Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
41eb181e by security tracker role at 2022-06-14T20:10:23+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,255 @@
+CVE-2022-33329
+ RESERVED
+CVE-2022-33328
+ RESERVED
+CVE-2022-33327
+ RESERVED
+CVE-2022-33326
+ RESERVED
+CVE-2022-33325
+ RESERVED
+CVE-2022-33324
+ RESERVED
+CVE-2022-33323
+ RESERVED
+CVE-2022-33322
+ RESERVED
+CVE-2022-33321
+ RESERVED
+CVE-2022-33320
+ RESERVED
+CVE-2022-33319
+ RESERVED
+CVE-2022-33318
+ RESERVED
+CVE-2022-33317
+ RESERVED
+CVE-2022-33316
+ RESERVED
+CVE-2022-33315
+ RESERVED
+CVE-2022-33314
+ RESERVED
+CVE-2022-33313
+ RESERVED
+CVE-2022-33312
+ RESERVED
+CVE-2022-33309
+ RESERVED
+CVE-2022-33308
+ RESERVED
+CVE-2022-33307
+ RESERVED
+CVE-2022-33306
+ RESERVED
+CVE-2022-33305
+ RESERVED
+CVE-2022-33304
+ RESERVED
+CVE-2022-33303
+ RESERVED
+CVE-2022-33302
+ RESERVED
+CVE-2022-33301
+ RESERVED
+CVE-2022-33300
+ RESERVED
+CVE-2022-33299
+ RESERVED
+CVE-2022-33298
+ RESERVED
+CVE-2022-33297
+ RESERVED
+CVE-2022-33296
+ RESERVED
+CVE-2022-33295
+ RESERVED
+CVE-2022-33294
+ RESERVED
+CVE-2022-33293
+ RESERVED
+CVE-2022-33292
+ RESERVED
+CVE-2022-33291
+ RESERVED
+CVE-2022-33290
+ RESERVED
+CVE-2022-33289
+ RESERVED
+CVE-2022-33288
+ RESERVED
+CVE-2022-33287
+ RESERVED
+CVE-2022-33286
+ RESERVED
+CVE-2022-33285
+ RESERVED
+CVE-2022-33284
+ RESERVED
+CVE-2022-33283
+ RESERVED
+CVE-2022-33282
+ RESERVED
+CVE-2022-33281
+ RESERVED
+CVE-2022-33280
+ RESERVED
+CVE-2022-33279
+ RESERVED
+CVE-2022-33278
+ RESERVED
+CVE-2022-33277
+ RESERVED
+CVE-2022-33276
+ RESERVED
+CVE-2022-33275
+ RESERVED
+CVE-2022-33274
+ RESERVED
+CVE-2022-33273
+ RESERVED
+CVE-2022-33272
+ RESERVED
+CVE-2022-33271
+ RESERVED
+CVE-2022-33270
+ RESERVED
+CVE-2022-33269
+ RESERVED
+CVE-2022-33268
+ RESERVED
+CVE-2022-33267
+ RESERVED
+CVE-2022-33266
+ RESERVED
+CVE-2022-33265
+ RESERVED
+CVE-2022-33264
+ RESERVED
+CVE-2022-33263
+ RESERVED
+CVE-2022-33262
+ RESERVED
+CVE-2022-33261
+ RESERVED
+CVE-2022-33260
+ RESERVED
+CVE-2022-33259
+ RESERVED
+CVE-2022-33258
+ RESERVED
+CVE-2022-33257
+ RESERVED
+CVE-2022-33256
+ RESERVED
+CVE-2022-33255
+ RESERVED
+CVE-2022-33254
+ RESERVED
+CVE-2022-33253
+ RESERVED
+CVE-2022-33252
+ RESERVED
+CVE-2022-33251
+ RESERVED
+CVE-2022-33250
+ RESERVED
+CVE-2022-33249
+ RESERVED
+CVE-2022-33248
+ RESERVED
+CVE-2022-33247
+ RESERVED
+CVE-2022-33246
+ RESERVED
+CVE-2022-33245
+ RESERVED
+CVE-2022-33244
+ RESERVED
+CVE-2022-33243
+ RESERVED
+CVE-2022-33242
+ RESERVED
+CVE-2022-33241
+ RESERVED
+CVE-2022-33240
+ RESERVED
+CVE-2022-33239
+ RESERVED
+CVE-2022-33238
+ RESERVED
+CVE-2022-33237
+ RESERVED
+CVE-2022-33236
+ RESERVED
+CVE-2022-33235
+ RESERVED
+CVE-2022-33234
+ RESERVED
+CVE-2022-33233
+ RESERVED
+CVE-2022-33232
+ RESERVED
+CVE-2022-33231
+ RESERVED
+CVE-2022-33230
+ RESERVED
+CVE-2022-33229
+ RESERVED
+CVE-2022-33228
+ RESERVED
+CVE-2022-33227
+ RESERVED
+CVE-2022-33226
+ RESERVED
+CVE-2022-33225
+ RESERVED
+CVE-2022-33224
+ RESERVED
+CVE-2022-33223
+ RESERVED
+CVE-2022-33222
+ RESERVED
+CVE-2022-33221
+ RESERVED
+CVE-2022-33220
+ RESERVED
+CVE-2022-33219
+ RESERVED
+CVE-2022-33218
+ RESERVED
+CVE-2022-33217
+ RESERVED
+CVE-2022-33216
+ RESERVED
+CVE-2022-33215
+ RESERVED
+CVE-2022-33214
+ RESERVED
+CVE-2022-33213
+ RESERVED
+CVE-2022-33212
+ RESERVED
+CVE-2022-33211
+ RESERVED
+CVE-2022-33210
+ RESERVED
+CVE-2022-33146
+ RESERVED
+CVE-2022-32585
+ RESERVED
+CVE-2022-28127
+ RESERVED
+CVE-2022-2082
+ RESERVED
+CVE-2022-2081
+ RESERVED
+CVE-2022-2080
+ RESERVED
+CVE-2022-2079 (Cross-site Scripting (XSS) - Stored in GitHub repository
nocodb/nocodb ...)
