diciembre 2019 – Página 11 – Javier García

19 diciembre, 2019

Drupal core – Moderately critical – Access bypass – SA-CORE-2019-011

Project: Drupal coreVersion: 8.8.x-dev8.7.x-devDate: 2019-December-18Security risk: Moderately critical 10∕25 AC:Basic/A:User/CI:Some/II:None/E:Theoretical/TD:DefaultVulnerability: Access bypassDescription: The Media Library module has a security vulnerability whereby it doesnt sufficiently restrict access to media items in certain configurations.Solution: If you are using Drupal 8.7.x, you should upgrade to Drupal 8.7.11.If you are using Drupal 8.8.x, you should upgrade to Drupal More info: https://www.drupal.org/sa-core-2019-011

19 diciembre, 2019

Linux Kernel CVE-2019-19807 Denial of Service Vulnerability

Type: Vulnerability. Linux Kernel is prone to a denial-of-service vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111224&om_rssid=sr-advisories

19 diciembre, 2019

TYPO3 CVE-2019-19849 Multiple Remote Code Execution Vulnerabilities

Type: Vulnerability. TYPO3 is prone to multiple remote code-execution vulnerabilities; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111227&om_rssid=sr-advisories

19 diciembre, 2019

Google Chrome CVE-2019-13767 Use After Free Vulnerability

Type: Vulnerability. Google Chrome is prone to a use-after-free vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111225&om_rssid=sr-advisories

19 diciembre, 2019

Google Chrome CVE-2019-13767 Use After Free Vulnerability

Type: Vulnerability. Google Chrome is prone to a use-after-free vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111225&om_rssid=sr-advisories

18 diciembre, 2019

Linux Kernel CVE-2019-19332 Local Denial of Service Vulnerability

Type: Vulnerability. Linux Kernel is prone to a local denial-of-service vulnerability. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111210&om_rssid=sr-advisories

18 diciembre, 2019

Avaya IP Office Application Server CVE-2019-7004 Cross Site Scripting Vulnerability

Type: Vulnerability. Avaya IP Office Application Server is prone to a cross-site scripting vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111212&om_rssid=sr-advisories

18 diciembre, 2019

IBM API Connect CVE-2019-4444 Local Information Disclosure Vulnerability

Type: Vulnerability. IBM API Connect is prone to a local information-disclosure vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111207&om_rssid=sr-advisories

18 diciembre, 2019

Apache Superset CVE-2019-12414 Information Disclosure Vulnerability

Type: Vulnerability. Apache Superset is prone to an information-disclosure vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111208&om_rssid=sr-advisories

18 diciembre, 2019

Atlassian Application Links CVE-2019-15011 Information Disclosure Vulnerability

Type: Vulnerability. Atlassian Application Links is prone to an information-disclosure vulnerability; fixes are available. More info: http://www.symantec.com/security_response/vulnerability.jsp?bid=111209&om_rssid=sr-advisories

Translate »