Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6e9250f4 by security tracker role at 2023-04-07T20:10:17+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,77 @@
+CVE-2023-29530
+ RESERVED
+CVE-2023-29529
+ RESERVED
+CVE-2023-29528
+ RESERVED
+CVE-2023-29527
+ RESERVED
+CVE-2023-29526
+ RESERVED
+CVE-2023-29525
+ RESERVED
+CVE-2023-29524
+ RESERVED
+CVE-2023-29523
+ RESERVED
+CVE-2023-29522
+ RESERVED
+CVE-2023-29521
+ RESERVED
+CVE-2023-29520
+ RESERVED
+CVE-2023-29519
+ RESERVED
+CVE-2023-29518
+ RESERVED
+CVE-2023-29517
+ RESERVED
+CVE-2023-29516
+ RESERVED
+CVE-2023-29515
+ RESERVED
+CVE-2023-29514
+ RESERVED
+CVE-2023-29513
+ RESERVED
+CVE-2023-29512
+ RESERVED
+CVE-2023-29511
+ RESERVED
+CVE-2023-29510
+ RESERVED
+CVE-2023-29509
+ RESERVED
+CVE-2023-29508
+ RESERVED
+CVE-2023-29507
+ RESERVED
+CVE-2023-29506
+ RESERVED
+CVE-2023-29505
+ RESERVED
+CVE-2023-28393
+ RESERVED
+CVE-2023-1942 (A vulnerability has been found in SourceCodester Online
Computer and L ...)
+ TODO: check
+CVE-2023-1941 (A vulnerability, which was classified as critical, has been
found in S ...)
+ TODO: check
+CVE-2023-1940 (A vulnerability classified as critical was found in
SourceCodester Sim ...)
+ TODO: check
+CVE-2023-1939
+ RESERVED
+CVE-2023-1938
+ RESERVED
+CVE-2023-1937 (A vulnerability, which was classified as problematic, was found
in zhe ...)
+ TODO: check
+CVE-2014-125095
+ RESERVED
+CVE-2013-10025
+ RESERVED
+CVE-2013-10024
+ RESERVED
+CVE-2012-10010
+ RESERVED
CVE-2023-29493
RESERVED
CVE-2023-29492
@@ -86,33 +160,33 @@ CVE-2023-1933
RESERVED
CVE-2023-1932
RESERVED
-CVE-2023-1931 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1931 (The WP Fastest Cache plugin for WordPress is vulnerable to
unauthorize ...)
TODO: check
-CVE-2023-1930 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1930 (The WP Fastest Cache plugin for WordPress is vulnerable to
unauthorize ...)
TODO: check
-CVE-2023-1929 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1929 (The WP Fastest Cache plugin for WordPress is vulnerable to
unauthorize ...)
TODO: check
-CVE-2023-1928 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1928 (The WP Fastest Cache plugin for WordPress is vulnerable to
unauthorize ...)
TODO: check
-CVE-2023-1927 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1927 (The WP Fastest Cache plugin for WordPress is vulnerable to
Cross-Site ...)
TODO: check
-CVE-2023-1926 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1926 (The WP Fastest Cache plugin for WordPress is vulnerable to
Cross-Site ...)
TODO: check
-CVE-2023-1925 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1925 (The WP Fastest Cache plugin for WordPress is vulnerable to
Cross-Site ...)
TODO: check
-CVE-2023-1924 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1924 (The WP Fastest Cache plugin for WordPress is vulnerable to
Cross-Site ...)
TODO: check
-CVE-2023-1923 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1923 (The WP Fastest Cache plugin for WordPress is vulnerable to
Cross-Site ...)
TODO: check
-CVE-2023-1922 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1922 (The WP Fastest Cache plugin for WordPress is vulnerable to
Cross-Site ...)
TODO: check
-CVE-2023-1921 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1921 (The WP Fastest Cache plugin for WordPress is vulnerable to
Cross-Site ...)
TODO: check
-CVE-2023-1920 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1920 (The WP Fastest Cache plugin for WordPress is vulnerable to
Cross-Site ...)
TODO: check
-CVE-2023-1919 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1919 (The WP Fastest Cache plugin for WordPress is vulnerable to
Cross-Site ...)