+ TODO: check
+CVE-2022-2078
+ RESERVED
CVE-2022-33207
RESERVED
CVE-2022-33206
@@ -38,10 +290,10 @@ CVE-2022-29472
RESERVED
CVE-2022-27804
RESERVED
-CVE-2022-2077
- RESERVED
-CVE-2022-2076
- RESERVED
+CVE-2022-2077 (** DISPUTED ** A vulnerability was found in Microsoft O365 and
classif ...)
+ TODO: check
+CVE-2022-2076 (** DISPUTED ** A vulnerability has been found in Microsoft O365
and cl ...)
+ TODO: check
CVE-2022-2075
RESERVED
CVE-2022-2074
@@ -1380,16 +1632,16 @@ CVE-2022-32563 (An issue was discovered in Couchbase
Sync Gateway 3.x before 3.0
NOT-FOR-US: Couchbase Sync Gateway
CVE-2022-32562 (An issue was discovered in Couchbase Server before 7.0.4.
Operations m ...)
NOT-FOR-US: Couchbase Server
-CVE-2022-32561
- RESERVED
+CVE-2022-32561 (An issue was discovered in Couchbase Server before 6.6.5 and
7.x befor ...)
+ TODO: check
CVE-2022-32560 (An issue was discovered in Couchbase Server before 7.0.4. XDCR
lacks r ...)
NOT-FOR-US: Couchbase Server
-CVE-2022-32559
- RESERVED
+CVE-2022-32559 (An issue was discovered in Couchbase Server before 7.0.4.
Random HTTP ...)
+ TODO: check
CVE-2022-32558 (An issue was discovered in Couchbase Server before 7.0.4.
Sample bucke ...)
NOT-FOR-US: Couchbase Server
-CVE-2022-32557
- RESERVED
+CVE-2022-32557 (An issue was discovered in Couchbase Server before 7.0.4. The
Index Se ...)
+ TODO: check
CVE-2022-32556
RESERVED
CVE-2022-32555
@@ -1942,14 +2194,14 @@ CVE-2022-32369
RESERVED
CVE-2022-32368
RESERVED
-CVE-2022-32367
- RESERVED
-CVE-2022-32366
- RESERVED
-CVE-2022-32365
- RESERVED
-CVE-2022-32364
- RESERVED
+CVE-2022-32367 (Product Show Room Site v1.0 is vulnerable to SQL Injection via
/psrs/a ...)
+ TODO: check
+CVE-2022-32366 (Product Show Room Site v1.0 is vulnerable to SQL Injection via
/psrs/a ...)
+ TODO: check
+CVE-2022-32365 (Product Show Room Site v1.0 is vulnerable to SQL Injection via
/psrs/a ...)
+ TODO: check
+CVE-2022-32364 (Product Show Room Site v1.0 is vulnerable to SQL Injection via
/psrs/a ...)
+ TODO: check
CVE-2022-32363
RESERVED
CVE-2022-32362
@@ -1972,56 +2224,56 @@ CVE-2022-32354
RESERVED
CVE-2022-32353
RESERVED
-CVE-2022-32352
- RESERVED
-CVE-2022-32351
- RESERVED
-CVE-2022-32350
- RESERVED
-CVE-2022-32349
- RESERVED
-CVE-2022-32348
- RESERVED
-CVE-2022-32347
- RESERVED
-CVE-2022-32346
- RESERVED
-CVE-2022-32345
- RESERVED
-CVE-2022-32344
- RESERVED
-CVE-2022-32343
- RESERVED
-CVE-2022-32342
- RESERVED
-CVE-2022-32341
- RESERVED
-CVE-2022-32340
- RESERVED
-CVE-2022-32339
- RESERVED
-CVE-2022-32338
- RESERVED
-CVE-2022-32337
- RESERVED
-CVE-2022-32336
- RESERVED
-CVE-2022-32335
- RESERVED
-CVE-2022-32334
- RESERVED
-CVE-2022-32333
- RESERVED
-CVE-2022-32332
- RESERVED
-CVE-2022-32331
- RESERVED
-CVE-2022-32330
- RESERVED
+CVE-2022-32352 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32351 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32350 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32349 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32348 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32347 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32346 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32345 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32344 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32343 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32342 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32341 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32340 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32339 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32338 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32337 (Hospital's Patient Records Management System v1.0 is
vulnerable to SQL ...)
+ TODO: check
+CVE-2022-32336 (Fast Food Ordering System v1.0 is vulnerable to SQL Injection
via /ffo ...)
+ TODO: check
+CVE-2022-32335 (Fast Food Ordering System v1.0 is vulnerable to SQL Injection
via /ffo ...)
+ TODO: check
+CVE-2022-32334 (Fast Food Ordering System v1.0 is vulnerable to SQL Injection
via /ffo ...)
+ TODO: check
+CVE-2022-32333 (Fast Food Ordering System v1.0 is vulnerable to SQL Injection
via /ffo ...)
+ TODO: check
+CVE-2022-32332 (Fast Food Ordering System v1.0 is vulnerable to SQL Injection
via /ffo ...)
+ TODO: check
+CVE-2022-32331 (Fast Food Ordering System v1.0 is vulnerable to SQL Injection
via /ffo ...)
+ TODO: check
+CVE-2022-32330 (Fast Food Ordering System v1.0 is vulnerable to SQL Injection
via /ffo ...)
+ TODO: check
CVE-2022-32329
RESERVED
-CVE-2022-32328
- RESERVED
+CVE-2022-32328 (Fast Food Ordering System v1.0 is vulnerable to Delete any
file. via / ...)
+ TODO: check
CVE-2022-32327
RESERVED
CVE-2022-32326
@@ -2228,10 +2480,10 @@ CVE-2022-32296 (The Linux kernel before 5.17.9 allows
TCP servers to identify cl
NOTE:
https://git.kernel.org/linus/4c2c8f03a5ab7cb04ec64724d7d176d00bcc91e5 (5.18-rc6)
CVE-2022-32287
RESERVED
-CVE-2022-32286
- RESERVED
-CVE-2022-32285
- RESERVED
+CVE-2022-32286 (A vulnerability has been identified in Mendix SAML Module
(Mendix 7 co ...)
