Since 1999, the Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security fixes, a database and tools to remediate them.
Each user customizes the list of software to track. As soon as Vigil@nce publishes an alert for one of his software, the user receives a vigilance bulletin, containing a simple explanation of the threat, its patches and workarounds.
The administrator then uses the online Vigil@nce diary in order to plan and track the security process.


Our offer Request your free trial

Computer vulnerabilities bulletins published by Vigil@nce

Public vulnerabilities
Brocade FabricOS: privilege escalation via REST API Reflected Input
Brocade FabricOS: privilege escalation via CLI Secccrypptocfg
Brocade FabricOS: privilege escalation via CLI Shell Variables
Brocade FabricOS: privilege escalation via Firmware Download Password
Brocade FabricOS: privilege escalation via Supportlink CLI Password Field
Brocade FabricOS: privilege escalation via Host Header Injection
Brocade FabricOS: denial of service via Management Interface
Brocade FabricOS: Cross Site Scripting via HTTP Management Interface
Yaws: external XML entity injection via WebDAV
Ruby Gon: Cross Site Scripting via MultiJson
MediaWiki: multiple vulnerabilities
Palo Alto PAN-OS: information disclosure via Proxy Passwords
Palo Alto PAN-OS: information disclosure via Context Switch Session Token
Palo Alto PAN-OS: privilege escalation via Management Web Interface
Linux kernel: denial of service via kmem_cache_alloc_bulk
Xen: information disclosure via Power Interfaces Weak Access
Intel Processors: information disclosure
Intel Processors: information disclosure via Running Average Power Limit
Fortinet Fortigate: Man-in-the-Middle via Valid SSL-VPN Certificate
Cisco Aironet Access Point: overload via Authentication Flood
Recent vulnerabilities
QEMU: out-of-bounds memory reading via SLiRP ARP/NCSI Packets
MS WIndows 7, 2008: privilege escalation via registry permissions
swtpm: vulnerability
LXML: Cross Site Scripting via escape
xdg-utils: information disclosure
Synology DiskStation Manager: multiple vulnerabilities
Node.js xml-crypto: bypassing signature check
Centreon Web: privilege escalation via Clickjacking
Trend Micro ServerProtect for Linux: buffer overflow
ISC BIND: assertion error via TCP
Drupal core: file upload via PEAR Archive_Tar
Joomla Core: seven vulnerabilities
Chrome: multiple vulnerabilities
Centreon Web: six vulnerabilities
mutt: disabling TLS
Grafana: vulnerability via notifications
WildFly: password leak in log file
slurm: two vulnerabilities
rclone: weak password generation
Xen: buffer overflow
Severities: 1 = low, 2 = medium, 3 = important, 4 = critical.

Daily activities

  • Vulnerabilities are discovered daily and published on thousands of internet information sources.
  • Vigil@nce announces these vulnerabilities and how to protect your system. This information is customized according to your environment, it is available on a web site and sent by e-mail alerts.
  • Your teams secure and protect your networks based on Vigil@nce information and tools.

Your environment

  • A database describing more than 30000 vulnerabilities and their 70000 solutions.
  • A web space where each user defines his vigilance preferences.
  • Alert and synthesis e-mails, to inform your teams.
  • A customized tracking of your software and systems.
  • A diary to plan solutions to install, and to monitor the security process of each computer.

Your benefits

  • A customized watch on computer vulnerabilities and their solutions.
  • An experienced team at your service for more than 21 years.
  • A tool to monitor the security process of your networks and computers.
  • A CVE compatible solution.
  • A time saving for your team which concentrates on important tasks.