Neil Williams pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d7be4e68 by Neil Williams at 2022-05-26T09:53:24+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8365,7 +8365,7 @@ CVE-2022-26841
CVE-2022-26837
RESERVED
CVE-2022-26833 (An improper authentication vulnerability exists in the REST
API functi ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26515
RESERVED
CVE-2022-26513
@@ -12986,7 +12986,7 @@ CVE-2021-46711
CVE-2021-46710
RESERVED
CVE-2022-27169 (An information disclosure vulnerability exists in the OAS
Engine Secur ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-27167 (Privilege escalation vulnerability in Windows products of
ESET, spol. ...)
NOT-FOR-US: ESET
CVE-2022-27166
@@ -12996,19 +12996,19 @@ CVE-2022-26511 (WPS Presentation 11.8.0.5745
insecurely load d3dx9_41.dll when o
CVE-2022-26510 (A firmware update vulnerability exists in the iburn firmware
checks fu ...)
NOT-FOR-US: InHand Networks InRouter302
CVE-2022-26303 (An external config control vulnerability exists in the OAS
Engine Secu ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26082 (A file write vulnerability exists in the OAS Engine
SecureTransferFile ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26081 (The installer of WPS Office Version 10.8.0.5745 insecurely
load shcore ...)
NOT-FOR-US: WPS Office
CVE-2022-26077 (A cleartext transmission of sensitive information
vulnerability exists ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26067 (An information disclosure vulnerability exists in the OAS
Engine Secur ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26043 (An external config control vulnerability exists in the OAS
Engine Secu ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26026 (A denial of service vulnerability exists in the OAS Engine
SecureConfi ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-25969 (The installer of WPS Office Version 10.8.0.6186 insecurely
load VERSIO ...)
NOT-FOR-US: WPS Office
CVE-2022-25949 (The kernel mode driver kwatch3 of KINGSOFT Internet Security 9
Plus Ve ...)
@@ -30789,7 +30789,7 @@ CVE-2022-22129
CVE-2022-22128
RESERVED
CVE-2022-22127 (Tableau is aware of a broken access control vulnerability
present in T ...)
- TODO: check
+ NOT-FOR-US: Tableau Server
CVE-2022-22126 (Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored
XSS via ...)
NOT-FOR-US: Openmct
CVE-2022-22125 (In Halo, versions v1.0.0 to v1.4.17 (latest) are vulnerable to
Stored ...)
@@ -32077,7 +32077,7 @@ CVE-2022-21953
CVE-2022-21952
RESERVED
CVE-2022-21951 (A Missing Encryption of Sensitive Data vulnerability in SUSE
Rancher, ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2022-21950
RESERVED
CVE-2022-21949 (A Improper Restriction of XML External Entity Reference
vulnerability ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d7be4e680bbce2e9eb0ebd6d7d9b1058e0d2b781
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d7be4e680bbce2e9eb0ebd6d7d9b1058e0d2b781
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