+ TODO: check
+CVE-2022-32285 (A vulnerability has been identified in Mendix SAML Module
(Mendix 7 co ...)
+ TODO: check
CVE-2022-32279
RESERVED
CVE-2022-32278 (XFCE 4.16 allows attackers to execute arbitrary code because
xdg-open ...)
@@ -2287,30 +2539,30 @@ CVE-2022-32264
RESERVED
CVE-2022-32263
RESERVED
-CVE-2022-32262
- RESERVED
-CVE-2022-32261
- RESERVED
-CVE-2022-32260
- RESERVED
-CVE-2022-32259
- RESERVED
-CVE-2022-32258
- RESERVED
+CVE-2022-32262 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
+CVE-2022-32261 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
+CVE-2022-32260 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
+CVE-2022-32259 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
+CVE-2022-32258 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
CVE-2022-32257
RESERVED
-CVE-2022-32256
- RESERVED
-CVE-2022-32255
- RESERVED
-CVE-2022-32254
- RESERVED
-CVE-2022-32253
- RESERVED
-CVE-2022-32252
- RESERVED
-CVE-2022-32251
- RESERVED
+CVE-2022-32256 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
+CVE-2022-32255 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
+CVE-2022-32254 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
+CVE-2022-32253 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
+CVE-2022-32252 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
+CVE-2022-32251 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
CVE-2022-32250 (net/netfilter/nf_tables_api.c in the Linux kernel through
5.18.1 allow ...)
TODO: check with MITRE, duplicate of now as well assigned CVE-2022-1966
CVE-2022-32249
@@ -2619,8 +2871,8 @@ CVE-2022-32147
RESERVED
CVE-2022-32146
RESERVED
-CVE-2022-32145
- RESERVED
+CVE-2022-32145 (A vulnerability has been identified in Teamcenter Active
Workspace V5. ...)
+ TODO: check
CVE-2022-32144
RESERVED
CVE-2022-32143
@@ -3249,12 +3501,12 @@ CVE-2022-31849
RESERVED
CVE-2022-31848
RESERVED
-CVE-2022-31847
- RESERVED
-CVE-2022-31846
- RESERVED
-CVE-2022-31845
- RESERVED
+CVE-2022-31847 (A vulnerability in /cgi-bin/ExportAllSettings.sh of WAVLINK
WN579 X3 M ...)
+ TODO: check
+CVE-2022-31846 (A vulnerability in live_mfg.shtml of WAVLINK WN535 G3
M35G3R.V5030.180 ...)
+ TODO: check
+CVE-2022-31845 (A vulnerability in live_check.shtml of WAVLINK WN535 G3
M35G3R.V5030.1 ...)
+ TODO: check
CVE-2022-31844
RESERVED
CVE-2022-31843
@@ -4054,8 +4306,8 @@ CVE-2022-1888
CVE-2021-4231 (A vulnerability was found in Angular up to
11.0.4/11.1.0-next.2. It ha ...)
NOT-FOR-US: angular/angular - replacement for deprecated angularjs
NOTE: AngularJS upstream support has officially ended as of January 2022
-CVE-2022-31619
- RESERVED
+CVE-2022-31619 (A vulnerability has been identified in Teamcenter V12.4 (All
versions ...)
+ TODO: check
CVE-2022-1887
RESERVED
CVE-2022-1886 (Heap-based Buffer Overflow in GitHub repository vim/vim prior
to 8.2. ...)
@@ -4580,8 +4832,8 @@ CVE-2022-31467 (A DLL hijacking vulnerability in the
installed for Quick Heal To
NOT-FOR-US: Quick Heal Total Security
CVE-2022-31466 (Time of Check - Time of Use (TOCTOU) vulnerability in Quick
Heal Total ...)
NOT-FOR-US: Quick Heal Total Security
-CVE-2022-31465
- RESERVED
+CVE-2022-31465 (A vulnerability has been identified in Xpedition Designer (All
version ...)
+ TODO: check
CVE-2022-31464
RESERVED
CVE-2022-31463 (Owl Labs Meeting Owl 5.2.0.15 does not require a password for
Bluetoot ...)
@@ -4704,8 +4956,8 @@ CVE-2022-31405
RESERVED
CVE-2022-31404
RESERVED
-CVE-2022-31403
- RESERVED
+CVE-2022-31403 (ITOP v3.0.1 was discovered to contain a cross-site scripting
(XSS) vul ...)
+ TODO: check
CVE-2022-31402 (ITOP v3.0.1 was discovered to contain a cross-site scripting
(XSS) vul ...)
NOT-FOR-US: ITOP
CVE-2022-31401
@@ -4888,14 +5140,14 @@ CVE-2022-31313 (api-res-py package in PyPI 0.1 is
vulnerable to a code execution
TODO: check
CVE-2022-31312
RESERVED
-CVE-2022-31311
- RESERVED
+CVE-2022-31311 (An issue in adm.cgi of WAVLINK AERIAL X 1200M
M79X3.V5030.180719 allow ...)
+ TODO: check
CVE-2022-31310
RESERVED
-CVE-2022-31309
- RESERVED
-CVE-2022-31308
- RESERVED
+CVE-2022-31309 (A vulnerability in live_check.shtml of WAVLINK AERIAL X 1200M
M79X3.V5 ...)
+ TODO: check
+CVE-2022-31308 (A vulnerability in live_mfg.shtml of WAVLINK AERIAL X 1200M
M79X3.V503 ...)
+ TODO: check
CVE-2022-31307
RESERVED
CVE-2022-31306
@@ -4932,8 +5184,8 @@ CVE-2022-31291
RESERVED
CVE-2022-31290
RESERVED
-CVE-2022-31289
- RESERVED
+CVE-2022-31289 (https://ossindex.sonatype.org/ Sonatype Nexus Repository
Manager OSS 3 ...)
+ TODO: check
CVE-2022-31288
RESERVED
CVE-2022-31287 (An issue was discovered in Bento4 v1.2. There is an allocation
size re ...)
@@ -4964,8 +5216,8 @@ CVE-2022-31275
RESERVED
CVE-2022-31274
RESERVED
-CVE-2022-31273
- RESERVED
+CVE-2022-31273 (An issue in TopIDP3000 Topsec Operating System
tos_3.3.005.665b.15_smp ...)
+ TODO: check
CVE-2022-31272
RESERVED
CVE-2022-31271
@@ -5936,8 +6188,8 @@ CVE-2022-30939
RESERVED
CVE-2022-30938
RESERVED
-CVE-2022-30937
- RESERVED
+CVE-2022-30937 (A vulnerability has been identified in EN100 Ethernet module
DNP3 IP v ...)
+ TODO: check
CVE-2022-30792
RESERVED
CVE-2022-30791
@@ -6126,10 +6378,10 @@ CVE-2022-30933
RESERVED
CVE-2022-30932
RESERVED
-CVE-2022-30931
- RESERVED
-CVE-2022-30930
- RESERVED
+CVE-2022-30931 (Employee Leaves Management System (ELMS) V 2.1 is vulnerable
to Cross ...)
+ TODO: check
+CVE-2022-30930 (Tourism Management System Version: V 3.2 is affected by: Cross
Site Re ...)
+ TODO: check
CVE-2022-30929
RESERVED
CVE-2022-30928
@@ -6182,8 +6434,8 @@ CVE-2022-30905
RESERVED
CVE-2022-30904
RESERVED
-CVE-2022-30903
- RESERVED
+CVE-2022-30903 (Nokia "G-2425G-A" Bharti Airtel Routers Hardware version
"3FE48299DEAA ...)
+ TODO: check
CVE-2022-30902
RESERVED
CVE-2022-30901
@@ -7994,14 +8246,14 @@ CVE-2022-30233 (A CWE-20: Improper Input Validation
vulnerability exists that co
NOT-FOR-US: Schneider Electric
CVE-2022-30232 (A CWE-20: Improper Input Validation vulnerability exists that
could ca ...)
NOT-FOR-US: Schneider Electric
-CVE-2022-30231
- RESERVED
-CVE-2022-30230
- RESERVED
-CVE-2022-30229
- RESERVED
-CVE-2022-30228
- RESERVED
+CVE-2022-30231 (A vulnerability has been identified in SICAM GridEdge
Essential ARM (A ...)
+ TODO: check
+CVE-2022-30230 (A vulnerability has been identified in SICAM GridEdge
Essential ARM (A ...)
+ TODO: check
+CVE-2022-30229 (A vulnerability has been identified in SICAM GridEdge
Essential ARM (A ...)
+ TODO: check
+CVE-2022-30228 (A vulnerability has been identified in SICAM GridEdge
Essential ARM (A ...)
+ TODO: check
CVE-2022-1584 (Reflected XSS in GitHub repository microweber/microweber prior
to 1.2. ...)
NOT-FOR-US: microweber
CVE-2022-1583 (The External Links in New Window / New Tab WordPress plugin
before 1.4 ...)
@@ -9822,8 +10074,8 @@ CVE-2022-29614
RESERVED
CVE-2022-29613 (Due to insufficient input validation, SAP Employee Self
Service allows ...)
NOT-FOR-US: SAP
-CVE-2022-29612
- RESERVED
+CVE-2022-29612 (SAP NetWeaver, ABAP Platform and SAP Host Agent - versions
KERNEL 7.22 ...)
+ TODO: check
CVE-2022-29611 (SAP NetWeaver Application Server for ABAP and ABAP Platform do
not per ...)
NOT-FOR-US: SAP
CVE-2022-29610 (SAP NetWeaver Application Server ABAP allows an authenticated
attacker ...)
@@ -10948,8 +11200,8 @@ CVE-2022-29240
RESERVED
CVE-2022-29239
RESERVED
-CVE-2022-29238
- RESERVED
+CVE-2022-29238 (Jupyter Notebook is a web-based notebook environment for
interactive c ...)
+ TODO: check
CVE-2022-29237 (Opencast is a free and open source solution for automated
video captur ...)
NOT-FOR-US: Opencast
CVE-2022-29236 (BigBlueButton is an open source web conferencing system.
Starting in v ...)
@@ -11494,8 +11746,8 @@ CVE-2022-29036 (Jenkins Credentials Plugin
1111.v35a_307992395 and earlier, exce
NOT-FOR-US: Jenkins plugin
CVE-2022-29035 (In JetBrains Ktor Native before version 2.0.0 random values
used for n ...)
NOT-FOR-US: JetBrains Ktor
-CVE-2022-29034
- RESERVED
+CVE-2022-29034 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
CVE-2022-29033 (A vulnerability has been identified in JT2Go (All versions
< V13.3. ...)
NOT-FOR-US: JT2Go / Siemens
CVE-2022-29032 (A vulnerability has been identified in JT2Go (All versions
< V13.3. ...)
@@ -14918,8 +15170,8 @@ CVE-2022-27891
RESERVED
CVE-2022-27890
RESERVED
-CVE-2022-27889
- RESERVED
+CVE-2022-27889 (The Multipass service was found to have code paths that could
be abuse ...)
+ TODO: check
CVE-2022-27888 (Foundry Issues service versions 2.244.0 to 2.249.0 was found
to be log ...)
NOT-FOR-US: Foundry Issues service
CVE-2022-1102
@@ -15527,8 +15779,8 @@ CVE-2022-27670 (SAP SQL Anywhere - version 17.0, allows
an authenticated attacke
NOT-FOR-US: SAP
CVE-2022-27669 (An unauthenticated user can use functions of XML Data
Archiving Servic ...)
NOT-FOR-US: SAP
-CVE-2022-27668
- RESERVED
+CVE-2022-27668 (Depending on the configuration of the route permission table
in file ' ...)
+ TODO: check
CVE-2022-27667 (Under certain conditions, SAP BusinessObjects Business
Intelligence pl ...)
NOT-FOR-US: SAP
CVE-2022-1059
@@ -16120,7 +16372,7 @@ CVE-2022-27440
RESERVED
CVE-2022-27439
RESERVED
-CVE-2022-27438 (Caphyon Ltd Advanced Installer 19.2 was discovered to contain
a remote ...)
+CVE-2022-27438 (Caphyon Ltd Advanced Installer 19.3 and earlier and many
products that ...)
NOT-FOR-US: Caphyon Ltd Advanced Installer
CVE-2022-27437
RESERVED
@@ -16812,12 +17064,12 @@ CVE-2022-0990 (Server-Side Request Forgery (SSRF) in
GitHub repository janeczku/
NOT-FOR-US: calibre-web
CVE-2020-36519 (Mimecast Email Security before 2020-01-10 allows any admin to
spoof an ...)
NOT-FOR-US: Mimecast Email Security
-CVE-2022-27221
- RESERVED
-CVE-2022-27220
- RESERVED
-CVE-2022-27219
- RESERVED
+CVE-2022-27221 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
+CVE-2022-27220 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
+CVE-2022-27219 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
+ TODO: check
CVE-2022-27194 (A vulnerability has been identified in SIMATIC PCS neo
(Administration ...)
NOT-FOR-US: Siemens
CVE-2022-0989 (An unprivileged user could use the functionality of the NS
WooCommerce ...)
@@ -18856,8 +19108,8 @@ CVE-2022-0865 (Reachable Assertion in tiffcp in libtiff
4.3.0 allows attackers t
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/385
NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/306
NOTE:
https://gitlab.com/libtiff/libtiff/-/commit/a1c933dabd0e1c54a412f3f84ae0aa58115c6067
-CVE-2022-26476
- RESERVED
+CVE-2022-26476 (A vulnerability has been identified in Spectrum Power 4 (All
versions ...)
+ TODO: check
CVE-2022-26475
RESERVED
CVE-2022-26474
@@ -21089,8 +21341,8 @@ CVE-2022-25653
RESERVED
CVE-2022-25652
RESERVED
-CVE-2022-25651
- RESERVED
+CVE-2022-25651 (Memory corruption in bluetooth host due to integer overflow
while proc ...)
+ TODO: check
CVE-2022-25650 (A vulnerability has been identified in Mendix Applications
using Mendi ...)
NOT-FOR-US: Siemens
CVE-2022-25172 (An information disclosure vulnerability exists in the web
interface se ...)
@@ -22467,8 +22719,7 @@ CVE-2022-25169 (The BPG parser in versions of Apache
Tika before 1.28.2 and 2.4.
NOTE: https://www.openwall.com/lists/oss-security/2022/05/16/4
CVE-2022-25168
RESERVED
-CVE-2022-25167 [Apache Flume JMSSource does not protect from malicious JNDI
urls]
- RESERVED
+CVE-2022-25167 (Apache Flume versions 1.4.0 through 1.9.0 are vulnerable to a
remote c ...)
NOT-FOR-US: Apache Flume
CVE-2022-24435 (Cross-site scripting vulnerability in phpUploader v1.2 and
earlier all ...)
NOT-FOR-US: phpUploader
@@ -34993,8 +35244,8 @@ CVE-2022-22105
RESERVED
CVE-2022-22104
RESERVED
-CVE-2022-22103
- RESERVED
+CVE-2022-22103 (Memory corruption in multimedia driver due to double free
while proces ...)
+ TODO: check
CVE-2022-22102
RESERVED
CVE-2022-22101
@@ -35019,24 +35270,24 @@ CVE-2022-22092
RESERVED
CVE-2022-22091
RESERVED
-CVE-2022-22090
- RESERVED
+CVE-2022-22090 (Memory corruption in audio due to use after free while
managing buffer ...)
+ TODO: check
CVE-2022-22089
RESERVED
CVE-2022-22088
RESERVED
-CVE-2022-22087
- RESERVED
-CVE-2022-22086
- RESERVED
-CVE-2022-22085
- RESERVED
-CVE-2022-22084
- RESERVED
-CVE-2022-22083
- RESERVED
-CVE-2022-22082
- RESERVED
+CVE-2022-22087 (memory corruption in video due to buffer overflow while
parsing mkv cl ...)
+ TODO: check
+CVE-2022-22086 (Memory corruption in video due to double free while parsing
3gp clip w ...)
+ TODO: check
+CVE-2022-22085 (Memory corruption in video due to buffer overflow while
reading the dt ...)
+ TODO: check
+CVE-2022-22084 (Memory corruption when extracting qcp audio file due to lack
of check ...)
+ TODO: check
+CVE-2022-22083 (Denial of service due to memory corruption while extracting
ape header ...)
+ TODO: check
+CVE-2022-22082 (Memory corruption due to possible buffer overflow while
parsing DSF he ...)
+ TODO: check
CVE-2022-22081
RESERVED
CVE-2022-22080
@@ -35055,24 +35306,24 @@ CVE-2022-22074
RESERVED
CVE-2022-22073
RESERVED
-CVE-2022-22072
- RESERVED
-CVE-2022-22071
- RESERVED
+CVE-2022-22072 (Buffer overflow can occur due to improper validation of NDP
applicatio ...)
+ TODO: check
+CVE-2022-22071 (Possible use after free when process shell memory is freed
using IOCTL ...)
+ TODO: check
CVE-2022-22070
RESERVED
CVE-2022-22069
RESERVED
-CVE-2022-22068
- RESERVED
+CVE-2022-22068 (kernel event may contain unexpected content which is not
generated by ...)
+ TODO: check
CVE-2022-22067
RESERVED
CVE-2022-22066
RESERVED
-CVE-2022-22065
- RESERVED
-CVE-2022-22064
- RESERVED
+CVE-2022-22065 (Out of bound read in WLAN HOST due to improper length check
can lead t ...)
+ TODO: check
+CVE-2022-22064 (Possible buffer over read due to lack of size validation while
unpacki ...)
+ TODO: check
CVE-2022-22063
RESERVED
CVE-2022-22062
@@ -35085,8 +35336,8 @@ CVE-2022-22059
RESERVED
CVE-2022-22058
RESERVED
-CVE-2022-22057
- RESERVED
+CVE-2022-22057 (Use after free in graphics fence due to a race condition while
closing ...)
+ TODO: check
CVE-2022-22056 (The Le-yan dental management system contains a hard-coded
credentials ...)
NOT-FOR-US: Le-yan dental management system
CVE-2022-22055 (The Le-yan dental management system contains an SQL-injection
vulnerab ...)
@@ -41239,8 +41490,8 @@ CVE-2022-21506
RESERVED
CVE-2022-21505
RESERVED
-CVE-2022-21504
- RESERVED
+CVE-2022-21504 (The code in UEK6 U3 was missing an appropiate file descriptor
count to ...)
+ TODO: check
CVE-2022-21503
RESERVED
CVE-2022-21502
@@ -45808,8 +46059,8 @@ CVE-2021-42677
RESERVED
CVE-2021-42676
RESERVED
-CVE-2021-42675
- RESERVED
+CVE-2021-42675 (Kreado Kreasfero 1.5 does not properly sanitize uploaded files
to the ...)
+ TODO: check
CVE-2021-42674
RESERVED
CVE-2021-42673
@@ -52116,8 +52367,8 @@ CVE-2021-40680 (There is a Directory Traversal
vulnerability in Artica Proxy (4.
NOT-FOR-US: ArticaTech
CVE-2021-40679
RESERVED
-CVE-2021-40678
- RESERVED
+CVE-2021-40678 (In Piwigo 11.5.0, there exists a persistent cross-site
scripting in th ...)
+ TODO: check
CVE-2021-40677
RESERVED
CVE-2021-40676
@@ -52152,12 +52403,12 @@ CVE-2021-40662 (A Cross-Site Request Forgery (CSRF)
in Chamilo LMS 1.11.14 allow
NOT-FOR-US: Chamilo LMS
CVE-2021-40661
RESERVED
-CVE-2021-40660
- RESERVED
+CVE-2021-40660 (An issue was discovered in Delight Nashorn Sandbox 0.2.0.
There is an ...)
+ TODO: check
CVE-2021-40659
RESERVED
-CVE-2021-40658
- RESERVED
+CVE-2021-40658 (Textpattern 4.8.7 is affected by a HTML injection
vulnerability throug ...)
+ TODO: check
CVE-2021-40657
RESERVED
CVE-2021-40656 (libsixel before 1.10 is vulnerable to Buffer Overflow in
libsixel/src/ ...)
@@ -52178,10 +52429,10 @@ CVE-2021-40652
RESERVED
CVE-2021-40651 (OS4Ed OpenSIS Community 8.0 is vulnerable to a local file
inclusion vu ...)
NOT-FOR-US: OS4Ed OpenSIS Community
-CVE-2021-40650
- RESERVED
-CVE-2021-40649
- RESERVED
+CVE-2021-40650 (In Connx Version 6.2.0.1269 (20210623), a cookie can be issued
by the ...)
+ TODO: check
+CVE-2021-40649 (In Connx Version 6.2.0.1269 (20210623), a cookie can be issued
by the ...)
+ TODO: check
CVE-2021-40648
RESERVED
CVE-2021-40647
@@ -52212,8 +52463,8 @@ CVE-2021-40635 (OS4ED openSIS 8.0 is affected by SQL
injection in ChooseCpSearch
NOT-FOR-US: openSIS
CVE-2021-40634
RESERVED
-CVE-2021-40633
- RESERVED
+CVE-2021-40633 (A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in
giflib 5 ...)
+ TODO: check
CVE-2021-40632
RESERVED
CVE-2021-40631
@@ -52246,8 +52497,8 @@ CVE-2021-40618 (An SQL Injection vulnerability exists
in openSIS Classic 8.0 via
NOT-FOR-US: openSIS
CVE-2021-40617 (An SQL Injection vulnerability exists in openSIS Community
Edition ver ...)
NOT-FOR-US: openSIS
-CVE-2021-40616
- RESERVED
+CVE-2021-40616 (thinkcmf v5.1.7 has an unauthorized vulnerability. The
attacker can mo ...)
+ TODO: check
CVE-2021-40615
RESERVED
CVE-2021-40614
@@ -60981,8 +61232,8 @@ CVE-2021-37184 (A vulnerability has been identified in
Industrial Edge Managemen
NOT-FOR-US: Siemens
CVE-2021-37183 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
NOT-FOR-US: Siemens
-CVE-2021-37182
- RESERVED
+CVE-2021-37182 (A vulnerability has been identified in SCALANCE XM408-4C (All
versions ...)
+ TODO: check
CVE-2021-37181 (A vulnerability has been identified in Cerberus DMS V4.0 (All
versions ...)
NOT-FOR-US: Siemens
CVE-2021-37180 (A vulnerability has been identified in Solid Edge SE2021 (All
Versions ...)
@@ -65952,46 +66203,46 @@ CVE-2021-35132
RESERVED
CVE-2021-35131
RESERVED
-CVE-2021-35130
- RESERVED
-CVE-2021-35129
- RESERVED
+CVE-2021-35130 (Memory corruption in graphics support layer due to use after
free cond ...)
+ TODO: check
+CVE-2021-35129 (Memory corruption in BT controller due to improper length
check while ...)
+ TODO: check
CVE-2021-35128
RESERVED
CVE-2021-35127
RESERVED
-CVE-2021-35126
- RESERVED
+CVE-2021-35126 (Memory corruption in DSP service due to improper validation of
input p ...)
+ TODO: check
CVE-2021-35125
RESERVED
CVE-2021-35124
RESERVED
-CVE-2021-35123
- RESERVED
+CVE-2021-35123 (Buffer copy in GATT multi notification due to improper length
check fo ...)
+ TODO: check
CVE-2021-35122
RESERVED
-CVE-2021-35121
- RESERVED
-CVE-2021-35120
- RESERVED
-CVE-2021-35119
- RESERVED
-CVE-2021-35118
- RESERVED
+CVE-2021-35121 (An array index is improperly used to lock and unlock a mutex
which can ...)
