-5239 - Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-5239
Partager : LinkedIn / Twitter / Facebook

CVE-2015-5278 - The ne2000_receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows attackers to cause a denial of service (infinite loop and instance crash) or possibly execute arbitrary code via vectors related to receiving packets.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-5278
Partager : LinkedIn / Twitter / Facebook

CVE-2015-5333 - Memory leak in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of service (memory consumption) via a large number of ASN.1 object identifiers in X.509 certificates.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-5333
Partager : LinkedIn / Twitter / Facebook

CVE-2015-5334 - Off-by-one error in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of service (program crash) or possible execute arbitrary code via a crafted X.509 certificate, which triggers a stack-based buffer overflow. Note: this vulnerability exists because of an incorrect fix for CVE-2014-3508.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-5334
Partager : LinkedIn / Twitter / Facebook

CVE-2015-5745 - Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus.c in QEMU before 2.4.0 allows guest users to cause a denial of service (QEMU process crash) via a crafted virtio control message.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-5745
Partager : LinkedIn / Twitter / Facebook

CVE-2019-14888 - A vulnerability was found in the Undertow HTTP server in versions before 2.0.28.SP1 when listening on HTTPS. An attacker can target the HTTPS port to carry out a Denial Of Service (DOS) to make the service unavailable on SSL.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-14888
Partager : LinkedIn / Twitter / Facebook

CVE-2019-15707 - An improper access control vulnerability in FortiMail admin webUI 6.2.0, 6.0.0 to 6.0.6, 5.4.10 and below may allow administrators to perform system backup config download they should not be authorized for.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-15707
Partager : LinkedIn / Twitter / Facebook

CVE-2019-15712 - An improper access control vulnerability in FortiMail admin webUI 6.2.0, 6.0.0 to 6.0.6, 5.4.10 and below may allow administrators to access web console they should not be authorized for.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-15712
Partager : LinkedIn / Twitter / Facebook

CVE-2019-16153 - A hard-coded password vulnerability in the Fortinet FortiSIEM database component version 5.2.5 and below may allow attackers to access the device database via the use of static credentials.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-16153
Partager : LinkedIn / Twitter / Facebook

CVE-2019-16514 - An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. The server allows remote code execution. Administrative users could upload an unsigned extension ZIP file containing executable code that is subsequently executed by the server.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-16514
Partager : LinkedIn / Twitter / Facebook

CVE-2019-16515 - An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. Certain HTTP security headers are not used.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-16515
Partager : LinkedIn / Twitter / Facebook

CVE-2019-16516 - An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is a user enumeration vulnerability, allowing an unauthenticated attacker to determine with certainty if an account exists for a given username.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-16516
Partager : LinkedIn / Twitter / Facebook

CVE-2019-16517 - An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is a CORS misconfiguration, which reflected the Origin provided by incoming requests. This allowed JavaScript running on any domain to interact with the server APIs and perform administrative actions, without the victim's knowledge.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-16517
Partager : LinkedIn / Twitter / Facebook

CVE-2019-17201 - FastTrack Admin By Request 6.1.0.0 supports group policies that are supposed to allow only a select range of users to elevate to Administrator privilege at will. When a user requests elevation using the AdminByRequest.exe interface, the interface communicates with the underlying service (Audckq32.exe) using a .NET named pipe. If the underlying service responds that a user is permitted access to the elevation feature, the client then reinitiates communication with the underlying service and requests elevation. This elevation request has no local checks in the service, and depends on client-side validation in the AdminByRequest.exe interface, i.e., it is a vulnerable exposed functionality in the service. By communicating directly with the underlying service, any user can request elevation and obtain Administrator privilege regardless of group policies or permissions.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-17201
Partager : LinkedIn / Twitter / Facebook

CVE-2019-17202 - FastTrack Admin By Request 6.1.0.0 supports group policies that are supposed to allow only a select range of users to elevate to Administrator privilege at will. If a user does not have direct access to the elevation feature through group policies, they are prompted to enter a PIN code in a challenge-response manner upon attempting to elevate privileges. The challenge's response uses a simple algorithm that can be easily emulated via data (customer ID and device name) available to all users, and thus any user can elevate to Administrator privilege.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-17202
Partager : LinkedIn / Twitter / Facebook

CVE-2019-18222 - The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks.
23/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-18222
Partager : LinkedIn / Twitter / Facebook

