The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.
History of vulnerabilities analyzed by Vigil@nce:
F5 BIG-IP ASM: denial of service via Bot Detection DNS Cache
An attacker can trigger a fatal error via Bot Detection DNS Cache of F5 BIG-IP ASM, in order to trigger a denial of service...
F5 BIG-IP APM: privilege escalation via Edge Client for macOS
An attacker can bypass restrictions via Edge Client for macOS of F5 BIG-IP APM, in order to escalate his privileges...
F5 BIG-IP: information disclosure via HTTP Headers Prepended Whitespace
An attacker can bypass access restrictions to data via HTTP Headers Prepended Whitespace of F5 BIG-IP, in order to obtain sensitive information...
F5 BIG-IP: memory leak via TMM Packet Fragments
An attacker can create a memory leak via TMM Packet Fragments of F5 BIG-IP, in order to trigger a denial of service...
F5 BIG-IP ASM: Man-in-the-Middle via Central Policy Builder / BIG-IQ
An attacker can act as a Man-in-the-Middle via Central Policy Builder / BIG-IQ on F5 BIG-IP ASM, in order to read or write data in the session...
F5 BIG-IP APM: privilege escalation via RDP Restrict to Single Client IP
An attacker can bypass restrictions via RDP Restrict to Single Client IP of F5 BIG-IP APM, in order to escalate his privileges...
F5 BIG-IP AFM: infinite loop via Bad-Actor Detection
An attacker can trigger an infinite loop via Bad-Actor Detection of F5 BIG-IP AFM, in order to trigger a denial of service...
F5 BIG-IP: denial of service via TMM Traffic Flow
An attacker can trigger a fatal error via TMM Traffic Flow of F5 BIG-IP, in order to trigger a denial of service...
F5 BIG-IP: information disclosure via vCMP Plaintext Unit Key
An attacker can bypass access restrictions to data via vCMP Plaintext Unit Key of F5 BIG-IP, in order to obtain sensitive information...
FreeRDP: memory leak via HuffmanTree_makeFromFrequencies
An attacker can create a memory leak via HuffmanTree_makeFromFrequencies() of FreeRDP, in order to trigger a denial of service...
FreeRDP: memory leak via libfreerdp/codec/region.c
An attacker can create a memory leak via libfreerdp/codec/region.c of FreeRDP, in order to trigger a denial of service...
389 Directory Server: information disclosure via Deref Plugin
An attacker can bypass access restrictions to data via Deref Plugin of 389 Directory Server, in order to obtain sensitive information...
FreeIPA: buffer overflow via ber_scanf
An attacker can trigger a buffer overflow via ber_scanf() of FreeIPA, in order to trigger a denial of service, and possibly to run code...
FreeIPA: information disclosure via Command Logged Passwords
An attacker can bypass access restrictions to data via Command Logged Passwords of FreeIPA, in order to obtain sensitive information...
IBM Spectrum Protect Backup-Archive Client: denial of service via Client/Server Timing
An attacker can trigger a fatal error via Client/Server Timing of IBM Spectrum Protect Backup-Archive Client, in order to trigger a denial of service...
Linux kernel: memory corruption via vcs_write
An attacker can trigger a memory corruption via vcs_write() of the Linux kernel, in order to trigger a denial of service, and possibly to run code...
Linux kernel: integer overflow via cpia2_remap_buffer
An attacker can trigger an integer overflow via cpia2_remap_buffer() of the Linux kernel, in order to trigger a denial of service, and possibly to run code...
SQLite: denial of service via TK_COLUMN sqlite3ExprCodeTarget
An attacker can trigger a fatal error via TK_COLUMN sqlite3ExprCodeTarget of SQLite, in order to trigger a denial of service...
SQLite: denial of service via Sub-Select DISTINCT Window
An attacker can trigger a fatal error via Sub-Select DISTINCT Window of SQLite, in order to trigger a denial of service...
Eclipse Jetty: Cross Site Scripting via Generic ErrorHandler
An attacker can trigger a Cross Site Scripting via Generic ErrorHandler of Eclipse Jetty, in order to run JavaScript code in the context of the web site...
RSA Authentication Manager: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of RSA Authentication Manager, in order to run JavaScript code in the context of the web site...
Xen: privilege escalation via Alternate Pci Assignment
An attacker, inside a guest system, can bypass restrictions via Alternate Pci Assignment of Xen, in order to escalate his privileges on the host system...
Mailman: privilege escalation
An attacker can bypass restrictions of Mailman, in order to escalate his privileges...
WebKitGTK: multiple vulnerabilities
An attacker can use several vulnerabilities of WebKitGTK...
WebKit: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of WebKit, in order to run JavaScript code in the context of the web site...
GnuPG: information disclosure via Chosen-Prefix SHA-1 Collisions
An attacker can bypass access restrictions to data via Chosen-Prefix SHA-1 Collisions (VIGILANCE-VUL-31290) of GnuPG, in order to obtain sensitive information...
F5 BIG-IP Engineering Hotfix: privilege escalation via Authentication Bypass
An attacker can bypass restrictions via Authentication Bypass of F5 BIG-IP Engineering Hotfix, in order to escalate his privileges...
Mozilla NSS: buffer overflow via NSC_EncryptUpdate
An attacker can trigger a buffer overflow via NSC_EncryptUpdate() of Mozilla NSS, in order to trigger a denial of service, and possibly to run code...
Ruby: code execution via Shell First Argument
An attacker can use a vulnerability via Shell First Argument of Ruby, in order to run code...

   

Direct access to page 1 21 41 61 81 101 121 141 161 181 201 221 241 261 281 301 321 341 361 381 401 421 441 461 481 501 521 541 561 581 601 621 641 661 681 701 721 741 761 781 801 821 841 861 881 901 921 941 961 980 981 982 983 984 985 986 987 988 990 992 993 994 995 996 997 998 999 1000 1001 1011