The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.
History of vulnerabilities analyzed by Vigil@nce:
IBM MQ: denial of service via Invalid Message
An attacker can trigger a fatal error via Invalid Message of IBM MQ, in order to trigger a denial of service...
IBM MQ: denial of service via Clustering Code
An attacker can trigger a fatal error via Clustering Code of IBM MQ, in order to trigger a denial of service...
Node.js klona: code execution via Prototype Pollution
An attacker can use a vulnerability via Prototype Pollution of Node.js klona, in order to run code...
Node.js parsel: information disclosure via Hardcoded Initialization Vector
An attacker can bypass access restrictions to data via Hardcoded Initialization Vector of Node.js parsel, in order to obtain sensitive information...
Node.js hapi/boom: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Node.js hapi/boom, in order to run JavaScript code in the context of the web site...
Dell EMC OpenManage Enterprise: four vulnerabilities
An attacker can use several vulnerabilities of Dell EMC OpenManage Enterprise...
QEMU: memory corruption via iSCSI Block Driver
An attacker, inside a guest system, can trigger a memory corruption via iSCSI Block Driver of QEMU, in order to trigger a denial of service, and possibly to run code on the host system...
Check Point Security Gateway: information disclosure via Predictable TCP Sequences
An attacker can bypass access restrictions to data via Predictable TCP Sequences of Check Point Security Gateway, in order to obtain sensitive information...
PHP: multiple vulnerabilities
An attacker can use several vulnerabilities of PHP...
python-apt: code execution via Untrusted Repositories
An attacker can use a vulnerability via Untrusted Repositories of python-apt, in order to run code...
python-apt: Man-in-the-Middle via MD5 Hashes
An attacker can act as a Man-in-the-Middle via MD5 Hashes on python-apt, in order to read or write data in the session...
ISC DHCP: multiple vulnerabilities
An attacker can use several vulnerabilities of ISC DHCP...
Drupal SpamSpan: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Drupal SpamSpan, in order to run JavaScript code in the context of the web site...
Cisco Unified Communications Manager: Cross Site Request Forgery via Web-based Management Interface
An attacker can trigger a Cross Site Request Forgery via Web-based Management Interface of Cisco Unified Communications Manager, in order to force the victim to perform operations...
Cisco IOS XE SD-WAN: privilege escalation via Default Credentials
An attacker can bypass restrictions via Default Credentials of Cisco IOS XE SD-WAN, in order to escalate his privileges...
Cisco ESA: denial of service via Zip Decompression
An attacker can trigger a fatal error via Zip Decompression of Cisco ESA, in order to trigger a denial of service...
Cisco ESA: privilege escalation via Content Filter Bypass
An attacker can bypass restrictions via Content Filter Bypass of Cisco ESA, in order to escalate his privileges...
Cisco ESA: Cross Site Scripting via Web-based Management Interface
An attacker can trigger a Cross Site Scripting via Web-based Management Interface of Cisco ESA, in order to run JavaScript code in the context of the web site...
Cisco WSA, SMA: read-write access via HTTP Header Injection
An attacker can bypass access restrictions via HTTP Header Injection of Cisco WSA or SMA, in order to read or alter data...
Cisco SD-WAN vManage: SQL injection via Web Interface
An attacker can use a SQL injection via Web Interface of Cisco SD-WAN vManage, in order to read or alter data...
Cisco SD-WAN vManage: SQL injection via Web Interface
An attacker can use a SQL injection via Web Interface of Cisco SD-WAN vManage, in order to read or alter data...
Cisco SD-WAN vManage: privilege escalation via CLI
An attacker can bypass restrictions via CLI of Cisco SD-WAN vManage, in order to escalate his privileges...
Cisco SD-WAN vManage: code execution via Command Injection
An attacker can use a vulnerability via Command Injection of Cisco SD-WAN vManage, in order to run code...
Cisco IOS XR: denial of service via BGP EVPN Operational Routes
An attacker can trigger a fatal error via BGP EVPN Operational Routes of Cisco IOS XR, in order to trigger a denial of service...
Cisco IOS XR: multiple vulnerabilities via BGP EVPN
An attacker can use several vulnerabilities via BGP EVPN of Cisco IOS XR...
Cisco IOS XR: denial of service via IS-IS SNMP
An attacker can trigger a fatal error via IS-IS SNMP of Cisco IOS XR, in order to trigger a denial of service...
Cisco IOS XR: denial of service via BGP Update Attribute
An attacker can trigger a fatal error via BGP Update Attribute of Cisco IOS XR, in order to trigger a denial of service...
Cisco Unified Communications Manager: information disclosure via Web-based Management Interface
An attacker can bypass access restrictions to data via Web-based Management Interface of Cisco Unified Communications Manager, in order to obtain sensitive information...

   

Direct access to page 1 21 41 61 81 101 121 141 161 181 201 221 241 261 281 301 321 341 361 381 401 421 441 461 481 501 521 541 561 581 601 621 641 661 681 701 721 741 761 781 801 821 841 861 881 901 921 941 961 981 995 996 997 998 999 1000 1001 1002 1003 1005