Les annonces ayant été modifiées dernièrement

CVE-2009-1120 - EMC RepliStor Server Service before ESA-09-003 has a DoASOCommand Remote Code Execution Vulnerability. The flaw exists within the DoRcvRpcCall RPC function -exposed via the rep_srv.exe process- where the vulnerability is caused by an error when the rep_srv.exe handles a specially crafted packet sent by an unauthenticated attacker.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2009-1120
Partager : LinkedIn / Twitter / Facebook

CVE-2010-3048 - Cisco Unified Personal Communicator 7.0 (1.13056) does not free allocated memory for received data and does not perform validation if memory allocation is successful, causing a remote denial of service condition.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2010-3048
Partager : LinkedIn / Twitter / Facebook

CVE-2011-2715 - An SQL Injection vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table names or column names.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2011-2715
Partager : LinkedIn / Twitter / Facebook

CVE-2011-3595 - Multiple Cross-site Scripting (XSS) vulnerabilities exist in Joomla! through 1.7.0 in index.php in the search word, extension, asset, and author parameters.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2011-3595
Partager : LinkedIn / Twitter / Facebook

CVE-2011-3612 - Cross-Site Request Forgery (CSRF) vulnerability exists in panel.php in UseBB before 1.0.12.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2011-3612
Partager : LinkedIn / Twitter / Facebook

CVE-2011-3622 - A Cross-Site Scripting (XSS) vulnerability exists in the admin login screen in Phorum before 5.2.18.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2011-3622
Partager : LinkedIn / Twitter / Facebook

CVE-2011-4943 - ImpressPages CMS v1.0.12 has Unspecified Remote Code Execution (fixed in v1.0.13)
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2011-4943
Partager : LinkedIn / Twitter / Facebook

CVE-2012-1259 - Multiple SQL injection vulnerabilities in Plixer International Scrutinizer NetFlow & sFlow Analyzer 8.6.2.16204, and possibly other versions before 9.0.1.19899, allow remote attackers to execute arbitrary SQL commands via the (1) addip parameter to cgi-bin/scrut_fa_exclusions.cgi, (2) getPermissionsAndPreferences parameter to cgi-bin/login.cgi, or (3) possibly certain parameters to d4d/alarms.php as demonstrated by the search_str parameter.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-1259
Partager : LinkedIn / Twitter / Facebook

CVE-2012-4606 - Citrix XenServer 4.1, 6.0, 5.6 SP2, 5.6 Feature Pack 1, 5.6 Common Criteria, 5.6, 5.5, 5.0, and 5.0 Update 3 contains a Local Privilege Escalation Vulnerability which could allow local users with access to a guest operating system to gain elevated privileges.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-4606
Partager : LinkedIn / Twitter / Facebook

CVE-2012-4919 - Gallery Plugin1.4 for WordPress has a Remote File Include Vulnerability
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-4919
Partager : LinkedIn / Twitter / Facebook

CVE-2012-5340 - SumatraPDF 2.1.1/MuPDF 1.0 allows remote attackers to cause an Integer Overflow in the lex_number() function via a corrupt PDF file.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-5340
Partager : LinkedIn / Twitter / Facebook

CVE-2012-5389 - NULL Pointer Dereference in PowerTCP WebServer for ActiveX 1.9.2 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted HTTP request.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-5389
Partager : LinkedIn / Twitter / Facebook

CVE-2012-6649 - WordPress WP GPX Maps Plugin 1.1.21 allows remote attackers to execute arbitrary PHP code via improper file upload.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-6649
Partager : LinkedIn / Twitter / Facebook

CVE-2012-6663 - General Electric D20ME devices are not properly configured and reveal plaintext passwords.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2012-6663
Partager : LinkedIn / Twitter / Facebook

CVE-2013-2773 - Nitro PDF 8.5.0.26: A specially crafted DLL file can facilitate Arbitrary Code Execution
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-2773
Partager : LinkedIn / Twitter / Facebook

CVE-2013-7185 - PotPlayer 1.5.40688: .avi File Memory Corruption
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2013-7185
Partager : LinkedIn / Twitter / Facebook

CVE-2014-5209 - An Information Disclosure vulnerability exists in NTP 4.2.7p25 private (mode 6/7) messages via a GET_RESTRICT control message, which could let a malicious user obtain sensitive information.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-5209
Partager : LinkedIn / Twitter / Facebook

CVE-2014-6059 - WordPress Advanced Access Manager Plugin before 2.8.2 has an Arbitrary File Overwrite Vulnerability
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-6059
Partager : LinkedIn / Twitter / Facebook

