Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
684adc28 by security tracker role at 2023-06-29T08:12:17+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,10 +1,56 @@
+CVE-2023-3447 (The Active Directory Integration / LDAP Integration plugin for
WordPre ...)
+ TODO: check
+CVE-2023-3243 (** UNSUPPORTED WHEN ASSIGNED ** [An attacker can capture an
authentica ...)
+ TODO: check
+CVE-2023-37237 (In Veritas NetBackup Appliance before 4.1.0.1 MR3, insecure
permission ...)
+ TODO: check
+CVE-2023-36476 (calamares-nixos-extensions provides Calamares branding and
modules for ...)
+ TODO: check
+CVE-2023-36475 (Parse Server is an open source backend that can be deployed to
any inf ...)
+ TODO: check
+CVE-2023-36474 (Interactsh is an open-source tool for detecting out-of-band
interactio ...)
+ TODO: check
+CVE-2023-34843 (Traggo Server 0.3.0 is vulnerable to directory traversal via a
crafted ...)
+ TODO: check
+CVE-2023-34834 (A Directory Browsing vulnerability in MCL-Net version
4.3.5.8788 webse ...)
+ TODO: check
+CVE-2023-34831 (The "Submission Web Form" of Turnitin LTI tool/plugin version
1.3 is a ...)
+ TODO: check
+CVE-2023-34738 (Chemex through 3.7.1 is vulnerable to arbitrary file upload.)
+ TODO: check
+CVE-2023-34736 (Guantang Equipment Management System version 4.12 is
vulnerable to Arb ...)
+ TODO: check
+CVE-2023-34734 (Annet AC Centralized Management Platform 1.02.040 is
vulnerable to Sto ...)
+ TODO: check
+CVE-2023-34652 (PHPgurukl Hostel Management System v.1.0 is vulnerable to
Cross Site S ...)
+ TODO: check
+CVE-2023-34651 (PHPgurukl Hospital Management System v.1.0 is vulnerable to
Cross Site ...)
+ TODO: check
+CVE-2023-34650 (PHPgurukl Small CRM v.1.0 is vulnerable to Cross Site
Scripting (XSS).)
+ TODO: check
+CVE-2023-34648 (A Cross Site Scripting vulnerability in PHPgurukl User
Registration Lo ...)
+ TODO: check
+CVE-2023-34647 (PHPgurukl Hostel Management System v.1.0 is vulnerable to
Cross Site S ...)
+ TODO: check
+CVE-2023-33661 (Multiple cross-site scripting (XSS) vulnerabilities were
discovered in ...)
+ TODO: check
+CVE-2023-32610 (Mailform Pro CGI 4.3.1.2 and earlier allows a remote
unauthenticated a ...)
+ TODO: check
+CVE-2023-32224 (D-Link DSL-224 firmware version 3.0.10 CWE-307: Improper
Restriction o ...)
+ TODO: check
+CVE-2023-32223 (D-Link DSL-224 firmware version 3.0.10 allows post
authentication comm ...)
+ TODO: check
+CVE-2023-32222 (D-Link DSL-G256DG version vBZ_1.00.27 web management interface
allows ...)
+ TODO: check
+CVE-2023-2982 (The WordPress Social Login and Register (Discord, Google,
Twitter, Lin ...)
+ TODO: check
CVE-2023-3450 (A vulnerability was found in Ruijie RG-BCR860 2.5.13 and
classified as ...)
NOT-FOR-US: Ruijie RG-BCR860
CVE-2023-3449 (A vulnerability has been found in IBOS OA 4.5.5 and classified
as crit ...)
NOT-FOR-US: IBOS OA
CVE-2023-3445 (Cross-site Scripting (XSS) - Stored in GitHub repository
spinacms/spin ...)
NOT-FOR-US: Spina CMS
-CVE-2023-3439 [mctp: defer the kfree of object mdev->addr]
+CVE-2023-3439 (A flaw was found in the MCTP protocol in the Linux kernel. The
functio ...)
- linux 5.17.6-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
[buster] - linux <not-affected> (Vulnerable code not present)
@@ -86,7 +132,7 @@ CVE-2022-48505 (This issue was addressed with improved data
protection. This iss
CVE-2023-3397 [fs/jfs: Add a mutex named txEnd_lmLogClose_mutex to prevent a
race condition between txEnd and lmLogClose functions]
- linux <unfixed>
NOTE:
https://lore.kernel.org/lkml/[email protected]/
-CVE-2023-3355 [drm/msm/gem: Add check for kmalloc]
+CVE-2023-3355 (A NULL pointer dereference flaw was found in the Linux kernel's
driver ...)
- linux 6.1.20-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
[buster] - linux <not-affected> (Vulnerable code not present)
@@ -760,17 +806,17 @@ CVE-2023-32449 (Dell PowerStore versions prior to 3.5
contain an improper verifi
NOT-FOR-US: Dell
CVE-2019-25152 (The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro
for Woo ...)
NOT-FOR-US: WordPress plugin
-CVE-2023-3359 [nvmem: brcm_nvram: Add check for kzalloc]
+CVE-2023-3359 (An issue was discovered in the Linux kernel brcm_nvram_parse in
driver ...)
- linux 6.1.11-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
[buster] - linux <not-affected> (Vulnerable code not present)
NOTE:
https://git.kernel.org/linus/b0576ade3aaf24b376ea1a4406ae138e2a22b0c0 (6.2-rc7)
-CVE-2023-3358 [HID: intel_ish-hid: Add check for ishtp_dma_tx_map]
+CVE-2023-3358 (A null pointer dereference was found in the Linux kernel's
Integrated ...)
- linux 6.1.11-1
[bullseye] - linux 5.10.178-1
[buster] - linux 4.19.282-1
NOTE:
https://git.kernel.org/linus/b3d40c3ec3dc4ad78017de6c3a38979f57aaaab8 (6.2-rc5)
-CVE-2023-3357 [HID: amd_sfh: Add missing check for dma_alloc_coherent]
+CVE-2023-3357 (A NULL pointer dereference flaw was found in the Linux kernel
AMD Sens ...)
- linux 6.1.4-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
[buster] - linux <not-affected> (Vulnerable code not present)
@@ -1300,7 +1346,7 @@ CVE-2023-XXXX [RUSTSEC-2023-0038: Out-of-bounds array
access leads to panic]
NOTE: https://rustsec.org/advisories/RUSTSEC-2023-0038.html
CVE-2023-3193 (Cross-site scripting (XSS) vulnerability in the Layout module's
SEO co ...)
NOT-FOR-US: Liferay
-CVE-2023-3138 [Buffer overflows in InitExt.c in libX11]
+CVE-2023-3138 (A vulnerability was found in libX11. The security flaw occurs
because ...)
{DSA-5433-1 DLA-3472-1}
- libx11 2:1.8.6-1 (bug #1038133)
NOTE: https://www.openwall.com/lists/oss-security/2023/06/15/2
@@ -5927,7 +5973,7 @@ CVE-2023-31139 (DHIS2 Core contains the service layer and
Web API for DHIS2, an
CVE-2023-31138 (DHIS2 Core contains the service layer and Web API for DHIS2,
an inform ...)
NOT-FOR-US: DHIS2
CVE-2023-31137 (MaraDNS is open-source software that implements the Domain
Name System ...)
- {DLA-3457-1}
+ {DSA-5441-1 DLA-3457-1}
- maradns <unfixed> (bug #1035936)
NOTE:
https://github.com/samboy/MaraDNS/commit/bab062bde40b2ae8a91eecd522e84d8b993bab58
NOTE:
https://github.com/samboy/MaraDNS/security/advisories/GHSA-58m7-826v-9c3c
@@ -6069,7 +6115,7 @@ CVE-2023-2255 (Improper access control in editor
components of The Document Foun
CVE-2023-2254
RESERVED
CVE-2023-2253 (A flaw was found in the `/v2/_catalog` endpoint in
distribution/distri ...)
- {DSA-5414-1}
+ {DSA-5414-1 DLA-3473-1}
- docker-registry 2.8.2+ds1-1 (bug #1035956)
NOTE: Fixed by:
https://github.com/distribution/distribution/commit/521ea3d973cb0c7089ebbcdd4ccadc34be941f54
(v2.8.2-beta.1)
NOTE: https://www.openwall.com/lists/oss-security/2023/05/09/1
@@ -6534,8 +6580,8 @@ CVE-2023-2234
RESERVED
CVE-2023-2233
RESERVED
-CVE-2023-2232
- RESERVED
+CVE-2023-2232 (An issue has been discovered in GitLab affecting all versions
starting ...)
+ TODO: check
CVE-2023-2231 (A vulnerability, which was classified as critical, was found in
MAXTEC ...)
NOT-FOR-US: MAXTECH
CVE-2023-2230
@@ -13074,8 +13120,8 @@ CVE-2023-1604
RESERVED
CVE-2023-1603 (Permission bypass when importing or synchronizing entriesin
User vault ...)
NOT-FOR-US: Devolutions
-CVE-2023-1602
- RESERVED
+CVE-2023-1602 (The Short URL plugin for WordPress is vulnerable to stored
Cross-Site ...)
+ TODO: check
CVE-2023-1601
REJECTED
CVE-2023-1600
@@ -39830,10 +39876,10 @@ CVE-2022-46410 (An issue was discovered in Veritas
NetBackup Flex Scale through
NOT-FOR-US: Veritas
CVE-2022-46409
RESERVED
-CVE-2022-46408
- RESERVED
-CVE-2022-46407
- RESERVED
+CVE-2022-46408 (Ericsson Network Manager (ENM), versions prior to 22.1,
contains a vul ...)
+ TODO: check
+CVE-2022-46407 (Ericsson Network Manager (ENM), versions prior to 22.2,
contains a vul ...)
+ TODO: check
CVE-2022-46406
RESERVED
CVE-2022-46405 (Mastodon through 4.0.2 allows attackers to cause a denial of
service ( ...)
@@ -41502,8 +41548,8 @@ CVE-2022-4144 (An out-of-bounds read flaw was found in
the QXL display device em
NOTE: Pre-requisite 1:
https://gitlab.com/qemu-project/qemu/-/commit/61c34fc194b776ecadc39fb26b061331107e5599
(v7.2.0-rc3)
NOTE: Pre-requisite 2:
https://gitlab.com/qemu-project/qemu/-/commit/8efec0ef8bbc1e75a7ebf6e325a35806ece9b39f
(v7.2.0-rc3)
NOTE: Fixed by:
https://gitlab.com/qemu-project/qemu/-/commit/6dbbf055148c6f1b7d8a3251a65bd6f3d1e1f622
(v7.2.0-rc3)
-CVE-2022-4143
- RESERVED
+CVE-2022-4143 (An issue has been discovered in GitLab affecting all versions
starting ...)
+ TODO: check
CVE-2022-4142 (The WordPress Filter Gallery Plugin WordPress plugin before
0.1.6 does ...)
NOT-FOR-US: WordPress plugin
CVE-2022-4141 (Heap based buffer overflow in vim/vim 9.0.0946 and below by
allowing a ...)
@@ -42873,20 +42919,20 @@ CVE-2022-3995 (The TeraWallet plugin for WordPress is
vulnerable to Insecure Dir
NOT-FOR-US: TeraWallet plugin for WordPress
CVE-2022-3994 (The Authenticator WordPress plugin before 1.3.1 does not
prevent subsc ...)
NOT-FOR-US: WordPress plugin
-CVE-2023-21518
- RESERVED
-CVE-2023-21517
- RESERVED
+CVE-2023-21518 (Improper access control vulnerability in SearchWidget prior to
version ...)
+ TODO: check
+CVE-2023-21517 (Heap out-of-bound write vulnerability in Exynos baseband prior
to SMR ...)
+ TODO: check
CVE-2023-21516 (XSS vulnerability from InstantPlay in Galaxy Store prior to
version 4. ...)
NOT-FOR-US: InstantPlay in Galaxy Store
CVE-2023-21515 (InstantPlay which included vulnerable script which could
execute javas ...)
NOT-FOR-US: InstantPlay
CVE-2023-21514 (Improper scheme validation from InstantPlay Deeplink in Galaxy
Store p ...)
NOT-FOR-US: InstantPlay
-CVE-2023-21513
- RESERVED
-CVE-2023-21512
- RESERVED
+CVE-2023-21513 (Improper privilege management vulnerability in CC Mode prior
to SMR Ju ...)
+ TODO: check
+CVE-2023-21512 (Improper Knox ID validation logic in notification framework
prior to S ...)
+ TODO: check
CVE-2023-21511 (Out-of-bounds Read vulnerability while processing
CMD_COLDWALLET_BTC_S ...)
NOT-FOR-US: Samsung
CVE-2023-21510 (Out-of-bounds Read vulnerability while processing
BC_TUI_CMD_UPDATE_SC ...)
@@ -87806,7 +87852,7 @@ CVE-2022-30258 (An issue was discovered in Technitium
DNS Server through 8.0.2 t
CVE-2022-30257 (An issue was discovered in Technitium DNS Server through 8.0.2
that al ...)
NOT-FOR-US: Technitium DNS Server
CVE-2022-30256 (An issue was discovered in MaraDNS Deadwood through 3.5.0021
that allo ...)
- {DLA-3457-1}
+ {DSA-5441-1 DLA-3457-1}
- maradns <unfixed> (bug #1033252)
NOTE: https://maradns.samiam.org/security.html#CVE-2022-30256
NOTE:
https://raw.githubusercontent.com/samboy/MaraDNS/73af12e71890055f1728c1b7ccd900401f2fdf03/deadwood-github/update/3.4.03/deadwood-3.4.02-manylabel-TTL.patch
@@ -91147,14 +91193,14 @@ CVE-2022-29149 (Azure Open Management Infrastructure
(OMI) Elevation of Privileg
NOT-FOR-US: Microsoft
CVE-2022-29148 (Visual Studio Remote Code Execution Vulnerability.)
NOT-FOR-US: Microsoft
-CVE-2022-29147
- RESERVED
-CVE-2022-29146
- RESERVED
+CVE-2022-29147 (Microsoft Edge (Chromium-based) Spoofing Vulnerability)
+ TODO: check
+CVE-2022-29146 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
+ TODO: check
CVE-2022-29145 (.NET and Visual Studio Denial of Service Vulnerability. This
CVE ID is ...)
NOT-FOR-US: Microsoft .NET
-CVE-2022-29144
- RESERVED
+CVE-2022-29144 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
+ TODO: check
CVE-2022-29143 (Microsoft SQL Server Remote Code Execution Vulnerability.)
NOT-FOR-US: Microsoft
CVE-2022-29142 (Windows Kernel Elevation of Privilege Vulnerability. This CVE
ID is un ...)
@@ -97720,73 +97766,73 @@ CVE-2022-26926 (Windows Address Book Remote Code
Execution Vulnerability.)
NOT-FOR-US: Microsoft
CVE-2022-26925 (Windows LSA Spoofing Vulnerability.)
NOT-FOR-US: Microsoft
-CVE-2022-26924 (YARP Denial of Service Vulnerability.)
+CVE-2022-26924 (YARP Denial of Service Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26923 (Active Directory Domain Services Elevation of Privilege
Vulnerability.)
NOT-FOR-US: Microsoft
CVE-2022-26922
RESERVED
-CVE-2022-26921 (Visual Studio Code Elevation of Privilege Vulnerability.)
+CVE-2022-26921 (Visual Studio Code Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26920 (Windows Graphics Component Information Disclosure
Vulnerability.)
+CVE-2022-26920 (Windows Graphics Component Information Disclosure
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26919 (Windows LDAP Remote Code Execution Vulnerability.)
+CVE-2022-26919 (Windows Lightweight Directory Access Protocol (LDAP) Remote
Code Execu ...)
NOT-FOR-US: Microsoft
-CVE-2022-26918 (Windows Fax Compose Form Remote Code Execution Vulnerability.
This CVE ...)
+CVE-2022-26918 (Windows Fax Compose Form Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26917 (Windows Fax Compose Form Remote Code Execution Vulnerability.
This CVE ...)
+CVE-2022-26917 (Windows Fax Compose Form Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26916 (Windows Fax Compose Form Remote Code Execution Vulnerability.
This CVE ...)
+CVE-2022-26916 (Windows Fax Compose Form Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26915 (Windows Secure Channel Denial of Service Vulnerability.)
+CVE-2022-26915 (Windows Secure Channel Denial of Service Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26914 (Win32k Elevation of Privilege Vulnerability.)
+CVE-2022-26914 (Win32k Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26913 (Windows Authentication Security Feature Bypass Vulnerability.)
NOT-FOR-US: Microsoft
-CVE-2022-26912 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability. ...)
+CVE-2022-26912 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26911 (Skype for Business Information Disclosure Vulnerability.)
+CVE-2022-26911 (Skype for Business Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26910 (Skype for Business and Lync Spoofing Vulnerability.)
+CVE-2022-26910 (Skype for Business and Lync Spoofing Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26909 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability. ...)
+CVE-2022-26909 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26908 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability. ...)
+CVE-2022-26908 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26907 (Azure SDK for .NET Information Disclosure Vulnerability.)
+CVE-2022-26907 (Azure SDK for .NET Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26906
RESERVED
CVE-2022-26905 (Microsoft Edge (Chromium-based) Spoofing Vulnerability.)
NOT-FOR-US: Microsoft
-CVE-2022-26904 (Windows User Profile Service Elevation of Privilege
Vulnerability.)
+CVE-2022-26904 (Windows User Profile Service Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26903 (Windows Graphics Component Remote Code Execution
Vulnerability.)
+CVE-2022-26903 (Windows Graphics Component Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26902
RESERVED
-CVE-2022-26901 (Microsoft Excel Remote Code Execution Vulnerability. This CVE
ID is un ...)
+CVE-2022-26901 (Microsoft Excel Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26900 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability. ...)
+CVE-2022-26900 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26899
- RESERVED
-CVE-2022-26898 (Azure Site Recovery Remote Code Execution Vulnerability.)
+CVE-2022-26899 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
+ TODO: check
+CVE-2022-26898 (Azure Site Recovery Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26897 (Azure Site Recovery Information Disclosure Vulnerability. This
CVE ID ...)
+CVE-2022-26897 (Azure Site Recovery Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26896 (Azure Site Recovery Information Disclosure Vulnerability. This
CVE ID ...)
+CVE-2022-26896 (Azure Site Recovery Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26895 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability. ...)
+CVE-2022-26895 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26894 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability. ...)
+CVE-2022-26894 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26893
RESERVED
CVE-2022-26892
RESERVED
-CVE-2022-26891 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability. ...)
+CVE-2022-26891 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26061 (A heap-based buffer overflow vulnerability exists in the
gif2h5 functi ...)
- hdf5 <unfixed> (bug #1031726)
@@ -97961,55 +98007,55 @@ CVE-2022-26843 (Insufficient visual distinction of
homoglyphs presented to user
NOT-FOR-US: Intel
CVE-2022-26832 (.NET Framework Denial of Service Vulnerability.)
NOT-FOR-US: Microsoft
-CVE-2022-26831 (Windows LDAP Denial of Service Vulnerability.)
+CVE-2022-26831 (Windows Lightweight Directory Access Protocol (LDAP) Denial of
Service ...)
NOT-FOR-US: Microsoft
-CVE-2022-26830 (DiskUsage.exe Remote Code Execution Vulnerability.)
+CVE-2022-26830 (DiskUsage.exe Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26829 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26829 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26828 (Windows Bluetooth Driver Elevation of Privilege Vulnerability.)
+CVE-2022-26828 (Windows Bluetooth Driver Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26827 (Windows File Server Resource Management Service Elevation of
Privilege ...)
NOT-FOR-US: Microsoft
-CVE-2022-26826 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26826 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26825 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26825 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26824 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26824 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26823 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26823 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26822 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26822 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26821 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26821 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26820 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26820 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26819 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26819 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26818 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26818 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26817 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26817 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26816 (Windows DNS Server Information Disclosure Vulnerability.)
+CVE-2022-26816 (Windows DNS Server Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26815 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26815 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26814 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26814 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26813 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26813 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26812 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26812 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26811 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-26811 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26810 (Windows File Server Resource Management Service Elevation of
Privilege ...)
NOT-FOR-US: Microsoft
-CVE-2022-26809 (Remote Procedure Call Runtime Remote Code Execution
Vulnerability. Thi ...)
+CVE-2022-26809 (Remote Procedure Call Runtime Remote Code Execution
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26808 (Windows File Explorer Elevation of Privilege Vulnerability.)
+CVE-2022-26808 (Windows File Explorer Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26807 (Windows Work Folder Service Elevation of Privilege
Vulnerability.)
+CVE-2022-26807 (Windows Work Folder Service Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26806 (Microsoft Office Graphics Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
@@ -98017,45 +98063,45 @@ CVE-2022-26805 (Microsoft Office Graphics Remote Code
Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26804 (Microsoft Office Graphics Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26803 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26803 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26802 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26802 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26801 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26801 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26800
RESERVED
CVE-2022-26799
RESERVED
-CVE-2022-26798 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26798 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26797 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26797 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26796 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26796 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26795 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26795 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26794 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26794 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26793 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26793 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26792 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26792 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26791 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26791 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26790 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26790 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26789 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26789 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26788 (PowerShell Elevation of Privilege Vulnerability.)
+CVE-2022-26788 (PowerShell Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26787 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26787 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-26786 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-26786 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26785 (Windows Hyper-V Shared Virtual Hard Disks Information
Disclosure Vulne ...)
NOT-FOR-US: Microsoft
-CVE-2022-26784 (Windows Cluster Shared Volume (CSV) Denial of Service
Vulnerability. T ...)
+CVE-2022-26784 (Windows Cluster Shared Volume (CSV) Denial of Service
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-26783 (Windows Hyper-V Shared Virtual Hard Disks Information
Disclosure Vulne ...)
NOT-FOR-US: Microsoft
@@ -104803,143 +104849,143 @@ CVE-2022-24552 (A flaw was found in the REST API
in StarWind Stack. REST command
NOT-FOR-US: StarWind
CVE-2022-24551 (A flaw was found in StarWind Stack. The endpoint for setting a
new pas ...)
NOT-FOR-US: StarWind
-CVE-2022-24550 (Windows Telephony Server Elevation of Privilege Vulnerability.)
+CVE-2022-24550 (Windows Telephony Server Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24549 (Windows AppX Package Manager Elevation of Privilege
Vulnerability.)
+CVE-2022-24549 (Windows AppX Package Manager Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24548 (Microsoft Defender Denial of Service Vulnerability.)
+CVE-2022-24548 (Microsoft Defender Denial of Service Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24547 (Windows Digital Media Receiver Elevation of Privilege
Vulnerability.)
+CVE-2022-24547 (Windows Digital Media Receiver Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24546 (Windows DWM Core Library Elevation of Privilege Vulnerability.)
+CVE-2022-24546 (Windows DWM Core Library Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24545 (Windows Kerberos Remote Code Execution Vulnerability.)
+CVE-2022-24545 (Windows Kerberos Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24544 (Windows Kerberos Elevation of Privilege Vulnerability. This
CVE ID is ...)
+CVE-2022-24544 (Windows Kerberos Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24543 (Windows Upgrade Assistant Remote Code Execution Vulnerability.)
+CVE-2022-24543 (Windows Upgrade Assistant Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24542 (Windows Win32k Elevation of Privilege Vulnerability. This CVE
ID is un ...)
+CVE-2022-24542 (Windows Win32k Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24541 (Windows Server Service Remote Code Execution Vulnerability.)
+CVE-2022-24541 (Windows Server Service Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24540 (Windows ALPC Elevation of Privilege Vulnerability. This CVE ID
is uniq ...)
+CVE-2022-24540 (Windows ALPC Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24539 (Windows Hyper-V Shared Virtual Hard Disks Information
Disclosure Vulne ...)
NOT-FOR-US: Microsoft
-CVE-2022-24538 (Windows Cluster Shared Volume (CSV) Denial of Service
Vulnerability. T ...)
+CVE-2022-24538 (Windows Cluster Shared Volume (CSV) Denial of Service
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24537 (Windows Hyper-V Remote Code Execution Vulnerability. This CVE
ID is un ...)
+CVE-2022-24537 (Windows Hyper-V Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24536 (Windows DNS Server Remote Code Execution Vulnerability. This
CVE ID is ...)
+CVE-2022-24536 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24535
RESERVED
-CVE-2022-24534 (Win32 Stream Enumeration Remote Code Execution Vulnerability.
This CVE ...)
+CVE-2022-24534 (Win32 Stream Enumeration Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24533 (Remote Desktop Protocol Remote Code Execution Vulnerability.)
+CVE-2022-24533 (Remote Desktop Protocol Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24532 (HEVC Video Extensions Remote Code Execution Vulnerability.)
+CVE-2022-24532 (HEVC Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24531
RESERVED
-CVE-2022-24530 (Windows Installer Elevation of Privilege Vulnerability. This
CVE ID is ...)
+CVE-2022-24530 (Windows Installer Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24529
RESERVED
-CVE-2022-24528 (Remote Procedure Call Runtime Remote Code Execution
Vulnerability. Thi ...)
+CVE-2022-24528 (Remote Procedure Call Runtime Remote Code Execution
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24527 (Windows Endpoint Configuration Manager Elevation of Privilege
Vulnerab ...)
NOT-FOR-US: Microsoft
-CVE-2022-24526 (Visual Studio Code Spoofing Vulnerability.)
+CVE-2022-24526 (Visual Studio Code Spoofing Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24525 (Windows Update Stack Elevation of Privilege Vulnerability.)
+CVE-2022-24525 (Windows Update Stack Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24524
RESERVED
-CVE-2022-24523 (Microsoft Edge (Chromium-based) Spoofing Vulnerability.)
+CVE-2022-24523 (Microsoft Edge (Chromium-based) Spoofing Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24522 (Skype Extension for Chrome Information Disclosure
Vulnerability.)
+CVE-2022-24522 (Skype Extension for Chrome Information Disclosure
Vulnerability)
NOT-FOR-US: Skype Extension for Chrome
CVE-2022-24521 (Windows Common Log File System Driver Elevation of Privilege
Vulnerabi ...)
NOT-FOR-US: Microsoft
-CVE-2022-24520 (Azure Site Recovery Remote Code Execution Vulnerability. This
CVE ID i ...)
+CVE-2022-24520 (Azure Site Recovery Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24519 (Azure Site Recovery Elevation of Privilege Vulnerability. This
CVE ID ...)
+CVE-2022-24519 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24518 (Azure Site Recovery Elevation of Privilege Vulnerability. This
CVE ID ...)
+CVE-2022-24518 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24517 (Azure Site Recovery Remote Code Execution Vulnerability. This
CVE ID i ...)
+CVE-2022-24517 (Azure Site Recovery Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24516 (Microsoft Exchange Server Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24515 (Azure Site Recovery Elevation of Privilege Vulnerability. This
CVE ID ...)