+ TODO: check
+CVE-2021-35120 (Improper handling between export and release functions on the
same han ...)
+ TODO: check
+CVE-2021-35119 (Potential out of Bounds read in FIPS event processing due to
improper ...)
+ TODO: check
+CVE-2021-35118 (An out-of-bounds write can occur due to an incorrect input
check in th ...)
+ TODO: check
CVE-2021-35117 (An Out of Bounds read may potentially occur while processing
an IBSS b ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2021-35116
- RESERVED
+CVE-2021-35116 (APK can load a crafted model into the CDSP which can lead to a
comprom ...)
+ TODO: check
CVE-2021-35115 (Improper handling of multiple session supported by PVM backend
can lea ...)
NOT-FOR-US: Qualcomm
-CVE-2021-35114
- RESERVED
+CVE-2021-35114 (Improper buffer initialization on the backend driver can lead
to buffe ...)
+ TODO: check
CVE-2021-35113
RESERVED
-CVE-2021-35112
- RESERVED
-CVE-2021-35111
- RESERVED
+CVE-2021-35112 (A user with user level permission can access graphics
protected region ...)
+ TODO: check
+CVE-2021-35111 (Improper validation of tag id while RRC sending tag id to MAC
can lead ...)
+ TODO: check
CVE-2021-35110 (Possible buffer overflow to improper validation of hash
segment of fil ...)
NOT-FOR-US: Qualcomm
CVE-2021-35109
@@ -66004,76 +66255,76 @@ CVE-2021-35106 (Possible out of bound read due to
improper length calculation of
NOT-FOR-US: Qualcomm components for Android
CVE-2021-35105 (Possible out of bounds access due to improper input validation
during ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2021-35104
- RESERVED
+CVE-2021-35104 (Possible buffer overflow due to improper parsing of headers
while play ...)
+ TODO: check
CVE-2021-35103 (Possible out of bound write due to improper validation of
number of ti ...)
NOT-FOR-US: Qualcomm QCA-WiFi for Android
-CVE-2021-35102
- RESERVED
-CVE-2021-35101
- RESERVED
-CVE-2021-35100
- RESERVED
+CVE-2021-35102 (Possible buffer overflow due to lack of validation for the
length of N ...)
+ TODO: check
+CVE-2021-35101 (Improper handling of writes to virtual GICR control can lead
to assert ...)
+ TODO: check
+CVE-2021-35100 (Possible buffer over read due to improper calculation of
string length ...)
+ TODO: check
CVE-2021-35099
RESERVED
-CVE-2021-35098
- RESERVED
+CVE-2021-35098 (Improper validation of session id in PCM routing process can
lead to m ...)
+ TODO: check
CVE-2021-35097
RESERVED
-CVE-2021-35096
- RESERVED
-CVE-2021-35095
- RESERVED
-CVE-2021-35094
- RESERVED
+CVE-2021-35096 (Improper memory allocation during counter check DLM handling
can lead ...)
+ TODO: check
+CVE-2021-35095 (Improper serialization of message queue client registration
can lead t ...)
+ TODO: check
+CVE-2021-35094 (Improper verification of timeout-based authentication in
identity cred ...)
+ TODO: check
CVE-2021-35093 (Possible memory corruption in BT controller when it receives
an oversi ...)
NOT-FOR-US: Qualcomm
-CVE-2021-35092
- RESERVED
-CVE-2021-35091
- RESERVED
-CVE-2021-35090
- RESERVED
+CVE-2021-35092 (Processing DCB/AVB algorithm with an invalid queue index from
IOCTL re ...)
+ TODO: check
+CVE-2021-35091 (Possible out of bounds read due to improper typecasting while
handling ...)
+ TODO: check
+CVE-2021-35090 (Possible hypervisor memory corruption due to TOC TOU race
condition wh ...)
+ TODO: check
CVE-2021-35089 (Possible buffer overflow due to lack of input IB amount
validation whi ...)
NOT-FOR-US: Qualcomm
CVE-2021-35088 (Possible out of bound read due to improper validation of IE
length dur ...)
NOT-FOR-US: Qualcomm QCA-WiFi for Android
-CVE-2021-35087
- RESERVED
-CVE-2021-35086
- RESERVED
-CVE-2021-35085
- RESERVED
-CVE-2021-35084
- RESERVED
-CVE-2021-35083
- RESERVED
-CVE-2021-35082
- RESERVED
-CVE-2021-35081
- RESERVED
-CVE-2021-35080
- RESERVED
-CVE-2021-35079
- RESERVED
-CVE-2021-35078
- RESERVED
+CVE-2021-35087 (Possible null pointer access due to improper validation of
system info ...)
+ TODO: check
+CVE-2021-35086 (Possible buffer over read due to improper validation of SIB
type when ...)
+ TODO: check
+CVE-2021-35085 (Possible buffer overflow due to lack of buffer length check
during man ...)
+ TODO: check
+CVE-2021-35084 (Possible out of bound read due to lack of length check of data
length ...)
+ TODO: check
+CVE-2021-35083 (Possible out of bound read due to improper validation of
certificate c ...)
+ TODO: check
+CVE-2021-35082 (Improper integrity check can lead to race condition between
tasks PDCP ...)
+ TODO: check
+CVE-2021-35081 (Possible buffer overflow due to improper validation of SSID
length rec ...)
+ TODO: check
+CVE-2021-35080 (Disabled SMMU from secure side while RPM is assigned a secure
stream c ...)
+ TODO: check
+CVE-2021-35079 (Improper validation of permissions for third party application
accessi ...)
+ TODO: check
+CVE-2021-35078 (Possible memory leak due to improper validation of certificate
chain l ...)
+ TODO: check
CVE-2021-35077 (Possible use after free scenario in compute offloads to DSP
while mult ...)
NOT-FOR-US: Qualcomm
-CVE-2021-35076
- RESERVED
+CVE-2021-35076 (Possible null pointer dereference due to improper validation
of RRC co ...)
+ TODO: check
CVE-2021-35075 (Possible null pointer dereference due to lack of WDOG
structure valida ...)