CVE-2014-6448 - Juniper Junos OS 13.2 before 13.2R5, 13.2X51, 13.2X52, and 13.3 before 13.3R3 allow local users to bypass intended restrictions and execute arbitrary Python code via vectors involving shell access.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-6448
Partager : LinkedIn / Twitter / Facebook

CVE-2014-7238 - The WordPress plugin Contact Form Integrated With Google Maps 1.0-2.4 has Stored XSS
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2014-7238
Partager : LinkedIn / Twitter / Facebook

CVE-2015-0558 - The ADB (formerly Pirelli Broadband Solutions) P.DGA4001N router with firmware PDG_TEF_SP_4.06L.6, and possibly other routers, uses "1236790" and the MAC address to generate the WPA key.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-0558
Partager : LinkedIn / Twitter / Facebook

CVE-2015-1809 - XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via an XPath query.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-1809
Partager : LinkedIn / Twitter / Facebook

CVE-2015-1811 - XML external entity (XXE) vulnerability in CloudBees Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via a crafted XML document.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-1811
Partager : LinkedIn / Twitter / Facebook

CVE-2015-2325 - The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forward reference repeated a large number of times within a repeated outer group that has a zero minimum quantifier.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-2325
Partager : LinkedIn / Twitter / Facebook

CVE-2015-2326 - The pcre_compile2 function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code and cause a denial of service (out-of-bounds read) via regular expression with a group containing both a forward referencing subroutine call and a recursive back reference, as demonstrated by "((?+1)())/".
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-2326
Partager : LinkedIn / Twitter / Facebook

CVE-2015-5071 - AR System Mid Tier in the AR System Mid Tier component before 9.0 SP1 for BMC Remedy AR System Server allows remote authenticated users to "navigate" to arbitrary files via the __report parameter of the BIRT viewer servlet.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-5071
Partager : LinkedIn / Twitter / Facebook

CVE-2015-5072 - The BIRT Engine servlet in the AR System Mid Tier component before 9.0 SP1 for BMC Remedy AR System Server allows remote authenticated users to "navigate" to arbitrary local files via the __imageid parameter.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-5072
Partager : LinkedIn / Twitter / Facebook

CVE-2015-5466 - Silicon Integrated Systems XGI WindowsXP Display Manager (aka XGI VGA Driver Manager and VGA Display Manager) 6.14.10.1090 allows local users to gain privileges via a crafted 0x96002404 IOCTL call.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-5466
Partager : LinkedIn / Twitter / Facebook

CVE-2015-7556 - DeleGate 9.9.13 allows local users to gain privileges as demonstrated by the dgcpnod setuid program.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-7556
Partager : LinkedIn / Twitter / Facebook

CVE-2015-8367 - The phase_one_correct function in Libraw before 0.17.1 allows attackers to cause memory errors and possibly execute arbitrary code, related to memory object initialization.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2015-8367
Partager : LinkedIn / Twitter / Facebook

CVE-2016-1000237 - sanitize-html before 1.4.3 has XSS.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2016-1000237
Partager : LinkedIn / Twitter / Facebook

CVE-2016-4761 - WebKitGTK+ before 2.14.0: A use-after-free vulnerability can allow remote attackers to cause a DoS
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2016-4761
Partager : LinkedIn / Twitter / Facebook

CVE-2018-17981 - Lifesize Express ls ex2_4.7.10 2000 (14) devices allow XSS via the interface/interface.php brand parameter.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2018-17981
Partager : LinkedIn / Twitter / Facebook

CVE-2019-10582 - Use after free issue due to using of invalidated iterator to delete an object in sensors HAL in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8096AU, MSM8909W, Nicobar, QCS605, SA6155P, SDA845, SDM429W, SDM670, SDM710, SDM845, SM6150, SM8150, SM8250, SXR1130, SXR2130
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-10582
Partager : LinkedIn / Twitter / Facebook

CVE-2019-10583 - Use after free issue occurs when camera access sensors data through direct report mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8096AU, MDM9607, MSM8909W, Nicobar, QCS605, SA6155P, SDA845, SDM429W, SDM670, SDM710, SDM845, SM6150, SM8150, SM8250, SXR1130, SXR2130
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-10583
Partager : LinkedIn / Twitter / Facebook

CVE-2019-10585 - Possible integer overflow happens when mmap find function will increment refcount every time when it invokes and can lead to use after free issue in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8009, APQ8053, MDM9607, MDM9640, MSM8909W, MSM8917, MSM8953, Nicobar, QCS605, QM215, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-10585
Partager : LinkedIn / Twitter / Facebook

CVE-2019-10602 - Potential use-after-free heap error during Validate/Present calls on display HW composer in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, QCS605, SDA660, SDM845, SDX20, SM8150
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-10602
Partager : LinkedIn / Twitter / Facebook

CVE-2019-10606 - Out-of-bound access will occur in USB driver due to lack of check to validate the frame size passed by user in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9607, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, QCS605, SDX24
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-10606
Partager : LinkedIn / Twitter / Facebook

CVE-2019-10940 - A vulnerability has been identified in SINEMA Server (All versions < V14.0 SP2 Update 1). Incorrect session validation could allow an attacker with a valid session, with low privileges, to perform firmware updates and other administrative operations on connected devices. The security vulnerability could be exploited by an attacker with network access to the affected system. An attacker must have access to a low privileged account in order to exploit the vulnerability. An attacker could use the vulnerability to compromise confidentiality, integrity, and availability of the affected system and underlying components. At the time of advisory publication no public exploitation of this security vulnerability was known.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-10940
Partager : LinkedIn / Twitter / Facebook

CVE-2019-10956 - Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated user, using a specially crafted URL command, to execute commands as root.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-10956
Partager : LinkedIn / Twitter / Facebook

CVE-2019-10957 - Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to event configuration to store malicious code on the server, which could later be triggered by a legitimate user resulting in code execution within the user?s browser.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-10957
Partager : LinkedIn / Twitter / Facebook

CVE-2019-10958 - Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to network configuration to supply system commands to the server, leading to remote code execution as root.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-10958
Partager : LinkedIn / Twitter / Facebook

CVE-2019-10995 - ABB CP651 HMI products revision BSP UN30 v1.76 and prior implement hidden administrative accounts that are used during the provisioning phase of the HMI interface.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-10995
Partager : LinkedIn / Twitter / Facebook

CVE-2019-12399 - When Connect workers in Apache Kafka 2.0.0, 2.0.1, 2.1.0, 2.1.1, 2.2.0, 2.2.1, or 2.3.0 are configured with one or more config providers, and a connector is created/updated on that Connect cluster to use an externalized secret variable in a substring of a connector configuration property value, then any client can issue a request to the same Connect cluster to obtain the connector's task configuration and the response will contain the plaintext secret rather than the externalized secrets variables.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-12399
Partager : LinkedIn / Twitter / Facebook

CVE-2019-13537 - The IEC870IP driver for AVEVA?s Vijeo Citect and Citect SCADA and Schneider Electric?s Power SCADA Operation has a buffer overflow vulnerability that could result in a server-side crash.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-13537
Partager : LinkedIn / Twitter / Facebook

CVE-2019-13933 - A vulnerability has been identified in SCALANCE X-200RNA switch family (All versions), SCALANCE X-300 switch family (incl. X408 and SIPLUS NET variants) (All versions < V4.1.3). Affected devices contain a vulnerability that allows an unauthenticated attacker to violate access-control rules. The vulnerability can be triggered by sending GET request to specific uniform resource locator on the web configuration interface of the device. The security vulnerability could be exploited by an attacker with network access to the affected systems. An attacker could use the vulnerability to obtain sensitive information or change the device configuration. At the time of advisory publication no public exploitation of this security vulnerability was known.
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-13933
Partager : LinkedIn / Twitter / Facebook

CVE-2019-14010 - The device may enter into error state when some tool or application gets failure at 1st buffer map all and performs 2nd buffer map which happens to be at same physical address in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, Rennell, SA6155P, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-14010
Partager : LinkedIn / Twitter / Facebook

CVE-2019-14023 - String format issue will occur while processing HLOS data as there is no user input validation to ensure inputs are properly NULL terminated before string copy in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, Rennell, SA6155P, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-14023
Partager : LinkedIn / Twitter / Facebook

CVE-2019-14024 - Possible stack-use-after-scope issue in NFC usecase for card emulation in Snapdragon Auto, Snapdragon Industrial IOT, Snapdragon Mobile in MSM8917, MSM8953, Nicobar, QM215, Rennell, SDM429, SDM439, SDM450, SDM632, SDM670, SDM710, SDM845, SM6150, SM7150, SM8150, SM8250, SXR2130
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-14024
Partager : LinkedIn / Twitter / Facebook

CVE-2019-14036 - Possible buffer overflow issue in error processing due to improper validation of array index value in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8064, APQ8096AU, IPQ4019, IPQ8064, IPQ8074, MDM9607, MDM9615, MDM9640, MSM8996AU, QCN7605
24/01/2020 | https://nvd.nist.gov/vuln/detail/CVE-2019-14036
Partager : LinkedIn / Twitter / Facebook