The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of TMOS

ISC BIND: information disclosure via DLZ Zone Transfer
An attacker can bypass access restrictions to data via DLZ Zone Transfer of ISC BIND, in order to obtain sensitive information...
bulletinapr2019, CERTFR-2019-AVI-242, CVE-2019-6465, DLA-1697-1, DSA-4440-1, ibm10876698, K00040234, K01713115, K25244852, openSUSE-SU-2019:1532-1, openSUSE-SU-2019:1533-1, RHSA-2019:3552-01, RHSA-2020:1061-01, SUSE-SU-2019:1407-1, SUSE-SU-2019:14074-1, SUSE-SU-2019:1449-1, SUSE-SU-2019:2502-1, Synology-SA-19:10, USN-3893-1, USN-3893-2, VIGILANCE-VUL-28584
ISC BIND: assertion error via Managed-keys Trust Anchor Rolls Over
An attacker can force an assertion error via Managed-keys Trust Anchor Rolls Over of ISC BIND, in order to trigger a denial of service...
bulletinapr2019, CERTFR-2019-AVI-242, CVE-2018-5745, DLA-1697-1, DSA-2020-030, DSA-4440-1, ibm10876698, K00040234, K01713115, K25244852, openSUSE-SU-2019:1532-1, openSUSE-SU-2019:1533-1, RHSA-2019:3552-01, RHSA-2020:1061-01, SUSE-SU-2019:1407-1, SUSE-SU-2019:14074-1, SUSE-SU-2019:1449-1, SUSE-SU-2019:2502-1, Synology-SA-19:10, USN-3893-1, USN-3893-2, VIGILANCE-VUL-28583
ISC BIND: memory leak via EDNS Options
An attacker can create a memory leak via EDNS Options of ISC BIND, in order to trigger a denial of service...
bulletinapr2019, CERTFR-2019-AVI-076, CERTFR-2019-AVI-242, CVE-2018-5744, ibm10876698, K00040234, K01713115, K25244852, Synology-SA-19:10, USN-3893-1, USN-3893-2, VIGILANCE-VUL-28582
Linux kernel: privilege escalation via kvm_ioctl_create_device
An attacker can bypass restrictions via kvm_ioctl_create_device() of the Linux kernel, in order to escalate his privileges...
CERTFR-2019-AVI-131, CERTFR-2019-AVI-145, CERTFR-2019-AVI-183, CERTFR-2019-AVI-233, CERTFR-2019-AVI-451, CERTFR-2019-AVI-592, CERTFR-2020-AVI-030, CVE-2019-6974, DLA-1731-1, DLA-1731-2, DLA-1771-1, FEDORA-2019-164946aa7f, FEDORA-2019-3da64f3e61, K11186236, openSUSE-SU-2019:0203-1, RHSA-2019:0818-01, RHSA-2019:0833-01, RHSA-2019:2809-01, RHSA-2019:3967-01, RHSA-2020:0103-01, SUSE-SU-2019:0541-1, SUSE-SU-2019:0765-1, SUSE-SU-2019:0767-1, SUSE-SU-2019:0828-1, SUSE-SU-2019:0901-1, SUSE-SU-2019:1289-1, USN-3930-1, USN-3930-2, USN-3931-1, USN-3931-2, USN-3932-1, USN-3932-2, USN-3933-1, USN-3933-2, VIGILANCE-VUL-28494
libcurl: out-of-bounds memory reading via NTLM Type-2
An attacker can force a read at an invalid address via NTLM Type-2 of libcurl, in order to trigger a denial of service, or to obtain sensitive information...
bulletinjan2019, cpuapr2019, cpujul2019, CVE-2018-16890, DLA-1672-1, DSA-4386-1, FEDORA-2019-43489941ff, K03314397, openSUSE-SU-2019:0173-1, openSUSE-SU-2019:0174-1, RHSA-2019:3701-01, SSA:2019-037-01, STORM-2019-002, SUSE-SU-2019:0248-1, SUSE-SU-2019:0249-1, SUSE-SU-2019:0249-2, SUSE-SU-2019:0339-1, USN-3882-1, VIGILANCE-VUL-28443
systemd: memory leak via journald-server.c
An attacker can create a memory leak via journald-server.c of systemd, in order to trigger a denial of service...
CVE-2019-3815, DLA-1711-1, K22040951, RHSA-2019:0201-01, VIGILANCE-VUL-28402
F5 BIG-IP LTM: privilege escalation via Revoked Certificate SSL Forward Proxy OCSP Stapling
An attacker can bypass restrictions via Revoked Certificate SSL Forward Proxy OCSP Stapling of F5 BIG-IP LTM, in order to escalate his privileges...
K73202036, VIGILANCE-VUL-28395
F5 BIG-IP LTM: denial of service via SSL Session ID Persistence
An attacker can trigger a fatal error via SSL Session ID Persistence of F5 BIG-IP LTM, in order to trigger a denial of service...
CVE-2019-6590, K55101404, VIGILANCE-VUL-28394
F5 BIG-IP APM: Cross Site Scripting via Resource Information Page
An attacker can trigger a Cross Site Scripting via Resource Information Page of F5 BIG-IP APM, in order to run JavaScript code in the context of the web site...
CVE-2019-6591, K32840424, VIGILANCE-VUL-28393
F5 BIG-IP: Cross Site Scripting via TMUI
An attacker can trigger a Cross Site Scripting via TMUI of F5 BIG-IP, in order to run JavaScript code in the context of the web site...
CVE-2019-6589, K23566124, VIGILANCE-VUL-28392
Our database contains other pages. You can request a free trial to read them.

Display information about TMOS: