Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5db9b2e4 by security tracker role at 2023-03-29T08:10:11+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,99 @@
+CVE-2023-28958
+ RESERVED
+CVE-2023-28957
+ RESERVED
+CVE-2023-28956
+ RESERVED
+CVE-2023-28955
+ RESERVED
+CVE-2023-28954
+ RESERVED
+CVE-2023-28953
+ RESERVED
+CVE-2023-28952
+ RESERVED
+CVE-2023-28951
+ RESERVED
+CVE-2023-28950
+ RESERVED
+CVE-2023-28949
+ RESERVED
+CVE-2023-28948
+ RESERVED
+CVE-2023-28947
+ RESERVED
+CVE-2023-28946
+ RESERVED
+CVE-2023-28945
+ RESERVED
+CVE-2023-28944
+ RESERVED
+CVE-2023-28943
+ RESERVED
+CVE-2023-28942
+ RESERVED
+CVE-2023-28941
+ RESERVED
+CVE-2023-28940
+ RESERVED
+CVE-2023-28939
+ RESERVED
+CVE-2023-28739
+ RESERVED
+CVE-2023-28738
+ RESERVED
+CVE-2023-28721
+ RESERVED
+CVE-2023-28658
+ RESERVED
+CVE-2023-27517
+ RESERVED
+CVE-2023-26589
+ RESERVED
+CVE-2023-25949
+ RESERVED
+CVE-2023-25945
+ RESERVED
+CVE-2023-25778
+ RESERVED
+CVE-2023-22305
+ RESERVED
+CVE-2023-1690
+ RESERVED
+CVE-2023-1689
+ RESERVED
+CVE-2023-1688
+ RESERVED
+CVE-2023-1687
+ RESERVED
+CVE-2023-1686 (A vulnerability was found in SourceCodester Young Entrepreneur
E-Negos ...)
+ TODO: check
+CVE-2023-1685 (A vulnerability was found in HadSky up to 7.11.8. It has been
declared ...)
+ TODO: check
+CVE-2023-1684 (A vulnerability was found in HadSky 7.7.16. It has been
classified as ...)
+ TODO: check
+CVE-2023-1683 (A vulnerability was found in Xunrui CMS 4.61 and classified as
problem ...)
+ TODO: check
+CVE-2023-1682 (A vulnerability has been found in Xunrui CMS 4.61 and
classified as pr ...)
+ TODO: check
+CVE-2023-1681 (A vulnerability, which was classified as problematic, was found
in Xun ...)
+ TODO: check
+CVE-2023-1680
+ RESERVED
+CVE-2023-1679 (A vulnerability classified as critical was found in
DriverGenius 9.70. ...)
+ TODO: check
+CVE-2023-1678 (A vulnerability classified as critical has been found in
DriverGenius ...)
+ TODO: check
+CVE-2023-1677 (A vulnerability was found in DriverGenius 9.70.0.346. It has
been rate ...)
+ TODO: check
+CVE-2023-1676 (A vulnerability was found in DriverGenius 9.70.0.346. It has
been decl ...)
+ TODO: check
+CVE-2023-1675 (A vulnerability was found in SourceCodester School Registration
and Fe ...)
+ TODO: check
+CVE-2023-1674 (A vulnerability was found in SourceCodester School Registration
and Fe ...)
+ TODO: check
+CVE-2023-1673
+ RESERVED
CVE-2023-28936
RESERVED
CVE-2023-28935
@@ -364,7 +460,7 @@ CVE-2023-1624
CVE-2023-1623
RESERVED
CVE-2023-1622
- RESERVED
+ REJECTED
CVE-2023-1621
RESERVED
CVE-2023-1620
@@ -706,18 +802,18 @@ CVE-2023-28725 (General Bytes Crypto Application Server
(CAS) 20230120, as distr
NOT-FOR-US: General Bytes Crypto Application Server (CAS)
CVE-2023-28723
RESERVED
-CVE-2023-28718
- RESERVED
+CVE-2023-28718 (Osprey Pump Controller version 1.01 allows users to perform
certain ac ...)
+ TODO: check
CVE-2023-28714
RESERVED
-CVE-2023-28712
- RESERVED
+CVE-2023-28712 (Osprey Pump Controller version 1.01 contains an
unauthenticated comman ...)
+ TODO: check
CVE-2023-28710
RESERVED
-CVE-2023-28654
- RESERVED
-CVE-2023-28648
- RESERVED
+CVE-2023-28654 (Osprey Pump Controller version 1.01 has a hidden
administrative accoun ...)
+ TODO: check
+CVE-2023-28648 (Osprey Pump Controller version 1.01 inputs passed to a GET
parameter a ...)
+ TODO: check
CVE-2023-28411
RESERVED
CVE-2023-28410
@@ -728,20 +824,20 @@ CVE-2023-28403
RESERVED
CVE-2023-28401
RESERVED
-CVE-2023-28398
- RESERVED
-CVE-2023-28395
- RESERVED
+CVE-2023-28398 (Osprey Pump Controller version 1.01 could allow an
unauthenticated use ...)
+ TODO: check
+CVE-2023-28395 (Osprey Pump Controller version 1.01 is vulnerable to a weak
session to ...)
+ TODO: check
CVE-2023-28385
RESERVED
CVE-2023-28376
RESERVED
-CVE-2023-28375
- RESERVED
-CVE-2023-27886
- RESERVED
-CVE-2023-27394
- RESERVED
+CVE-2023-28375 (Osprey Pump Controller version 1.01 is vulnerable to an
unauthenticate ...)
+ TODO: check
+CVE-2023-27886 (Osprey Pump Controller version 1.01 is vulnerable to an
unauthenticate ...)
+ TODO: check
+CVE-2023-27394 (Osprey Pump Controller version 1.01 is vulnerable an
unauthenticated O ...)
+ TODO: check
CVE-2023-25071
RESERVED
CVE-2023-1554
@@ -963,8 +1059,8 @@ CVE-2023-28639
RESERVED
CVE-2023-28638 (Snappier is a high performance C# implementation of the Snappy
compres ...)
TODO: check
-CVE-2023-28637
- RESERVED
+CVE-2023-28637 (DataEase is an open source data visualization analysis tool.
In Dataea ...)
+ TODO: check
CVE-2023-28636
RESERVED
CVE-2023-28635
@@ -975,8 +1071,8 @@ CVE-2023-28633
RESERVED
CVE-2023-28632
RESERVED
-CVE-2023-28631
- RESERVED
+CVE-2023-28631 (comrak is a CommonMark + GFM compatible Markdown parser and
renderer w ...)
+ TODO: check
CVE-2023-28630 (GoCD is an open source continuous delivery server. In GoCD
versions fr ...)
NOT-FOR-US: GoCD
CVE-2023-28629 (GoCD is an open source continuous delivery server. GoCD
versions befor ...)
@@ -985,8 +1081,8 @@ CVE-2023-28628 (lambdaisland/uri is a pure
Clojure/ClojureScript URI library. In
TODO: check
CVE-2023-28627 (pymedusa is an automatic video library manager for TV Shows.
In versio ...)
TODO: check
-CVE-2023-28626
- RESERVED
+CVE-2023-28626 (comrak is a CommonMark + GFM compatible Markdown parser and
renderer w ...)
+ TODO: check
CVE-2023-28625
RESERVED
CVE-2023-28624
@@ -1019,12 +1115,12 @@ CVE-2023-1520
RESERVED
CVE-2023-1519
RESERVED
-CVE-2023-1518
- RESERVED
+CVE-2023-1518 (CP Plus KVMS Pro versions 2.01.0.T.190521 and prior are
vulnerable to ...)
+ TODO: check
CVE-2023-1517 (Cross-site Scripting (XSS) - DOM in GitHub repository
pimcore/pimcore ...)
NOT-FOR-US: pimcore
-CVE-2023-1516
- RESERVED
+CVE-2023-1516 (RoboDK versions 5.5.3 and prior contain an insecure permission
assignm ...)
+ TODO: check
CVE-2023-1515 (Cross-site Scripting (XSS) - Stored in GitHub repository
pimcore/pimco ...)
NOT-FOR-US: pimcore
CVE-2023-1514
@@ -1632,8 +1728,8 @@ CVE-2023-28449
RESERVED
CVE-2023-28448 (Versionize is a framework for version tolerant
serializion/deserializa ...)
NOT-FOR-US: Versionize (firecracker-microvm / framework for version
tolerant serializion/deserialization of Rust data structures)
-CVE-2023-28447
- RESERVED
+CVE-2023-28447 (Smarty is a template engine for PHP. In affected versions
smarty did n ...)
+ TODO: check
CVE-2023-28446 (Deno is a simple, modern and secure runtime for JavaScript and
TypeScr ...)
TODO: check
CVE-2023-28445 (Deno is a runtime for JavaScript and TypeScript that uses V8
and is bu ...)
@@ -1672,8 +1768,7 @@ CVE-2023-28429 (Pimcore is an open source data and
experience management platfor
NOT-FOR-US: Pimcore
CVE-2023-28428 (PDFio is a C library for reading and writing PDF files. In
versions 1. ...)
TODO: check
-CVE-2023-28427
- RESERVED
+CVE-2023-28427 (matrix-js-sdk is a Matrix messaging protocol Client-Server SDK
for Jav ...)
- node-matrix-js-sdk <unfixed> (bug #1033621)
[bullseye] - node-matrix-js-sdk <no-dsa> (Minor issue)
[buster] - node-matrix-js-sdk <no-dsa> (Minor issue)
@@ -2804,8 +2899,8 @@ CVE-2023-28105 (go-used-util has commonly used utility
functions for Go. Version
NOT-FOR-US: go-used-util
CVE-2023-28104 (`silverstripe/graphql` serves Silverstripe data as GraphQL
representat ...)
NOT-FOR-US: silverstripe/graphql
-CVE-2023-28103
- RESERVED
+CVE-2023-28103 (matrix-react-sdk is a Matrix chat protocol SDK for React
Javascript. I ...)
+ TODO: check
CVE-2023-28102 (discordrb is an implementation of the Discord API using Ruby.
In disco ...)
TODO: check
CVE-2023-28101 (Flatpak is a system for building, distributing, and running
sandboxed ...)
@@ -5465,14 +5560,14 @@ CVE-2023-27234 (A Cross-Site Request Forgery (CSRF) in
/Sys/index.html of Jizhic
NOT-FOR-US: Jizhicms
CVE-2023-27233
RESERVED
-CVE-2023-27232
- RESERVED
-CVE-2023-27231
- RESERVED
+CVE-2023-27232 (TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to
contain a com ...)
+ TODO: check
+CVE-2023-27231 (TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to
contain a com ...)
+ TODO: check
CVE-2023-27230
RESERVED
-CVE-2023-27229
- RESERVED
+CVE-2023-27229 (TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to
contain a com ...)
+ TODO: check
CVE-2023-27228
RESERVED
CVE-2023-27227
@@ -7480,66 +7575,66 @@ CVE-2023-26358 (Creative Cloud version 5.9.1 (and
earlier) is affected by an Unt
NOT-FOR-US: Adobe
CVE-2023-26357
RESERVED
-CVE-2023-26356
- RESERVED
-CVE-2023-26355
- RESERVED
-CVE-2023-26354
- RESERVED
-CVE-2023-26353
- RESERVED
-CVE-2023-26352
- RESERVED
-CVE-2023-26351
- RESERVED
-CVE-2023-26350
- RESERVED
-CVE-2023-26349
- RESERVED
-CVE-2023-26348
- RESERVED
+CVE-2023-26356 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26355 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26354 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26353 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26352 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26351 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26350 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26349 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Use Afte ...)
+ TODO: check
+CVE-2023-26348 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
CVE-2023-26347
RESERVED
-CVE-2023-26346
- RESERVED
-CVE-2023-26345
- RESERVED
-CVE-2023-26344
- RESERVED
-CVE-2023-26343
- RESERVED
-CVE-2023-26342
- RESERVED
-CVE-2023-26341
- RESERVED
-CVE-2023-26340
- RESERVED
-CVE-2023-26339
- RESERVED
-CVE-2023-26338
- RESERVED
-CVE-2023-26337
- RESERVED
-CVE-2023-26336
- RESERVED
-CVE-2023-26335
- RESERVED
-CVE-2023-26334
- RESERVED
-CVE-2023-26333
- RESERVED
-CVE-2023-26332
- RESERVED
-CVE-2023-26331
- RESERVED
-CVE-2023-26330
- RESERVED
-CVE-2023-26329
- RESERVED
-CVE-2023-26328
- RESERVED
-CVE-2023-26327
- RESERVED
+CVE-2023-26346 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26345 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26344 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
Access ...)
+ TODO: check
+CVE-2023-26343 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26342 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26341 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26340 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26339 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26338 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26337 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Stack-ba ...)
+ TODO: check
+CVE-2023-26336 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Use Afte ...)
+ TODO: check
+CVE-2023-26335 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26334 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
Access ...)
+ TODO: check
+CVE-2023-26333 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26332 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26331 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26330 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26329 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26328 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-26327 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
CVE-2023-26326 (The BuddyForms WordPress plugin, in versions prior to 2.7.8,
was affec ...)
NOT-FOR-US: WordPress plugin
CVE-2023-26325 (The 'rx_export_review' action in the ReviewX WordPress Plugin
version ...)
@@ -8805,64 +8900,64 @@ CVE-2023-25909 (HGiga OAKlouds file uploading function
does not restrict upload
NOT-FOR-US: HGiga OAKlouds
CVE-2023-25908 (Adobe Photoshop versions 23.5.3 (and earlier) and 24.1.1 (and
earlier) ...)
NOT-FOR-US: Adobe
-CVE-2023-25907
- RESERVED
-CVE-2023-25906
- RESERVED
-CVE-2023-25905
- RESERVED
-CVE-2023-25904
- RESERVED
-CVE-2023-25903
- RESERVED
-CVE-2023-25902
- RESERVED
-CVE-2023-25901
- RESERVED
-CVE-2023-25900
- RESERVED
-CVE-2023-25899
- RESERVED
-CVE-2023-25898
- RESERVED
-CVE-2023-25897
- RESERVED
-CVE-2023-25896
- RESERVED
-CVE-2023-25895
- RESERVED
-CVE-2023-25894
- RESERVED
-CVE-2023-25893
- RESERVED
-CVE-2023-25892
- RESERVED
-CVE-2023-25891
- RESERVED
-CVE-2023-25890
- RESERVED
-CVE-2023-25889
- RESERVED
-CVE-2023-25888
- RESERVED
-CVE-2023-25887
- RESERVED
-CVE-2023-25886
- RESERVED
-CVE-2023-25885
- RESERVED
-CVE-2023-25884
- RESERVED
-CVE-2023-25883
- RESERVED
-CVE-2023-25882
- RESERVED
-CVE-2023-25881
- RESERVED
-CVE-2023-25880
- RESERVED
-CVE-2023-25879
- RESERVED
+CVE-2023-25907 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25906 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25905 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25904 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25903 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
Integer ...)
+ TODO: check
+CVE-2023-25902 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25901 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
Imprope ...)
+ TODO: check
+CVE-2023-25900 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25899 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Use Afte ...)
+ TODO: check
+CVE-2023-25898 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Heap-bas ...)
+ TODO: check
+CVE-2023-25897 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Heap-bas ...)
+ TODO: check
+CVE-2023-25896 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Use Afte ...)
+ TODO: check
+CVE-2023-25895 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Heap-bas ...)
+ TODO: check
+CVE-2023-25894 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Use Afte ...)
+ TODO: check
+CVE-2023-25893 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Use Afte ...)
+ TODO: check
+CVE-2023-25892 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25891 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25890 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Heap-bas ...)
+ TODO: check
+CVE-2023-25889 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25888 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25887 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25886 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25885 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Heap-bas ...)
+ TODO: check
+CVE-2023-25884 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25883 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Heap-bas ...)
+ TODO: check
+CVE-2023-25882 (Adobe Dimension versions 3.4.7 (and earlier) is affected by a
Heap-bas ...)
+ TODO: check
+CVE-2023-25881 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
Imprope ...)
+ TODO: check
+CVE-2023-25880 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
out-of- ...)
+ TODO: check
+CVE-2023-25879 (Adobe Dimension versions 3.4.7 (and earlier) is affected by an
Imprope ...)
+ TODO: check
CVE-2023-25878 (Adobe Substance 3D Stager versions 2.0.0 (and earlier) are
affected by ...)
NOT-FOR-US: Adobe
CVE-2023-25877 (Adobe Substance 3D Stager versions 2.0.0 (and earlier) are
affected by ...)
@@ -9409,10 +9504,10 @@ CVE-2023-25724
REJECTED
CVE-2023-25723
REJECTED
-CVE-2023-25722
- RESERVED
-CVE-2023-25721
- RESERVED
+CVE-2023-25722 (A credential-leak issue was discovered in related Veracode
products be ...)
+ TODO: check
+CVE-2023-25721 (Veracode Scan Jenkins Plugin before 23.3.19.0, when the
"Connect using ...)
+ TODO: check
CVE-2023-25720
RESERVED
CVE-2023-25719 (ConnectWise Control before 22.9.10032 (formerly known as
ScreenConnect ...)
@@ -13525,16 +13620,16 @@ CVE-2023-24310
RESERVED
CVE-2023-24309
RESERVED
-CVE-2023-24308
- RESERVED
+CVE-2023-24308 (A potential memory vulnerability due to insufficient input
validation ...)
+ TODO: check
CVE-2023-24307
RESERVED
CVE-2023-24306
RESERVED
CVE-2023-24305
RESERVED
-CVE-2023-24304
- RESERVED
+CVE-2023-24304 (Improper input validation in the PDF.dll plugin of IrfanView
v4.60 all ...)
+ TODO: check
CVE-2023-24303
RESERVED
CVE-2023-24302
@@ -16303,8 +16398,8 @@ CVE-2023-23357
RESERVED
CVE-2023-23356
RESERVED
-CVE-2023-23355
- RESERVED
+CVE-2023-23355 (A vulnerability has been reported to affect multiple QNAP
operating sy ...)
+ TODO: check
CVE-2023-23354
RESERVED
CVE-2023-23353
@@ -26283,8 +26378,7 @@ CVE-2022-46399 (The Microchip RN4870 module firmware
1.43 (and the Microchip PIC
NOT-FOR-US: Microchip
CVE-2022-46398
RESERVED
-CVE-2022-46397
- RESERVED
+CVE-2022-46397 (FP.io VPP (Vector Packet Processor) 22.10, 22.06, 22.02,
21.10, 21.06, ...)
NOT-FOR-US: FD.io VPP (Vector Packet Processor) IPSec
CVE-2022-46396
RESERVED
@@ -26316,8 +26410,8 @@ CVE-2022-46389
RESERVED
CVE-2022-46388
RESERVED
-CVE-2022-46387
- RESERVED
+CVE-2022-46387 (ConEmu through 220807 and Cmder before 1.3.21 report the title
of the ...)
+ TODO: check
CVE-2022-46386
RESERVED
CVE-2022-46385
@@ -29081,8 +29175,8 @@ CVE-2022-45462 (Alarm instance management has command
injection when there is a
NOT-FOR-US: Apache DolphinScheduler
CVE-2022-45461 (The Java Admin Console in Veritas NetBackup through 10.1 and
related V ...)
NOT-FOR-US: Veritas NetBackup
-CVE-2022-45460
- RESERVED
+CVE-2022-45460 (Multiple Xiongmai NVR devices, including MBD6304T
V4.02.R11.00000117.1 ...)
+ TODO: check
CVE-2022-4053 (A vulnerability was found in Student Attendance Management
System. It ...)
NOT-FOR-US: Student Attendance Management System
CVE-2022-4052 (A vulnerability was found in Student Attendance Management
System and ...)
@@ -32801,8 +32895,8 @@ CVE-2022-3812 (A vulnerability was found in Axiomatic
Bento4. It has been rated
NOT-FOR-US: Bento4
CVE-2020-36608 (A vulnerability, which was classified as problematic, has been
found i ...)
NOT-FOR-US: Tribal Systems Zenario CMS
-CVE-2023-20903
- RESERVED
+CVE-2023-20903 (This disclosure regards a vulnerability related to UAA refresh
tokens ...)
+ TODO: check
CVE-2023-20902
RESERVED
CVE-2023-20901
@@ -57641,10 +57735,9 @@ CVE-2022-36062 (Grafana is an open-source platform for
monitoring and observabil
- grafana <removed>
CVE-2022-36061 (Elrond go is the go implementation for the Elrond Network
protocol. In ...)
NOT-FOR-US: Elrond go
-CVE-2022-36060
- RESERVED
-CVE-2022-36059
- RESERVED
+CVE-2022-36060 (matrix-react-sdk is a Matrix chat protocol SDK for React
Javascript. E ...)
+ TODO: check
+CVE-2022-36059 (matrix-js-sdk is a Matrix messaging protocol Client-Server SDK
for Jav ...)
- node-matrix-js-sdk <unfixed> (bug #1018970)
[bullseye] - node-matrix-js-sdk <no-dsa> (Minor issue)
[buster] - node-matrix-js-sdk <no-dsa> (Minor issue)
@@ -81890,10 +81983,10 @@ CVE-2022-27600
RESERVED
CVE-2022-27599
RESERVED
-CVE-2022-27598
- RESERVED
-CVE-2022-27597
- RESERVED
+CVE-2022-27598 (A vulnerability have been reported to affect multiple QNAP
operating s ...)
+ TODO: check
+CVE-2022-27597 (A vulnerability have been reported to affect multiple QNAP
operating s ...)
+ TODO: check
CVE-2022-27596 (A vulnerability has been reported to affect QNAP device
running QuTS h ...)
NOT-FOR-US: QNAP
CVE-2022-27595
@@ -230630,8 +230723,8 @@ CVE-2020-8891 (An issue was discovered in MISP before
2.4.121. It did not canoni
NOT-FOR-US: MISP
CVE-2020-8890 (An issue was discovered in MISP before 2.4.121. It mishandled
time ske ...)
NOT-FOR-US: MISP
-CVE-2020-8889
- RESERVED
+CVE-2020-8889 (The ShipStation.com plugin 1.0 for CS-Cart allows remote
attackers to ...)
+ TODO: check
CVE-2020-8888
RESERVED
CVE-2020-8887 (Telestream Tektronix Medius before 10.7.5 and Sentry before
10.7.5 hav ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5db9b2e449d961bf39407d7d6b6f5d2882018e15
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5db9b2e449d961bf39407d7d6b6f5d2882018e15
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