+CVE-2022-24515 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24514
RESERVED
-CVE-2022-24513 (Visual Studio Elevation of Privilege Vulnerability.)
+CVE-2022-24513 (Visual Studio Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24512 (.NET and Visual Studio Remote Code Execution Vulnerability.)
+CVE-2022-24512 (.NET and Visual Studio Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft .NET
-CVE-2022-24511 (Microsoft Office Word Tampering Vulnerability.)
+CVE-2022-24511 (Microsoft Office Word Tampering Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24510 (Microsoft Office Visio Remote Code Execution Vulnerability.
This CVE I ...)
+CVE-2022-24510 (Microsoft Office Visio Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24509 (Microsoft Office Visio Remote Code Execution Vulnerability.
This CVE I ...)
+CVE-2022-24509 (Microsoft Office Visio Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24508 (Windows SMBv3 Client/Server Remote Code Execution
Vulnerability.)
+CVE-2022-24508 (Win32 File Enumeration Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24507 (Windows Ancillary Function Driver for WinSock Elevation of
Privilege V ...)
NOT-FOR-US: Microsoft
-CVE-2022-24506 (Azure Site Recovery Elevation of Privilege Vulnerability. This
CVE ID ...)
+CVE-2022-24506 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24505 (Windows ALPC Elevation of Privilege Vulnerability. This CVE ID
is uniq ...)
+CVE-2022-24505 (Windows ALPC Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24504 (Windows Point-to-Point Tunneling Protocol Remote Code
Execution Vulner ...)
NOT-FOR-US: Microsoft
-CVE-2022-24503 (Remote Desktop Protocol Client Information Disclosure
Vulnerability.)
+CVE-2022-24503 (Remote Desktop Protocol Client Information Disclosure
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24502 (Windows HTML Platforms Security Feature Bypass Vulnerability.)
+CVE-2022-24502 (Windows HTML Platforms Security Feature Bypass Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24501 (VP9 Video Extensions Remote Code Execution Vulnerability. This
CVE ID ...)
+CVE-2022-24501 (VP9 Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24500 (Windows SMB Remote Code Execution Vulnerability.)
+CVE-2022-24500 (Windows SMB Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24499 (Windows Installer Elevation of Privilege Vulnerability. This
CVE ID is ...)
+CVE-2022-24499 (Windows Installer Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24498 (Windows iSCSI Target Service Information Disclosure
Vulnerability.)
+CVE-2022-24498 (Windows iSCSI Target Service Information Disclosure
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24497 (Windows Network File System Remote Code Execution
Vulnerability. This ...)
+CVE-2022-24497 (Windows Network File System Remote Code Execution
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24496 (Local Security Authority (LSA) Elevation of Privilege
Vulnerability.)
+CVE-2022-24496 (Windows Local Security Authority (LSA) Elevation of Privilege
Vulnerab ...)
NOT-FOR-US: Microsoft
-CVE-2022-24495 (Windows Direct Show - Remote Code Execution Vulnerability.)
+CVE-2022-24495 (Windows Direct Show - Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24494 (Windows Ancillary Function Driver for WinSock Elevation of
Privilege V ...)
NOT-FOR-US: Microsoft
CVE-2022-24493 (Microsoft Local Security Authority (LSA) Server Information
Disclosure ...)
NOT-FOR-US: Microsoft
-CVE-2022-24492 (Remote Procedure Call Runtime Remote Code Execution
Vulnerability. Thi ...)
+CVE-2022-24492 (Remote Procedure Call Runtime Remote Code Execution
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24491 (Windows Network File System Remote Code Execution
Vulnerability. This ...)
+CVE-2022-24491 (Windows Network File System Remote Code Execution
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24490 (Windows Hyper-V Shared Virtual Hard Disks Information
Disclosure Vulne ...)
NOT-FOR-US: Microsoft
-CVE-2022-24489 (Cluster Client Failover (CCF) Elevation of Privilege
Vulnerability.)
+CVE-2022-24489 (Cluster Client Failover (CCF) Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24488 (Windows Desktop Bridge Elevation of Privilege Vulnerability.)
+CVE-2022-24488 (Windows Desktop Bridge Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24487 (Windows Local Security Authority (LSA) Remote Code Execution
Vulnerabi ...)
NOT-FOR-US: Microsoft
-CVE-2022-24486 (Windows Kerberos Elevation of Privilege Vulnerability. This
CVE ID is ...)
+CVE-2022-24486 (Windows Kerberos Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24485 (Win32 File Enumeration Remote Code Execution Vulnerability.)
+CVE-2022-24485 (Win32 File Enumeration Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24484 (Windows Cluster Shared Volume (CSV) Denial of Service
Vulnerability. T ...)
+CVE-2022-24484 (Windows Cluster Shared Volume (CSV) Denial of Service
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24483 (Windows Kernel Information Disclosure Vulnerability.)
+CVE-2022-24483 (Windows Kernel Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24482 (Windows ALPC Elevation of Privilege Vulnerability. This CVE ID
is uniq ...)
+CVE-2022-24482 (Windows ALPC Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24481 (Windows Common Log File System Driver Elevation of Privilege
Vulnerabi ...)
NOT-FOR-US: Microsoft
@@ -104953,55 +104999,55 @@ CVE-2022-24477 (Microsoft Exchange Server Elevation
of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24476
RESERVED
-CVE-2022-24475 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability. ...)
+CVE-2022-24475 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24474 (Windows Win32k Elevation of Privilege Vulnerability. This CVE
ID is un ...)
+CVE-2022-24474 (Windows Win32k Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24473 (Microsoft Excel Remote Code Execution Vulnerability. This CVE
ID is un ...)
+CVE-2022-24473 (Microsoft Excel Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24472 (Microsoft SharePoint Server Spoofing Vulnerability.)
+CVE-2022-24472 (Microsoft SharePoint Server Spoofing Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24471 (Azure Site Recovery Remote Code Execution Vulnerability. This
CVE ID i ...)
+CVE-2022-24471 (Azure Site Recovery Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24470 (Azure Site Recovery Remote Code Execution Vulnerability. This
CVE ID i ...)
+CVE-2022-24470 (Azure Site Recovery Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24469 (Azure Site Recovery Elevation of Privilege Vulnerability. This
CVE ID ...)
+CVE-2022-24469 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24468 (Azure Site Recovery Remote Code Execution Vulnerability. This
CVE ID i ...)
+CVE-2022-24468 (Azure Site Recovery Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24467 (Azure Site Recovery Remote Code Execution Vulnerability. This
CVE ID i ...)
+CVE-2022-24467 (Azure Site Recovery Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24466 (Windows Hyper-V Security Feature Bypass Vulnerability.)
NOT-FOR-US: Microsoft
-CVE-2022-24465 (Microsoft Intune Portal for iOS Security Feature Bypass
Vulnerability.)