TODO: check
-CVE-2023-1918 ([PUSHED PREMATURELY] Information temporarily redacted until it
should ...)
+CVE-2023-1918 (The WP Fastest Cache plugin for WordPress is vulnerable to
Cross-Site ...)
TODO: check
CVE-2023-1917
RESERVED
@@ -221,8 +295,8 @@ CVE-2023-1911
RESERVED
CVE-2023-1910
RESERVED
-CVE-2023-1909
- RESERVED
+CVE-2023-1909 (A vulnerability, which was classified as critical, was found in
PHPGur ...)
+ TODO: check
CVE-2023-1908 (A vulnerability was found in SourceCodester Simple Mobile
Comparison W ...)
NOT-FOR-US: SourceCodester Simple Mobile Comparison Website
CVE-2023-1907
@@ -346,8 +420,8 @@ CVE-2023-29390
RESERVED
CVE-2023-29389 (Toyota RAV4 2021 vehicles automatically trust messages from
other ECUs ...)
NOT-FOR-US: Toyota
-CVE-2023-29388
- RESERVED
+CVE-2023-29388 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
impleCod ...)
+ TODO: check
CVE-2023-29387
RESERVED
CVE-2023-29386
@@ -771,8 +845,8 @@ CVE-2023-29238
RESERVED
CVE-2023-29237
RESERVED
-CVE-2023-29236
- RESERVED
+CVE-2023-29236 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
Cththeme ...)
+ TODO: check
CVE-2023-29235
RESERVED
CVE-2023-29234
@@ -996,12 +1070,12 @@ CVE-2023-29174
RESERVED
CVE-2023-29173
RESERVED
-CVE-2023-29172
- RESERVED
-CVE-2023-29171
- RESERVED
-CVE-2023-29170
- RESERVED
+CVE-2023-29172 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
Property ...)
+ TODO: check
+CVE-2023-29171 (Unauth. Reflected Cross-site Scripting (XSS) vulnerability in
Magic Po ...)
+ TODO: check
+CVE-2023-29170 (Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability
in PI W ...)
+ TODO: check
CVE-2023-1807
RESERVED
CVE-2023-1806
@@ -1192,8 +1266,8 @@ CVE-2023-29096
RESERVED
CVE-2023-29095
RESERVED
-CVE-2023-29094
- RESERVED
+CVE-2023-29094 (Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability
in PI W ...)
+ TODO: check
CVE-2023-29093
RESERVED
CVE-2023-1783
@@ -1431,8 +1505,8 @@ CVE-2023-1728 (Unrestricted Upload of File with Dangerous
Type vulnerability in
NOT-FOR-US: Fernus Informatics LMS
CVE-2023-1727
RESERVED
-CVE-2023-1726
- RESERVED
+CVE-2023-1726 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
CVE-2023-1725 (Server-Side Request Forgery (SSRF) vulnerability in Infoline
Project M ...)
NOT-FOR-US: Infoline Project Management System
CVE-2023-1724
@@ -1554,8 +1628,8 @@ CVE-2023-28995
RESERVED
CVE-2023-28994
RESERVED
-CVE-2023-28993
- RESERVED
+CVE-2023-28993 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
Ignazio ...)
+ TODO: check
CVE-2023-28992
RESERVED
CVE-2023-28991
@@ -2254,14 +2328,14 @@ CVE-2023-28794
RESERVED
CVE-2023-28793
RESERVED
-CVE-2023-28792
- RESERVED
+CVE-2023-28792 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
I Thirte ...)
+ TODO: check
CVE-2023-28791
RESERVED
CVE-2023-28790
RESERVED
-CVE-2023-28789
- RESERVED
+CVE-2023-28789 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
Cimatti ...)
+ TODO: check
CVE-2023-28788
RESERVED
CVE-2023-28787
@@ -2276,8 +2350,8 @@ CVE-2023-28783
RESERVED
CVE-2023-28782
RESERVED
-CVE-2023-28781
- RESERVED
+CVE-2023-28781 (Unauth. Stored Cross-Site Scripting (XSS) vulnerability in
Cimatti Con ...)
+ TODO: check
CVE-2023-28780
RESERVED
CVE-2023-28779
@@ -2535,8 +2609,8 @@ CVE-2023-28714
RESERVED
CVE-2023-28712 (Osprey Pump Controller version 1.01 contains an
unauthenticated comman ...)
NOT-FOR-US: Osprey Pump Controller
-CVE-2023-28710
- RESERVED
+CVE-2023-28710 (Improper Input Validation vulnerability in Apache Software
Foundation ...)
+ TODO: check
CVE-2023-28654 (Osprey Pump Controller version 1.01 has a hidden
administrative accoun ...)
NOT-FOR-US: Osprey Pump Controller
CVE-2023-28648 (Osprey Pump Controller version 1.01 inputs passed to a GET
parameter a ...)
@@ -2585,10 +2659,10 @@ CVE-2023-28708 (When using the RemoteIpFilter with
requests received from a reve
NOTE:
https://github.com/apache/tomcat/commit/f509bbf31fc00abe3d9f25ebfabca5e05173da5b
(10.1.6)
NOTE:
https://github.com/apache/tomcat/commit/3b51230764da595bb19e8d0962dd8c69ab40dfab
(9.0.72)
NOTE:
https://github.com/apache/tomcat/commit/5b72c94e8b2c4ada63a1d91dc527bf4d8fd1f510
(8.5.86)
-CVE-2023-28707
- RESERVED
-CVE-2023-28706
- RESERVED
+CVE-2023-28707 (Improper Input Validation vulnerability in Apache Software
Foundation ...)
+ TODO: check
+CVE-2023-28706 (Improper Control of Generation of Code ('Code Injection')
vulnerabilit ...)
+ TODO: check
CVE-2023-28705
RESERVED
CVE-2023-28704
@@ -4771,8 +4845,8 @@ CVE-2023-28053
RESERVED
CVE-2023-28052
RESERVED
-CVE-2023-28051
- RESERVED
+CVE-2023-28051 (Dell Power Manager, versions 3.10 and prior, contains an
Improper Acce ...)
+ TODO: check
CVE-2023-28050
RESERVED
CVE-2023-28049
@@ -5358,8 +5432,8 @@ CVE-2023-27878
RESERVED
CVE-2023-27877
RESERVED
-CVE-2023-27876
- RESERVED
+CVE-2023-27876 (IBM TRIRIGA 4.0 is vulnerable to an XML external entity
injection (XXE ...)
+ TODO: check
CVE-2023-27875 (IBM Aspera Faspex 5.0.4 could allow a user to change other
user's cred ...)
NOT-FOR-US: IBM
CVE-2023-27874 (IBM Aspera Faspex 4.4.2 is vulnerable to an XML external
entity inject ...)
@@ -5691,26 +5765,26 @@ CVE-2023-27812
RESERVED
CVE-2023-27811
RESERVED
-CVE-2023-27810
- RESERVED
+CVE-2023-27810 (H3C Magic R100 R100V100R005.bin was discovered to contain a
stack over ...)
+ TODO: check
CVE-2023-27809
RESERVED
-CVE-2023-27808
- RESERVED
-CVE-2023-27807
- RESERVED
-CVE-2023-27806
- RESERVED
-CVE-2023-27805
- RESERVED
-CVE-2023-27804
- RESERVED
-CVE-2023-27803
- RESERVED
-CVE-2023-27802
- RESERVED
-CVE-2023-27801
- RESERVED
+CVE-2023-27808 (H3C Magic R100 R100V100R005.bin was discovered to contain a
stack over ...)
+ TODO: check
+CVE-2023-27807 (H3C Magic R100 R100V100R005.bin was discovered to contain a
stack over ...)
+ TODO: check
+CVE-2023-27806 (H3C Magic R100 R100V100R005.bin was discovered to contain a
stack over ...)
+ TODO: check
+CVE-2023-27805 (H3C Magic R100 R100V100R005.bin was discovered to contain a
stack over ...)
+ TODO: check
+CVE-2023-27804 (H3C Magic R100 R100V100R005.bin was discovered to contain a
stack over ...)
+ TODO: check
+CVE-2023-27803 (H3C Magic R100 R100V100R005.bin was discovered to contain a
stack over ...)
+ TODO: check
+CVE-2023-27802 (H3C Magic R100 R100V100R005.bin was discovered to contain a
stack over ...)