NOT-FOR-US: Qualcomm
CVE-2021-35074 (Possible integer overflow due to improper fragment datatype
while calc ...)
NOT-FOR-US: Qualcomm
-CVE-2021-35073
- RESERVED
-CVE-2021-35072
- RESERVED
-CVE-2021-35071
- RESERVED
-CVE-2021-35070
- RESERVED
+CVE-2021-35073 (Possible assertion due to improper validation of rank
restriction fiel ...)
+ TODO: check
+CVE-2021-35072 (Possible buffer overflow due to improper validation of array
index whi ...)
+ TODO: check
+CVE-2021-35071 (Possible buffer over read due to lack of size validation while
copying ...)
+ TODO: check
+CVE-2021-35070 (RPM secure Stream can access any secure resource due to
improper SMMU ...)
+ TODO: check
CVE-2021-35069 (Improper validation of data length received from DMA buffer
can lead t ...)
NOT-FOR-US: Qualcomm
CVE-2021-35068 (Lack of null check while freeing the device information buffer
in the ...)
@@ -78347,40 +78598,40 @@ CVE-2021-30352
RESERVED
CVE-2021-30351 (An out of bound memory access can occur due to improper
validation of ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2021-30350
- RESERVED
-CVE-2021-30349
- RESERVED
+CVE-2021-30350 (Lack of MBN header size verification against input buffer can
lead to ...)
+ TODO: check
+CVE-2021-30349 (Improper access control sequence for AC database after memory
allocati ...)
+ TODO: check
CVE-2021-30348 (Improper validation of LLM utility timers availability can
lead to den ...)
NOT-FOR-US: Qualcomm
-CVE-2021-30347
- RESERVED
-CVE-2021-30346
- RESERVED
-CVE-2021-30345
- RESERVED
-CVE-2021-30344
- RESERVED
-CVE-2021-30343
- RESERVED
-CVE-2021-30342
- RESERVED
-CVE-2021-30341
- RESERVED
-CVE-2021-30340
- RESERVED
-CVE-2021-30339
- RESERVED
-CVE-2021-30338
- RESERVED
+CVE-2021-30347 (Improper integrity check can lead to race condition between
tasks PDCP ...)
+ TODO: check
+CVE-2021-30346 (RPM secure Stream can access any secure resource due to
improper SMMU ...)
+ TODO: check
+CVE-2021-30345 (RPM secure Stream can access any secure resource due to
improper SMMU ...)
+ TODO: check
+CVE-2021-30344 (Improper authorization of a replayed LTE security mode command
can lea ...)
+ TODO: check
+CVE-2021-30343 (Improper integrity check can lead to race condition between
tasks PDCP ...)
+ TODO: check
+CVE-2021-30342 (Improper integrity check can lead to race condition between
tasks PDCP ...)
+ TODO: check
+CVE-2021-30341 (Improper buffer size validation of DSM packet received can
lead to mem ...)
+ TODO: check
+CVE-2021-30340 (Reachable assertion due to improper validation of coreset in
PDCCH con ...)
+ TODO: check
+CVE-2021-30339 (Reading PRNG output may lead to improper key generation due to
lack of ...)
+ TODO: check
+CVE-2021-30338 (Improper input validation in TrustZone memory transfer
interface can l ...)
+ TODO: check
CVE-2021-30337 (Possible use after free when process shell memory is freed
using IOCTL ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2021-30336 (Possible out of bound read due to lack of domain input
validation whil ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2021-30335 (Possible assertion in QOS request due to improper validation
when mult ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2021-30334
- RESERVED
+CVE-2021-30334 (Possible use after free due to lack of null check of DRM file
status a ...)
+ TODO: check
CVE-2021-30333 (Improper validation of buffer size input to the EFS file can
lead to m ...)
NOT-FOR-US: Qualcomm
CVE-2021-30332 (Possible assertion due to improper validation of OTA
configuration in ...)
@@ -78393,8 +78644,8 @@ CVE-2021-30329 (Possible assertion due to improper
validation of TCI configurati
NOT-FOR-US: Qualcomm
CVE-2021-30328 (Possible assertion due to improper validation of invalid NR
CSI-IM res ...)
NOT-FOR-US: Qualcomm
-CVE-2021-30327
- RESERVED
+CVE-2021-30327 (Buffer overflow in sahara protocol while processing commands
leads to ...)
+ TODO: check
CVE-2021-30326 (Possible assertion due to improper size validation while
processing th ...)
NOT-FOR-US: Qualcomm
CVE-2021-30325 (Possible out of bound access of DCI resources due to lack of
validatio ...)
@@ -78485,8 +78736,8 @@ CVE-2021-30283 (Possible denial of service due to
improper handling of debug reg
NOT-FOR-US: Qualcomm components for Android
CVE-2021-30282 (Possible out of bound write in RAM partition table due to
improper val ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2021-30281
- RESERVED
+CVE-2021-30281 (XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX in Snapdragon Auto,
Snapdragon Co ...)
+ TODO: check
CVE-2021-30280
RESERVED
CVE-2021-30279 (Possible access control violation while setting current
permission for ...)
@@ -284339,7 +284590,7 @@ CVE-2018-4845 (A vulnerability has been identified in
RAPIDLab 1200 systems / RA
NOT-FOR-US: RAPIDLab
CVE-2018-4844 (A vulnerability has been identified in SIMATIC WinCC OA UI for
Android ...)
NOT-FOR-US: SIMATIC
-CVE-2018-4843 (A vulnerability has been identified in SIMATIC CP 343-1
Advanced (All ...)
+CVE-2018-4843 (A vulnerability has been identified in SIMATIC CP 343-1 (incl.
SIPLUS ...)
NOT-FOR-US: SIMATIC
CVE-2018-4842 (A vulnerability has been identified in SCALANCE X-200IRT switch
family ...)
NOT-FOR-US: Siemens SCALANCE X switches
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41eb181ea20ad276cafead709ea5632f55064a35
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41eb181ea20ad276cafead709ea5632f55064a35
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