+CVE-2022-24465 (Microsoft Intune Portal for iOS Security Feature Bypass
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24464 (.NET and Visual Studio Denial of Service Vulnerability.)
+CVE-2022-24464 (.NET and Visual Studio Denial of Service Vulnerability)
NOT-FOR-US: Microsoft .NET
-CVE-2022-24463 (Microsoft Exchange Server Spoofing Vulnerability.)
+CVE-2022-24463 (Microsoft Exchange Server Spoofing Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24462 (Microsoft Word Security Feature Bypass Vulnerability.)
+CVE-2022-24462 (Microsoft Word Security Feature Bypass Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24461 (Microsoft Office Visio Remote Code Execution Vulnerability.
This CVE I ...)
+CVE-2022-24461 (Microsoft Office Visio Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24460 (Tablet Windows User Interface Application Elevation of
Privilege Vulne ...)
NOT-FOR-US: Microsoft
-CVE-2022-24459 (Windows Fax and Scan Service Elevation of Privilege
Vulnerability.)
+CVE-2022-24459 (Windows Fax and Scan Service Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24458
RESERVED
-CVE-2022-24457 (HEIF Image Extensions Remote Code Execution Vulnerability.)
+CVE-2022-24457 (HEIF Image Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24456 (HEVC Video Extensions Remote Code Execution Vulnerability.
This CVE ID ...)
+CVE-2022-24456 (HEVC Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24455 (Windows CD-ROM Driver Elevation of Privilege Vulnerability.)
+CVE-2022-24455 (Windows CD-ROM Driver Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24454 (Windows Security Support Provider Interface Elevation of
Privilege Vul ...)
NOT-FOR-US: Microsoft
-CVE-2022-24453 (HEVC Video Extensions Remote Code Execution Vulnerability.
This CVE ID ...)
+CVE-2022-24453 (HEVC Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24452 (HEVC Video Extensions Remote Code Execution Vulnerability.
This CVE ID ...)
+CVE-2022-24452 (HEVC Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24451 (VP9 Video Extensions Remote Code Execution Vulnerability. This
CVE ID ...)
+CVE-2022-24451 (VP9 Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24450 (NATS nats-server before 2.7.2 has Incorrect Access Control.
Any authen ...)
- nats-server <not-affected> (Fixed before initial upload to Debian)
@@ -106160,7 +106206,7 @@ CVE-2021-46657 (get_sort_by_table in MariaDB before
10.6.2 allows an application
[buster] - mariadb-10.3 1:10.3.31-0+deb10u1
NOTE: https://jira.mariadb.org/browse/MDEV-25629
NOTE: Fixed in MariaDB: 10.2.39, 10.3.30, 10.4.20, 10.5.11, 10.6.2
-CVE-2022-0414 (Business Logic Errors in Packagist dolibarr/dolibarr prior to
16.0.)
+CVE-2022-0414 (Improper Validation of Specified Quantity in Input in Packagist
doliba ...)
- dolibarr <removed>
CVE-2022-0413 (Use After Free in GitHub repository vim/vim prior to 8.2.)
{DLA-3182-1 DLA-3011-1}
@@ -108923,7 +108969,7 @@ CVE-2022-0279 (The AnyComment WordPress plugin before
0.2.18 is affected by a ra
NOT-FOR-US: WordPress plugin
CVE-2022-0278 (Cross-site Scripting (XSS) - Stored in Packagist
microweber/microweber ...)
NOT-FOR-US: microweber
-CVE-2022-0277 (Improper Access Control in Packagist microweber/microweber
prior to 1. ...)
+CVE-2022-0277 (Incorrect Permission Assignment for Critical Resource in
Packagist mic ...)
NOT-FOR-US: microweber
CVE-2021-46401
RESERVED
@@ -109583,87 +109629,87 @@ CVE-2022-0239 (corenlp is vulnerable to Improper
Restriction of XML External Ent
NOT-FOR-US: corenlp
CVE-2022-0238 (phoronix-test-suite is vulnerable to Cross-Site Request Forgery
(CSRF))
- phoronix-test-suite <removed>
-CVE-2022-23301 (HEVC Video Extensions Remote Code Execution Vulnerability.
This CVE ID ...)
+CVE-2022-23301 (HEVC Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23300 (Raw Image Extension Remote Code Execution Vulnerability. This
CVE ID i ...)
+CVE-2022-23300 (Raw Image Extension Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23299 (Windows PDEV Elevation of Privilege Vulnerability.)
+CVE-2022-23299 (Windows PDEV Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23298 (Windows NT OS Kernel Elevation of Privilege Vulnerability.)
+CVE-2022-23298 (Windows NT OS Kernel Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23297 (Windows NT Lan Manager Datagram Receiver Driver Information
Disclosure ...)
NOT-FOR-US: Microsoft
-CVE-2022-23296 (Windows Installer Elevation of Privilege Vulnerability.)
+CVE-2022-23296 (Windows Installer Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23295 (Raw Image Extension Remote Code Execution Vulnerability. This
CVE ID i ...)
+CVE-2022-23295 (Raw Image Extension Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23294 (Windows Event Tracing Remote Code Execution Vulnerability.)
+CVE-2022-23294 (Windows Event Tracing Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23293 (Windows Fast FAT File System Driver Elevation of Privilege
Vulnerabili ...)
NOT-FOR-US: Microsoft
-CVE-2022-23292 (Microsoft Power BI Spoofing Vulnerability.)
+CVE-2022-23292 (Microsoft Power BI Spoofing Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23291 (Windows DWM Core Library Elevation of Privilege Vulnerability.
This CV ...)
+CVE-2022-23291 (Windows DWM Core Library Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23290 (Windows Inking COM Elevation of Privilege Vulnerability.)
+CVE-2022-23290 (Windows Inking COM Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23289
RESERVED
-CVE-2022-23288 (Windows DWM Core Library Elevation of Privilege Vulnerability.
This CV ...)
+CVE-2022-23288 (Windows DWM Core Library Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23287 (Windows ALPC Elevation of Privilege Vulnerability. This CVE ID
is uniq ...)
+CVE-2022-23287 (Windows ALPC Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23286 (Windows Cloud Files Mini Filter Driver Elevation of Privilege
Vulnerab ...)
NOT-FOR-US: Microsoft
-CVE-2022-23285 (Remote Desktop Client Remote Code Execution Vulnerability.
This CVE ID ...)
+CVE-2022-23285 (Remote Desktop Client Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23284 (Windows Print Spooler Elevation of Privilege Vulnerability.)
+CVE-2022-23284 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23283 (Windows ALPC Elevation of Privilege Vulnerability. This CVE ID
is uniq ...)
+CVE-2022-23283 (Windows ALPC Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23282 (Paint 3D Remote Code Execution Vulnerability.)
+CVE-2022-23282 (Paint 3D Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23281 (Windows Common Log File System Driver Information Disclosure
Vulnerabi ...)
NOT-FOR-US: Microsoft
-CVE-2022-23280 (Microsoft Outlook for Mac Security Feature Bypass
Vulnerability.)
+CVE-2022-23280 (Microsoft Outlook for Mac Security Feature Bypass
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23279 (Windows ALPC Elevation of Privilege Vulnerability.)
NOT-FOR-US: Microsoft
-CVE-2022-23278 (Microsoft Defender for Endpoint Spoofing Vulnerability.)
+CVE-2022-23278 (Microsoft Defender for Endpoint Spoofing Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23277 (Microsoft Exchange Server Remote Code Execution Vulnerability.)
+CVE-2022-23277 (Microsoft Exchange Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23276 (SQL Server for Linux Containers Elevation of Privilege
Vulnerability.)
+CVE-2022-23276 (SQL Server for Linux Containers Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23275
RESERVED
-CVE-2022-23274 (Microsoft Dynamics GP Remote Code Execution Vulnerability.)
+CVE-2022-23274 (Microsoft Dynamics GP Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23273 (Microsoft Dynamics GP Elevation Of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-23273 (Microsoft Dynamics GP Elevation Of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23272 (Microsoft Dynamics GP Elevation Of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-23272 (Microsoft Dynamics GP Elevation Of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23271 (Microsoft Dynamics GP Elevation Of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-23271 (Microsoft Dynamics GP Elevation Of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23270 (Point-to-Point Tunneling Protocol Remote Code Execution
Vulnerability. ...)
NOT-FOR-US: Microsoft
-CVE-2022-23269 (Microsoft Dynamics GP Spoofing Vulnerability.)
+CVE-2022-23269 (Microsoft Dynamics GP Spoofing Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23268 (Windows Hyper-V Denial of Service Vulnerability.)
+CVE-2022-23268 (Windows Hyper-V Denial of Service Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23267 (.NET and Visual Studio Denial of Service Vulnerability. This
CVE ID is ...)
NOT-FOR-US: Microsoft .NET
-CVE-2022-23266 (Microsoft Defender for IoT Elevation of Privilege
Vulnerability.)
+CVE-2022-23266 (Microsoft Defender for IoT Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23265 (Microsoft Defender for IoT Remote Code Execution
Vulnerability.)
+CVE-2022-23265 (Microsoft Defender for IoT Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23264
- RESERVED
-CVE-2022-23263 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability. ...)
+CVE-2022-23264 (Microsoft Edge (Chromium-based) Spoofing Vulnerability)
+ TODO: check
+CVE-2022-23263 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23262 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability. ...)
+CVE-2022-23262 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23261 (Microsoft Edge (Chromium-based) Tampering Vulnerability.)
+CVE-2022-23261 (Microsoft Edge (Chromium-based) Tampering Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23260
RESERVED
@@ -109671,17 +109717,17 @@ CVE-2022-23259 (Microsoft Dynamics 365
(on-premises) Remote Code Execution Vulne
NOT-FOR-US: Microsoft
CVE-2022-23258 (Microsoft Edge for Android Spoofing Vulnerability.)
NOT-FOR-US: Microsoft
-CVE-2022-23257 (Windows Hyper-V Remote Code Execution Vulnerability. This CVE
ID is un ...)
+CVE-2022-23257 (Windows Hyper-V Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23256 (Azure Data Explorer Spoofing Vulnerability.)
NOT-FOR-US: Microsoft
-CVE-2022-23255 (Microsoft OneDrive for Android Security Feature Bypass
Vulnerability.)
+CVE-2022-23255 (Microsoft OneDrive for Android Security Feature Bypass
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23254 (Microsoft Power BI Information Disclosure Vulnerability.)
+CVE-2022-23254 (Microsoft Power BI Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-23253 (Point-to-Point Tunneling Protocol Denial of Service
Vulnerability.)
+CVE-2022-23253 (Windows Point-to-Point Tunneling Protocol Denial of Service
Vulnerabil ...)
NOT-FOR-US: Microsoft
-CVE-2022-23252 (Microsoft Office Information Disclosure Vulnerability.)
+CVE-2022-23252 (Microsoft Office Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-23251
RESERVED
@@ -110598,7 +110644,7 @@ CVE-2022-0181 (Reflected cross-site scripting
vulnerability in Quiz And Survey M
NOT-FOR-US: Quiz And Survey Master
CVE-2022-0180 (Cross-site request forgery (CSRF) vulnerability in Quiz And
Survey Mas ...)
NOT-FOR-US: Quiz And Survey Master
-CVE-2022-0179 (snipe-it is vulnerable to Improper Access Control)
+CVE-2022-0179 (snipe-it is vulnerable to Missing Authorization)
- snipe-it <itp> (bug #1005172)
CVE-2022-0178 (snipe-it is vulnerable to Improper Access Control)
- snipe-it <itp> (bug #1005172)
@@ -111815,25 +111861,25 @@ CVE-2022-22719 (A carefully crafted request body
can cause a read to a random me
[buster] - apache2 2.4.38-3+deb10u8
NOTE:
https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-22719
NOTE: Fixed by: https://svn.apache.org/r1898694
-CVE-2022-22718 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-22718 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22717 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-22717 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22716 (Microsoft Excel Information Disclosure Vulnerability.)
+CVE-2022-22716 (Microsoft Excel Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22715 (Named Pipe File System Elevation of Privilege Vulnerability.)
+CVE-2022-22715 (Named Pipe File System Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-22714
RESERVED
CVE-2022-22713 (Windows Hyper-V Denial of Service Vulnerability.)
NOT-FOR-US: Microsoft
-CVE-2022-22712 (Windows Hyper-V Denial of Service Vulnerability.)
+CVE-2022-22712 (Windows Hyper-V Denial of Service Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-22711 (Windows BitLocker Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22710 (Windows Common Log File System Driver Denial of Service
Vulnerability.)
+CVE-2022-22710 (Windows Common Log File System Driver Denial of Service
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22709 (VP9 Video Extensions Remote Code Execution Vulnerability.)
+CVE-2022-22709 (VP9 Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21806 (A use-after-free vulnerability exists in the mips_collector
appsrv_ser ...)
NOT-FOR-US: Anker Eufy Homebase
@@ -116292,61 +116338,61 @@ CVE-2022-22012 (Windows LDAP Remote Code Execution
Vulnerability. This CVE ID is
NOT-FOR-US: Microsoft
CVE-2022-22011 (Windows Graphics Component Information Disclosure
Vulnerability. This ...)
NOT-FOR-US: Microsoft
-CVE-2022-22010 (Media Foundation Information Disclosure Vulnerability. This
CVE ID is ...)
+CVE-2022-22010 (Media Foundation Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22009 (Windows Hyper-V Remote Code Execution Vulnerability. This CVE
ID is un ...)
+CVE-2022-22009 (Windows Hyper-V Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22008 (Windows Hyper-V Remote Code Execution Vulnerability. This CVE
ID is un ...)