+ TODO: check
+CVE-2023-27801 (H3C Magic R100 R100V100R005.bin was discovered to contain a
stack over ...)
+ TODO: check
CVE-2023-27800
RESERVED
CVE-2023-27799
@@ -6109,8 +6183,8 @@ CVE-2023-27622
RESERVED
CVE-2023-27621
RESERVED
-CVE-2023-27620
- RESERVED
+CVE-2023-27620 (Auth. (contributor+) Stored Cross-site Scripting (XSS)
vulnerability i ...)
+ TODO: check
CVE-2023-27619
RESERVED
CVE-2023-27618
@@ -11304,18 +11378,18 @@ CVE-2023-25718 (In ConnectWise Control through
22.9.10032 (formerly known as Scr
NOT-FOR-US: ConnectWise
CVE-2023-25717 (Ruckus Wireless Admin through 10.4 allows Remote Code
Execution via an ...)
NOT-FOR-US: Ruckus Wireless Admin
-CVE-2023-25716
- RESERVED
+CVE-2023-25716 (Auth (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in gqevu ...)
+ TODO: check
CVE-2023-25715
RESERVED
CVE-2023-25714
RESERVED
-CVE-2023-25713
- RESERVED
-CVE-2023-25712
- RESERVED
-CVE-2023-25711
- RESERVED
+CVE-2023-25713 (Unauth. Stored Cross-Site Scripting (XSS) vulnerability in
Fullworks Q ...)
+ TODO: check
+CVE-2023-25712 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in WP-B ...)
+ TODO: check
+CVE-2023-25711 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
WPGlobus ...)
+ TODO: check
CVE-2023-25710
RESERVED
CVE-2023-25709 (Cross-Site Request Forgery (CSRF) vulnerability in Plainware
Locatorai ...)
@@ -11326,14 +11400,14 @@ CVE-2023-25707
RESERVED
CVE-2023-25706
RESERVED
-CVE-2023-25705
- RESERVED
+CVE-2023-25705 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Go P ...)
+ TODO: check
CVE-2023-25704 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Mehj ...)
NOT-FOR-US: WordPress plugin
CVE-2023-25703
RESERVED
-CVE-2023-25702
- RESERVED
+CVE-2023-25702 (Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability
in Full ...)
+ TODO: check
CVE-2023-25701
RESERVED
CVE-2023-25700
@@ -12243,8 +12317,8 @@ CVE-2023-25466
RESERVED
CVE-2023-25465
RESERVED
-CVE-2023-25464
- RESERVED
+CVE-2023-25464 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Stre ...)
+ TODO: check
CVE-2023-25463
RESERVED
CVE-2023-25462
@@ -12287,8 +12361,8 @@ CVE-2023-25444
RESERVED
CVE-2023-25443
RESERVED
-CVE-2023-25442
- RESERVED
+CVE-2023-25442 (Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability
in Marc ...)
+ TODO: check
CVE-2023-25441
RESERVED
CVE-2023-25440
@@ -13193,12 +13267,12 @@ CVE-2023-25063
RESERVED
CVE-2023-25062 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in PINP ...)
NOT-FOR-US: WordPress plugin
-CVE-2023-25061
- RESERVED
+CVE-2023-25061 (Auth. (contributor+) Stored Cross-Site Scripting (XSS)
vulnerability i ...)
+ TODO: check
CVE-2023-25060
RESERVED
-CVE-2023-25059
- RESERVED
+CVE-2023-25059 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in aval ...)
+ TODO: check
CVE-2023-25058
RESERVED
CVE-2023-25057
@@ -13217,14 +13291,14 @@ CVE-2023-25051
RESERVED
CVE-2023-25050
RESERVED
-CVE-2023-25049
- RESERVED
+CVE-2023-25049 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in impl ...)
+ TODO: check
CVE-2023-25048
RESERVED
CVE-2023-25047
RESERVED
-CVE-2023-25046
- RESERVED
+CVE-2023-25046 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Podl ...)
+ TODO: check
CVE-2023-25045
RESERVED
CVE-2023-25044
@@ -13233,8 +13307,8 @@ CVE-2023-25043
RESERVED
CVE-2023-25042
RESERVED
-CVE-2023-25041
- RESERVED
+CVE-2023-25041 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
Cththeme ...)
+ TODO: check
CVE-2023-25040 (Auth. (contributor+) Stored Cross-Site Scripting (XSS)
vulnerability i ...)
NOT-FOR-US: WordPress plugin
CVE-2023-25039
@@ -13253,30 +13327,30 @@ CVE-2023-25033
RESERVED
CVE-2023-25032
RESERVED
-CVE-2023-25031
- RESERVED
+CVE-2023-25031 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Kibo ...)
+ TODO: check
CVE-2023-25030
RESERVED
CVE-2023-25029
RESERVED
CVE-2023-25028
RESERVED
-CVE-2023-25027
- RESERVED
+CVE-2023-25027 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Kibo ...)
+ TODO: check
CVE-2023-25026
RESERVED
CVE-2023-25025
RESERVED
-CVE-2023-25024
- RESERVED
-CVE-2023-25023
- RESERVED
-CVE-2023-25022
- RESERVED
+CVE-2023-25024 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Iceg ...)
+ TODO: check
+CVE-2023-25023 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Sale ...)
+ TODO: check
+CVE-2023-25022 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Kibo ...)
+ TODO: check
CVE-2023-25021
RESERVED
-CVE-2023-25020
- RESERVED
+CVE-2023-25020 (Unauth. Stored Cross-Site Scripting (XSS) vulnerability in
Kiboko Labs ...)
+ TODO: check
CVE-2023-25019
RESERVED
CVE-2023-0657
@@ -13978,7 +14052,8 @@ CVE-2023-24789 (jeecg-boot v3.4.4 was discovered to
contain an authenticated SQL
NOT-FOR-US: jeecg-boot
CVE-2023-24788 (RESERVED NotrinosERP v0.7 was discovered to contain a SQL
injection vu ...)
NOT-FOR-US: NotrinosERP
-CVE-2023-24787 (RESERVED churchcrm v4.5.3 was discovered to contain a SQL
injection vu ...)
+CVE-2023-24787
+ REJECTED
NOT-FOR-US: churchcrm
CVE-2023-24786
RESERVED
@@ -15205,16 +15280,16 @@ CVE-2023-24404
RESERVED
CVE-2023-24403 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in WP F ...)
NOT-FOR-US: WordPress plugin
-CVE-2023-24402
- RESERVED
+CVE-2023-24402 (Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in
Veribo, Rol ...)
+ TODO: check
CVE-2023-24401
RESERVED
CVE-2023-24400
RESERVED
CVE-2023-24399 (Auth. (contributor+) Stored Cross-Site Scripting (XSS)
vulnerability i ...)
NOT-FOR-US: WordPress plugin
-CVE-2023-24398
- RESERVED
+CVE-2023-24398 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Snap ...)
+ TODO: check
CVE-2023-24397
RESERVED
CVE-2023-24396 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in E4J ...)
@@ -15321,7 +15396,8 @@ CVE-2023-24369 (A cross-site scripting (XSS)
vulnerability in UJCMS v4.1.3 allow
NOT-FOR-US: UJCMS
CVE-2023-24368 (** DISPUTED ** Incorrect access control in Temenos T24 Release
20 allo ...)
NOT-FOR-US: Temenos
-CVE-2023-24367 (Temenos T24 Release 20 was discovered to contain a reflected
cross-sit ...)
+CVE-2023-24367
+ REJECTED
NOT-FOR-US: Tenemos
CVE-2023-24366 (An arbitrary file download vulnerability in rConfig v6.8.0
allows atta ...)
NOT-FOR-US: rConfig
@@ -16151,8 +16227,8 @@ CVE-2023-23996 (Auth. (admin+) Stored Cross-Site
Scripting (XSS) vulnerability i
NOT-FOR-US: WordPress plugin
CVE-2023-23995
RESERVED
-CVE-2023-23994
- RESERVED
+CVE-2023-23994 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Marc ...)
+ TODO: check
CVE-2023-23993
RESERVED
CVE-2023-23992 (Cross-Site Request Forgery (CSRF) vulnerability in AutomatorWP
plugin ...)
@@ -16473,8 +16549,8 @@ CVE-2023-23887
RESERVED
CVE-2023-23886
RESERVED
-CVE-2023-23885
- RESERVED
+CVE-2023-23885 (Auth. (contributor+) Stored Cross-Site Scripting (XSS)
vulnerability i ...)
+ TODO: check
CVE-2023-23884
RESERVED
CVE-2023-23883
@@ -16703,8 +16779,8 @@ CVE-2023-23801 (Cross-Site Request Forgery (CSRF)
vulnerability in HasThemes Rea
NOT-FOR-US: WordPress plugin
CVE-2023-23800
RESERVED
-CVE-2023-23799
- RESERVED
+CVE-2023-23799 (Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability
in Leon ...)
+ TODO: check
CVE-2023-23798
RESERVED
CVE-2023-23797
@@ -16871,10 +16947,10 @@ CVE-2023-23764
RESERVED
CVE-2023-23763
RESERVED
-CVE-2023-23762
- RESERVED
-CVE-2023-23761
- RESERVED
+CVE-2023-23762 (An incorrect comparison vulnerability was identified in GitHub
Enterpr ...)
+ TODO: check
+CVE-2023-23761 (An improper authentication vulnerability was identified in
GitHub Ente ...)
+ TODO: check
CVE-2023-23760 (A path traversal vulnerability was identified in GitHub
Enterprise Ser ...)
NOT-FOR-US: Github Enterprise Server
CVE-2023-23759
@@ -38437,8 +38513,8 @@ CVE-2022-43930 (IBM Db2 for Linux, UNIX and Windows
10.5, 11.1, and 11.5 is vuln
NOT-FOR-US: IBM
CVE-2022-43929 (IBM Db2 for Linux, UNIX and Windows 11.1 and 11.5 may be
vulnerable to ...)
NOT-FOR-US: IBM
-CVE-2022-43928
- RESERVED
+CVE-2022-43928 (The IBM Toolbox for Java (Db2 Mirror for i 7.4 and 7.5) could
allow a ...)
+ TODO: check
CVE-2022-43927 (IBM Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 is
vulnerable ...)
NOT-FOR-US: IBM
CVE-2022-43926
@@ -38465,8 +38541,8 @@ CVE-2022-43916
RESERVED
CVE-2022-43915
RESERVED
-CVE-2022-43914
- RESERVED
+CVE-2022-43914 (IBM TRIRIGA Application Platform 4.0 is vulnerable to
cross-site scrip ...)
+ TODO: check
CVE-2022-43913
RESERVED
CVE-2022-43912
@@ -64749,8 +64825,8 @@ CVE-2022-34335 (IBM Sterling Partner Engagement Manager
6.1.2, 6.2.0, and 6.2.1
NOT-FOR-US: IBM
CVE-2022-34334 (IBM Sterling Partner Engagement Manager 2.0 does not
invalidate sessio ...)
NOT-FOR-US: IBM
-CVE-2022-34333
- RESERVED
+CVE-2022-34333 (IBM Sterling Order Management 10.0 does not require that users
should ...)
+ TODO: check
CVE-2022-34332
RESERVED
CVE-2022-34331 (After performing a sequence of Power FW950, FW1010 maintenance
operati ...)
@@ -65804,8 +65880,8 @@ CVE-2017-20058 (A vulnerability classified as
problematic was found in Elefant C
NOT-FOR-US: Elefant CMS
CVE-2017-20057 (A vulnerability classified as problematic has been found in
Elefant CM ...)
NOT-FOR-US: Elefant CMS
-CVE-2022-33959
- RESERVED
+CVE-2022-33959 (IBM Sterling Order Management 10.0 could allow a user to
bypass valida ...)
+ TODO: check
CVE-2022-33958
RESERVED
CVE-2022-33957
@@ -119685,7 +119761,8 @@ CVE-2021-41261 (Galette is a membership management
web application built for non
- galette <removed>
CVE-2021-41260 (Galette is a membership management web application built for
non profi ...)
- galette <removed>
-CVE-2021-41259 (Nim is a systems programming language with a focus on
efficiency, expr ...)
+CVE-2021-41259
+ REJECTED
- nim <unfixed> (bug #1014714)
[bullseye] - nim <no-dsa> (Minor issue)
[buster] - nim <no-dsa> (Minor issue)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e9250f46db1cec544a0df696c54a5c485d878ab
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e9250f46db1cec544a0df696c54a5c485d878ab
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
