The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.
History of vulnerabilities analyzed by Vigil@nce:
Kubernetes: directory traversal via kubectl cp
An attacker can traverse directories via kubectl cp of Kubernetes, in order to read a file outside the service root path...
IBM MQ: multiple vulnerabilities
An attacker can use several vulnerabilities of IBM MQ...
Apache Tomcat: denial of service via HTTP/2 WINDOW_UPDATE
An attacker can trigger a fatal error via HTTP/2 WINDOW_UPDATE of Apache Tomcat, in order to trigger a denial of service...
Enigmail: information disclosure via Inline PGP Message Signature Spoofing
An attacker can bypass access restrictions to data via Inline PGP Message Signature Spoofing of Enigmail, in order to obtain sensitive information...
Node.js smartsearchwp: code execution via Malicious Package
An attacker can use a vulnerability via Malicious Package of Node.js smartsearchwp, in order to run code...
PostgreSQL: buffer overflow via Password Change
An attacker can trigger a buffer overflow via Password Change of PostgreSQL, in order to trigger a denial of service, and possibly to run code...
ISC BIND: assertion error via Resolver Dispatch.c
An attacker can force an assertion error via Resolver Dispatch.c of ISC BIND, in order to trigger a denial of service...
Yubico PAM U2F: information disclosure via File Descriptor
An attacker can bypass access restrictions to data via File Descriptor of Yubico PAM U2F, in order to obtain sensitive information...
Yubico PAM U2F: information disclosure via Authfile Symlink
An attacker can bypass access restrictions to data via Authfile Symlink of Yubico PAM U2F, in order to obtain sensitive information...
AdvanceCOMP: out-of-bounds memory reading via adv_png_unfilter_8
An attacker can force a read at an invalid address via adv_png_unfilter_8() of AdvanceCOMP, in order to trigger a denial of service, or to obtain sensitive information...
AdvanceCOMP: NULL pointer dereference via be_uint32_read
An attacker can force a NULL pointer to be dereferenced via be_uint32_read() of AdvanceCOMP, in order to trigger a denial of service...
Drupal Easy Breadcrumb: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Drupal Easy Breadcrumb, in order to run JavaScript code in the context of the web site...
gvfs: information disclosure via D-Bus Method
An attacker can bypass access restrictions to data via D-Bus Method of gvfs, in order to obtain sensitive information...
Cisco SD-WAN Solution: privilege escalation via vManage Web UI
An attacker can bypass restrictions via vManage Web UI of Cisco SD-WAN Solution, in order to escalate his privileges...
Cisco SD-WAN Solution: privilege escalation via CLI
An attacker can bypass restrictions via CLI of Cisco SD-WAN Solution, in order to escalate his privileges...
Cisco SD-WAN Solution: privilege escalation via Command Injection
An attacker can bypass restrictions via Command Injection of Cisco SD-WAN Solution, in order to escalate his privileges...
Cisco Prime Infrastructure: privilege escalation via Virtual Domain Configuration
An attacker can bypass restrictions via Virtual Domain Configuration of Cisco Prime Infrastructure, in order to escalate his privileges...
Cisco Email Security Appliance: privilege escalation via GZIP Content Filter Bypass
An attacker can bypass restrictions via GZIP Content Filter Bypass of Cisco Email Security Appliance, in order to escalate his privileges...
Ubuntu: security improvement via Evince AppArmor Profile
The security of Ubuntu was improved via Evince AppArmor Profile...
VideoLAN VLC: use after free via zlib_decompress_extra
An attacker can force the usage of a freed memory area via zlib_decompress_extra() of VideoLAN VLC, in order to trigger a denial of service, and possibly to run code...
Oracle WebLogic Server: code execution via XMLDecoder Deserialization
An attacker can use a vulnerability via XMLDecoder Deserialization of Oracle WebLogic Server, in order to run code...
Poppler: NULL pointer dereference via SplashClip-clipAALine
An attacker can force a NULL pointer to be dereferenced via SplashClip::clipAALine() of Poppler, in order to trigger a denial of service...
Poppler: out-of-bounds memory reading via PSOutputDev-checkPageSlice
An attacker can force a read at an invalid address via PSOutputDev::checkPageSlice() of Poppler, in order to trigger a denial of service, or to obtain sensitive information...
Samba: NULL pointer dereference via AD DC Paged Search
An attacker can force a NULL pointer to be dereferenced via AD DC Paged Search of Samba, in order to trigger a denial of service...
Samba: NULL pointer dereference via AD DC RPC Server
An attacker can force a NULL pointer to be dereferenced via AD DC RPC Server of Samba, in order to trigger a denial of service...

   

Direct access to page 1 21 41 61 81 101 121 141 161 181 201 221 241 261 281 301 321 341 361 381 401 421 441 461 481 501 521 541 561 581 601 621 641 661 681 701 721 741 761 781 801 821 841 861 881 901 921 933 934 935 936 937 938 939 940 941 943 945 946 947 948 949 950 951 952 953 961 981 1001 1020