+CVE-2022-22008 (Windows Hyper-V Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22007 (HEVC Video Extensions Remote Code Execution Vulnerability.
This CVE ID ...)
+CVE-2022-22007 (HEVC Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22006 (HEVC Video Extensions Remote Code Execution Vulnerability.
This CVE ID ...)
+CVE-2022-22006 (HEVC Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22005 (Microsoft SharePoint Server Remote Code Execution
Vulnerability.)
+CVE-2022-22005 (Microsoft SharePoint Server Remote Code Execution
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22004 (Microsoft Office ClickToRun Remote Code Execution
Vulnerability.)
+CVE-2022-22004 (Microsoft Office ClickToRun Remote Code Execution
Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22003 (Microsoft Office Graphics Remote Code Execution Vulnerability.)
+CVE-2022-22003 (Microsoft Office Graphics Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22002 (Windows User Account Profile Picture Denial of Service
Vulnerability.)
+CVE-2022-22002 (Windows User Account Profile Picture Denial of Service
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-22001 (Windows Remote Access Connection Manager Elevation of
Privilege Vulner ...)
NOT-FOR-US: Microsoft
CVE-2022-22000 (Windows Common Log File System Driver Elevation of Privilege
Vulnerabi ...)
NOT-FOR-US: Microsoft
-CVE-2022-21999 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-21999 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21998 (Windows Common Log File System Driver Information Disclosure
Vulnerabi ...)
NOT-FOR-US: Microsoft
-CVE-2022-21997 (Windows Print Spooler Elevation of Privilege Vulnerability.
This CVE I ...)
+CVE-2022-21997 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-21996 (Win32k Elevation of Privilege Vulnerability.)
+CVE-2022-21996 (Win32k Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-21995 (Windows Hyper-V Remote Code Execution Vulnerability.)
+CVE-2022-21995 (Windows Hyper-V Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-21994 (Windows DWM Core Library Elevation of Privilege Vulnerability.)
+CVE-2022-21994 (Windows DWM Core Library Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21993 (Windows Services for NFS ONCRPC XDR Driver Information
Disclosure Vuln ...)
NOT-FOR-US: Microsoft
-CVE-2022-21992 (Windows Mobile Device Management Remote Code Execution
Vulnerability.)
+CVE-2022-21992 (Windows Mobile Device Management Remote Code Execution
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21991 (Visual Studio Code Remote Development Extension Remote Code
Execution ...)
NOT-FOR-US: Microsoft
-CVE-2022-21990 (Remote Desktop Client Remote Code Execution Vulnerability.
This CVE ID ...)
+CVE-2022-21990 (Remote Desktop Client Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-21989 (Windows Kernel Elevation of Privilege Vulnerability.)
+CVE-2022-21989 (Windows Kernel Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-21988 (Microsoft Office Visio Remote Code Execution Vulnerability.)
+CVE-2022-21988 (Microsoft Office Visio Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-21987 (Microsoft SharePoint Server Spoofing Vulnerability.)
+CVE-2022-21987 (Microsoft SharePoint Server Spoofing Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-21986 (.NET Denial of Service Vulnerability.)
+CVE-2022-21986 (.NET Denial of Service Vulnerability)
NOT-FOR-US: Microsoft .NET
CVE-2022-21985 (Windows Remote Access Connection Manager Information
Disclosure Vulner ...)
NOT-FOR-US: Microsoft
-CVE-2022-21984 (Windows DNS Server Remote Code Execution Vulnerability.)
+CVE-2022-21984 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-21983 (Win32 Stream Enumeration Remote Code Execution Vulnerability.
This CVE ...)
+CVE-2022-21983 (Win32 Stream Enumeration Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21982
RESERVED
@@ -116358,25 +116404,25 @@ CVE-2022-21979 (Microsoft Exchange Server
Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21978 (Microsoft Exchange Server Elevation of Privilege
Vulnerability.)
NOT-FOR-US: Microsoft
-CVE-2022-21977 (Media Foundation Information Disclosure Vulnerability. This
CVE ID is ...)
+CVE-2022-21977 (Media Foundation Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21976
RESERVED
-CVE-2022-21975 (Windows Hyper-V Denial of Service Vulnerability.)
+CVE-2022-21975 (Windows Hyper-V Denial of Service Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21974 (Roaming Security Rights Management Services Remote Code
Execution Vuln ...)
NOT-FOR-US: Microsoft
-CVE-2022-21973 (Windows Media Center Update Denial of Service Vulnerability.)
+CVE-2022-21973 (Windows Media Center Update Denial of Service Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21972 (Point-to-Point Tunneling Protocol Remote Code Execution
Vulnerability. ...)
NOT-FOR-US: Microsoft
-CVE-2022-21971 (Windows Runtime Remote Code Execution Vulnerability.)
+CVE-2022-21971 (Windows Runtime Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21970 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability. ...)
NOT-FOR-US: Microsoft
CVE-2022-21969 (Microsoft Exchange Server Remote Code Execution Vulnerability.
This CV ...)
NOT-FOR-US: Microsoft
-CVE-2022-21968 (Microsoft SharePoint Server Security Feature
BypassVulnerability.)
+CVE-2022-21968 (Microsoft SharePoint Server Security Feature Bypass
Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21967 (Xbox Live Auth Manager for Windows Elevation of Privilege
Vulnerabilit ...)
NOT-FOR-US: Microsoft
@@ -117032,9 +117078,9 @@ CVE-2022-21929 (Microsoft Edge (Chromium-based)
Remote Code Execution Vulnerabil
NOT-FOR-US: Microsoft
CVE-2022-21928 (Windows Resilient File System (ReFS) Remote Code Execution
Vulnerabili ...)
NOT-FOR-US: Microsoft
-CVE-2022-21927 (HEVC Video Extensions Remote Code Execution Vulnerability.
This CVE ID ...)
+CVE-2022-21927 (HEVC Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-21926 (HEVC Video Extensions Remote Code Execution Vulnerability.
This CVE ID ...)
+CVE-2022-21926 (HEVC Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21925 (Windows BackupKey Remote Protocol Security Feature Bypass
Vulnerabilit ...)
NOT-FOR-US: Microsoft
@@ -117198,7 +117244,7 @@ CVE-2022-21846 (Microsoft Exchange Server Remote Code
Execution Vulnerability. T
NOT-FOR-US: Microsoft
CVE-2022-21845 (Windows Kernel Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-21844 (HEVC Video Extensions Remote Code Execution Vulnerability.
This CVE ID ...)
+CVE-2022-21844 (HEVC Video Extensions Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-21843 (Windows IKE Extension Denial of Service Vulnerability. This
CVE ID is ...)
NOT-FOR-US: Microsoft
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/684adc2822c40a57136e7731ffdd167dcb2749b5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/684adc2822c40a57136e7731ffdd167dcb2749b5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
