[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) Mon, 08 May 2023 01:12:24 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
4c9a0fb2 by security tracker role at 2023-05-08T08:11:55+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2023-2566 (Cross-site Scripting (XSS) - Stored in GitHub repository 
openemr/opene ...)
+       TODO: check
+CVE-2023-2534 (Improper Authorization vulnerability in OTRS AG OTRS 8 
(Websocket API  ...)
+       TODO: check
 CVE-2023-2565 (A vulnerability has been found in SourceCodester Multi Language 
Hotel  ...)
        NOT-FOR-US: SourceCodester Multi Language Hotel Management Software
 CVE-2023-2564 (OS Command Injection in GitHub repository sbs20/scanservjs 
prior to v2 ...)
@@ -3462,8 +3466,8 @@ CVE-2023-30259
        RESERVED
 CVE-2023-30258
        RESERVED
-CVE-2023-30257
-       RESERVED
+CVE-2023-30257 (A buffer overflow in the component /proc/ftxxxx-debug of FiiO 
M6 Build ...)
+       TODO: check
 CVE-2023-30256
        RESERVED
 CVE-2023-30255
@@ -3606,8 +3610,8 @@ CVE-2023-30187
        RESERVED
 CVE-2023-30186
        RESERVED
-CVE-2023-30185
-       RESERVED
+CVE-2023-30185 (CRMEB v4.4 to v4.6 was discovered to contain an arbitrary file 
upload  ...)
+       TODO: check
 CVE-2023-30184 (A stored cross-site scripting (XSS) vulnerability in Typecho 
v1.2.0 al ...)
        NOT-FOR-US: Typecho
 CVE-2023-30183
@@ -3941,8 +3945,8 @@ CVE-2023-30020
        RESERVED
 CVE-2023-30019
        RESERVED
-CVE-2023-30018
-       RESERVED
+CVE-2023-30018 (Judging Management System v1.0 is vulnerable to SQL Injection. 
via /ph ...)
+       TODO: check
 CVE-2023-30017
        RESERVED
 CVE-2023-30016
@@ -4090,8 +4094,8 @@ CVE-2023-29946
        RESERVED
 CVE-2023-29945
        RESERVED
-CVE-2023-29944
-       RESERVED
+CVE-2023-29944 (Metersphere v1.20.20-lts-79d354a6 is vulnerable to Remote 
Command Exec ...)
+       TODO: check
 CVE-2023-29943
        RESERVED
 CVE-2023-29942 (llvm-project commit a0138390 was discovered to contain a 
segmentation  ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c9a0fb21044d2d65065294b471ec4b55fa39378

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c9a0fb21044d2d65065294b471ec4b55fa39378
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to