integratus systems

Exchange Platform Services

 
  • Join Now-Sign Up
  • Log In

Building Innovative Public-Private-Partnerships for Effective and Equitable WSS Services – Project Financing

Accelerating Action CDP Global Water Report 2015 – Project Financing

A Review of the Use of Output-Based Aid Approaches – Project Financing

Canada National Security Cyber Espionage – Senate Hearing 2016 – Cybersecurity

Africa – The State of African Utilities Performance Assessment and Benchmarking Report – Water

  • Blog
  • Editor Paper Extracts
  • Editor Picks Articles
  • Editor Picks Maps
  • Editor Picks Reports
  • IS Competitive Intelligence Briefings
  • IS Intelligence Work Group
  • IS Partners
  • IS Projects Work Group
  • IS Reports
  • IS Security Work Group
  • IS Working Group Briefings
  • Uncategorized

IS Security Alerts Advisories

  • Adobe Acrobat Reader integer overflow [CVE-2021-21036]
    A vulnerability was found in Adobe Acrobat Reader up to 2017.011.30188/2020.001.30018/2020.013.20074 (Document Reader Software). It has been declared as critical. This vulnerability affects an unknown functionality. Upgrading eliminates this vulnerability. ... read more
  • Adobe Acrobat Reader path traversal [CVE-2021-21037]
    A vulnerability was found in Adobe Acrobat Reader up to 2017.011.30188/2020.001.30018/2020.013.20074 (Document Reader Software). It has been rated as critical. This issue affects some unknown functionality. Upgrading eliminates this vulnerability. ... read more
  • Adobe Acrobat Reader JPEG File out-of-bounds write [CVE-2021-21038]
    A vulnerability classified as critical has been found in Adobe Acrobat Reader up to 2017.011.30188/2020.001.30018/2020.013.20074 (Document Reader Software). Affected is an unknown part of the component JPEG File Handler. Upgrading ... read more
  • Adobe Acrobat Reader use after free [CVE-2021-21033]
    A vulnerability has been found in Adobe Acrobat Reader up to 2017.011.30188/2020.001.30018/2020.013.20074 (Document Reader Software) and classified as critical. Affected by this vulnerability is an unknown code block. Upgrading eliminates ... read more
  • Adobe Acrobat Reader use after free [CVE-2021-21035]
    A vulnerability was found in Adobe Acrobat Reader up to 2017.011.30188/2020.001.30018/2020.013.20074 (Document Reader Software). It has been classified as critical. This affects an unknown function. Upgrading eliminates this vulnerability. ... read more
  • Adobe Acrobat Reader out-of-bounds read [CVE-2021-21034]
    A vulnerability was found in Adobe Acrobat Reader up to 2017.011.30188/2020.001.30018/2020.013.20074 (Document Reader Software) and classified as problematic. Affected by this issue is some unknown processing. Upgrading eliminates this vulnerability. ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 session expiration [CVE-2021-21032]
    A vulnerability, which was classified as critical, was found in Magento up to 2.3.6/2.4.0-p1/2.4.1. Affected is an unknown code. There is no information about possible countermeasures known. It may be ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 Admin Console file cross site scripting
    A vulnerability classified as problematic has been found in Magento up to 2.3.6/2.4.0-p1/2.4.1. This affects an unknown functionality of the component Admin Console. There is no information about possible countermeasures ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 Customer Address Upload cross site scripting
    A vulnerability classified as problematic was found in Magento up to 2.3.6/2.4.0-p1/2.4.1. This vulnerability affects some unknown functionality of the component Customer Address Upload Handler. There is no information about ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 session expiration [CVE-2021-21031]
    A vulnerability, which was classified as critical, has been found in Magento up to 2.3.6/2.4.0-p1/2.4.1. This issue affects an unknown part. There is no information about possible countermeasures known. It ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 Product Layout Update xml injection
    A vulnerability was found in Magento up to 2.3.6/2.4.0-p1/2.4.1 and classified as critical. This issue affects an unknown code of the component Product Layout Update Handler. There is no information ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 GraphQL API cross-site request forgery
    A vulnerability was found in Magento up to 2.3.6/2.4.0-p1/2.4.1. It has been declared as problematic. Affected by this vulnerability is some unknown processing of the component GraphQL API. There is ... read more
  • Adobe Acrobat Reader use after free [CVE-2021-21028]
    A vulnerability was found in Adobe Acrobat Reader up to 2017.011.30188/2020.001.30018/2020.013.20074 (Document Reader Software). It has been rated as critical. Affected by this issue is an unknown function. Upgrading eliminates ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 Integrations Module improper authorization
    A vulnerability was found in Magento up to 2.3.6/2.4.0-p1/2.4.1. It has been classified as critical. Affected is an unknown code block of the component Integrations Module. There is no information ... read more
  • Adobe Acrobat Reader use after free [CVE-2021-21021]
    A vulnerability classified as critical was found in Adobe Acrobat Reader up to 2017.011.30188/2020.001.30018/2020.013.20074 (Document Reader Software). Affected by this vulnerability is an unknown function. Upgrading eliminates this vulnerability. ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 Product Module resource injection
    A vulnerability, which was classified as critical, has been found in Magento up to 2.3.6/2.4.0-p1/2.4.1. Affected by this issue is an unknown functionality of the component Product Module. There is ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 Search Module sql injection
    A vulnerability has been found in Magento up to 2.3.6/2.4.0-p1/2.4.1 and classified as critical. This vulnerability affects an unknown part of the component Search Module. There is no information about ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 Admin Console cross site scripting
    A vulnerability, which was classified as problematic, was found in Magento up to 2.3.6/2.4.0-p1/2.4.1. This affects some unknown functionality of the component Admin Console. There is no information about possible ... read more
  • Adobe Acrobat Reader heap-based overflow [CVE-2021-21017]
    A vulnerability was found in Adobe Acrobat Reader up to 2017.011.30188/2020.001.30018/2020.013.20074 (Document Reader Software). It has been classified as critical. This affects an unknown part. Upgrading eliminates this vulnerability. ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 Widgets Module xml injection
    A vulnerability was found in Magento up to 2.3.6/2.4.0-p1/2.4.1. It has been rated as critical. This issue affects an unknown code block of the component Widgets Module. There is no ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 Login as Customer Module access control
    A vulnerability classified as critical has been found in Magento up to 2.3.6/2.4.0-p1/2.4.1. Affected is some unknown processing of the component Login as Customer Module. There is no information about ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 Scheduled Operation Module os command injection
    A vulnerability was found in Magento up to 2.3.6/2.4.0-p1/2.4.1. It has been declared as critical. This vulnerability affects an unknown code of the component Scheduled Operation Module. There is no ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 unrestricted upload [CVE-2021-21014]
    A vulnerability, which was classified as critical, was found in Magento up to 2.3.6/2.4.0-p1/2.4.1. Affected is an unknown function. There is no information about possible countermeasures known. It may be ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 Customer Attribute os command injection
    A vulnerability has been found in Magento up to 2.3.6/2.4.0-p1/2.4.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Customer Attribute Handler. There is ... read more
  • Magento up to 2.3.6/2.4.0-p1/2.4.1 WebAPI os command injection
    A vulnerability was found in Magento up to 2.3.6/2.4.0-p1/2.4.1 and classified as critical. Affected by this issue is some unknown functionality of the component WebAPI. There is no information about ... read more
  • IBM Security Verify Information Queue 1.0.6/1.0.7 cross-site request forgery
    A vulnerability classified as problematic has been found in IBM Security Verify Information Queue 1.0.6/1.0.7. This affects an unknown code. There is no information about possible countermeasures known. It may ... read more
  • IBM Security Verify Information Queue 1.0.6/1.0.7 Cookie denial of service
    A vulnerability classified as problematic was found in IBM Security Verify Information Queue 1.0.6/1.0.7. This vulnerability affects an unknown code block of the component Cookie Handler. There is no information ... read more
  • IBM Security Verify Information Queue 1.0.6/1.0.7 encoding error
    A vulnerability, which was classified as problematic, has been found in IBM Security Verify Information Queue 1.0.6/1.0.7. There is no information about possible countermeasures known. It may be suggested to ... read more
  • Hirschmann OS2/RSP/RSPE up to 08.2.x HSR Ring denial of service
    A vulnerability was found in Hirschmann OS2, RSP and RSPE up to 08.2.x. It has been classified as problematic. Affected is an unknown functionality of the component HSR Ring Handler. ... read more
  • podman up to 1.6.x Container authorization
    A vulnerability was found in podman up to 1.6.x. It has been declared as critical. Affected by this vulnerability is some unknown functionality of the component Container Handler. Upgrading to ... read more
  • IBM Security Verify Information Queue 1.0.6/1.0.7 information exposure
    A vulnerability was found in IBM Security Verify Information Queue 1.0.6/1.0.7. It has been rated as problematic. Affected by this issue is an unknown part. There is no information about ... read more
  • SuSE CaaS Platform up to 4.5 permission assignment [CVE-2020-8029]
    A vulnerability, which was classified as problematic, was found in SuSE CaaS Platform up to 4.5. This affects an unknown code block. Upgrading eliminates this vulnerability. ... read more
  • SuSE CaaS Platform 4.5 temp file [CVE-2020-8030]
    A vulnerability has been found in SuSE CaaS Platform 4.5 and classified as critical. This vulnerability affects some unknown processing. There is no information about possible countermeasures known. It may ... read more
  • SuSE Open Build Service up to 2.10.7 Web Page Generation cross site scripting
    A vulnerability was found in SuSE Open Build Service up to 2.10.7 and classified as problematic. This issue affects an unknown function of the component Web Page Generation Handler. Upgrading ... read more
  • Open vSwitch Packet resource consumption [CVE-2020-35498]
    A vulnerability classified as problematic has been found in Open vSwitch (version unknown). Affected is some unknown functionality of the component Packet Handler. There is no information about possible countermeasures ... read more
  • IBM Case Manager/Business Automation Workflow Web UI cross site scripting
    A vulnerability classified as problematic was found in IBM Case Manager and Business Automation Workflow (Automation Software) (affected version unknown). Affected by this vulnerability is an unknown part of the ... read more
  • SUSE Linux Enterprise Server/OpenSUSE temp file [CVE-2020-8027]
    A vulnerability, which was classified as critical, has been found in SUSE Linux Enterprise Server and OpenSUSE (Operating System) (affected version not known). Affected by this issue is an unknown ... read more
  • SolarWinds Network Performance Monitor 2020.1 HF1/2020.2 WriteToFile sql injection
    A vulnerability was found in SolarWinds Network Performance Monitor 2020.1 HF1/2020.2 (Network Management Software). It has been rated as critical. This issue affects the function WriteToFile. ... read more
  • Netgear Nighthawk AC2400 1.2.0.62_1.0.1 mini_httpd funjsq_access_token command injection
    A vulnerability was found in Netgear R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100 and Nighthawk AC2400 1.2.0.62_1.0.1 (Wireless LAN Software). It has been classified ... read more
  • Qognify Ocularis 5.9.0.395 EventCoordinator Endpoint deserialization
    A vulnerability was found in Qognify Ocularis 5.9.0.395. It has been declared as very critical. This vulnerability affects an unknown function of the component EventCoordinator Endpoint. Applying a patch is ... read more
  • D-Link DAP-1860 up to 1.04B03 HNAP Service command injection
    A vulnerability, which was classified as critical, was found in D-Link DAP-1860 up to 1.04B03. Affected is an unknown part of the component HNAP Service. There is no information about ... read more
  • D-Link DAP-1860 1.04B03 on TCP uhttpd authentication bypass
    A vulnerability has been found in D-Link DAP-1860 1.04B03 on TCP and classified as critical. Affected by this vulnerability is an unknown code of the component uhttpd. There is no ... read more
  • Netgear Nighthawk AC2400 1.2.0.62_1.0.1 mini_httpd authentication bypass
    A vulnerability was found in Netgear R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100 and Nighthawk AC2400 1.2.0.62_1.0.1 (Wireless LAN Software) and classified as critical. ... read more
  • Shenzhen Yunding Oclean App 2.1.2 on Android hard-coded key [CVE-2020-25493]
    A vulnerability was found in Shenzhen Yunding Oclean App 2.1.2 on Android (Android App Software). It has been rated as problematic. Affected by this issue is some unknown processing. There ... read more
  • D-Link DVA-2800/DSL-2888A 2.3 dhttpd path command injection
    A vulnerability classified as critical was found in D-Link DVA-2800 and DSL-2888A 2.3. This vulnerability affects an unknown functionality of the component dhttpd. There is no information about possible countermeasures ... read more
  • D-Link DVA-2800/DSL-2888A 2.3 dhttpd authentication bypass
    A vulnerability, which was classified as critical, has been found in D-Link DVA-2800 and DSL-2888A 2.3. This issue affects some unknown functionality of the component dhttpd. There is no information ... read more
  • Netgear Orbi 2.5.1.16 UA_Parser Utility os command injection
    A vulnerability classified as critical has been found in Netgear Orbi 2.5.1.16. This affects an unknown function of the component UA_Parser Utility. There is no information about possible countermeasures known. ... read more
  • Teradici Cloud Access Connector up to 17 Web Application Pages authentication bypass
    A vulnerability was found in Teradici Cloud Access Connector up to 17 (Cloud Software) and classified as critical. This issue affects an unknown part of the component Web Application Pages. ... read more
  • Teradici Cloud Access Connector up to 31 Web Form cross-site request forgery
    A vulnerability was found in Teradici Cloud Access Connector up to 31 (Cloud Software). It has been classified as problematic. Affected is an unknown code of the component Web Form. ... read more
  • KeyCloak 7.0.1 Email information exposure
    A vulnerability was found in KeyCloak 7.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown code block of the component Email Handler. There is no ... read more
Older posts

integratus systems © 2021

KAVI IS iCOMMEX Platform v 02.25 Sunday, February 28, 2021

  • Exchange Members |
  • Exchange Services |
  • Exchange Products |
  • Exchange Pricing |
  • Blog |
  • Disclaimer |
  • Terms |
  • Privacy |
  • Forgot Password ? |
  • About-Connect

Login

Login to integratus systems Exchange Platform Services

Forgot password?
Register Now

Hello

  • Your Account Type is
  • Your Mail Id is
  • Your Username is

Security Briefing Search

PDF Library Search

infrastructure Search

Reset Password

Reset Password

You have no permission to access this content