The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of SWIFT Alliance Web Platform

computer vulnerability alert CVE-2018-16386

SWIFT Alliance Web Platform: write access via Log Injection

Synthesis of the vulnerability

An attacker can bypass access restrictions via Log Injection of SWIFT Alliance Web Platform, in order to inject data in log files.
Impacted products: SWIFT Alliance Web Platform.
Severity: 1/4.
Consequences: data reading, data creation/edition, data deletion.
Provenance: intranet client.
Creation date: 08/07/2019.
Identifiers: CVE-2018-16386, VIGILANCE-VUL-29706.

Description of the vulnerability

An attacker can bypass access restrictions via Log Injection of SWIFT Alliance Web Platform, in order to inject data in log files.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability bulletin 21028

SWIFT Alliance Access/Web: vulnerability

Synthesis of the vulnerability

A vulnerability of SWIFT Alliance Access/Web was announced.
Impacted products: SWIFT SAA, SWIFT Alliance Web Platform.
Severity: 3/4.
Consequences: unknown consequence, administrator access/rights, privileged access/rights, user access/rights, client access/rights, data reading, data creation/edition, data deletion, data flow, denial of service on server, denial of service on service, denial of service on client, disguisement.
Provenance: intranet client.
Creation date: 03/11/2016.
Identifiers: VIGILANCE-VUL-21028.

Description of the vulnerability

A vulnerability of SWIFT Alliance Access/Web was announced.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about SWIFT Alliance Web Platform: