Alertes récentes
| CVE-2024-21386 |
.NET Denial of Service Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21404 |
.NET Denial of Service Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2023-46838 |
<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2021-38593 |
<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2023-6200 |
<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-24476 |
A buffer overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the pan/addr_resolv.c, and ws_manuf_lookup_str(), size components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-24479 |
A Buffer Overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the wsutil/to_str.c, and format_fractional_part_nsecs components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-22019 |
A vulnerability in Node.js HTTP servers allows an attacker to send a specially crafted HTTP request with chunked encoding leading to resource exhaustion and denial of service (DoS). The server reads an unbounded number of bytes from a single connection exploiting the lack of limitations on chunk extension bytes. The issue can cause CPU and network bandwidth exhaustion bypassing standard safeguards like timeouts and body size limits.
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-24478 |
An issue in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the packet-bgp.c, dissect_bgp_open(tvbuff_t*tvb, proto_tree*tree, packet_info*pinfo), optlen components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-25710 |
Apache Commons Compress: Denial of service caused by an infinite loop for a corrupted DUMP file
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-23807 |
Apache Xerces C++: Use-after-free on external DTD scan
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21329 |
Azure Connected Machine Agent Elevation of Privilege Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-20667 |
Azure DevOps Server Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2022-48624 |
close_altfile in filename.c in less before 606 omits shell_quote calls for LESSCLOSE.
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21394 |
Dynamics 365 Field Service Spoofing Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21396 |
Dynamics 365 Sales Spoofing Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21328 |
Dynamics 365 Sales Spoofing Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2023-46045 |
Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-1552 |
Incorrect code generation could have led to unexpected numeric conversions and potential undefined behavior.*Note:* This issue only affects 32-bit ARM devices. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21348 |
Internet Connection Sharing (ICS) Denial of Service Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21412 |
Internet Shortcut Files Security Feature Bypass Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-26594 |
ksmbd: validate mech token in session setup
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-24575 |
libgit2 is vulnerable to a denial of service attack in `git_revparse_single`
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-26588 |
LoongArch: BPF: Prevent out-of-bounds memory access
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21349 |
Microsoft ActiveX Data Objects Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21315 |
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21389 |
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21393 |
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21395 |
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21327 |
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21380 |
Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-26192 |
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21399 |
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21354 |
Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21355 |
Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21405 |
Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21363 |
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21347 |
Microsoft ODBC Driver Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21384 |
Microsoft Office OneNote Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-20673 |
Microsoft Office Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21402 |
Microsoft Outlook Elevation of Privilege Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21378 |
Microsoft Outlook Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21353 |
Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21350 |
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21352 |
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21358 |
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21360 |
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21361 |
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21366 |
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
| CVE-2024-21369 |
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
|
MSRC | 2026‑02‑20 | Élevée |
Page 1