Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f3b58bda by Salvatore Bonaccorso at 2023-09-20T22:43:50+02:00
Unify some TP-Link NFUs names
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1676,7 +1676,7 @@ CVE-2023-40552 (Auth. (admin+) Stored Cross-Site
Scripting (XSS) vulnerability i
CVE-2023-40531 (Archer AX6000 firmware versions prior to 'Archer
AX6000(JP)_V1_1.3.0 B ...)
NOT-FOR-US: Archer AX6000 firmware
CVE-2023-40357 (Multiple TP-LINK products allow a network-adjacent
authenticated attac ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2023-40329 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in WPZe ...)
NOT-FOR-US: WordPress plugin
CVE-2023-40328 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Carr ...)
@@ -1713,7 +1713,7 @@ CVE-2023-37941 (If an attacker gains write access to the
Apache Superset metadat
CVE-2023-37284 (Improper authentication vulnerability in Archer C20 firmware
versions ...)
NOT-FOR-US: Archer
CVE-2023-36489 (Multiple TP-LINK products allow a network-adjacent
unauthenticated att ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2023-36388 (Improper REST API permission in Apache Superset up to and
including 2. ...)
NOT-FOR-US: Apache Superset
CVE-2023-36387 (An improper default REST API permission for Gamma users in
Apache Supe ...)
@@ -1723,7 +1723,7 @@ CVE-2023-32672 (An Incorrect authorisation check in
SQLLab in Apache Superset ve
CVE-2023-32619 (Archer C50 firmware versions prior to 'Archer
C50(JP)_V3_230505' and A ...)
NOT-FOR-US: Archer
CVE-2023-31188 (Multiple TP-LINK products allow a network-adjacent
authenticated attac ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2023-41947 (A missing permission check in Jenkins Frugal Testing Plugin
1.1 and ea ...)
NOT-FOR-US: Jenkins plugin
CVE-2023-41946 (A cross-site request forgery (CSRF) vulnerability in Jenkins
Frugal Te ...)
@@ -19925,7 +19925,7 @@ CVE-2023-30385
CVE-2023-30384
RESERVED
CVE-2023-30383 (TP-LINK Archer C50v2 Archer C50(US)_V2_160801, TP-LINK Archer
C20v1 Ar ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2023-30382 (A buffer overflow in the component hl.exe of Valve Half-Life
up to 543 ...)
NOT-FOR-US: hl.exe of Valve Half-Life
CVE-2023-30381
@@ -50071,15 +50071,15 @@ CVE-2022-46916
CVE-2022-46915
RESERVED
CVE-2022-46914 (An issue in the firmware update process of TP-LINK TL-WA801N /
TL-WA80 ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2022-46913
RESERVED
CVE-2022-46912 (An issue in the firmware update process of TP-Link TL-WR841N /
TL-WA84 ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2022-46911
RESERVED
CVE-2022-46910 (An issue in the firmware update process of TP-Link TL-WA901ND
V1 up to ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2022-46909
RESERVED
CVE-2022-4429 (Avira Security for Windows contains an unquoted service path
which all ...)
@@ -51576,21 +51576,21 @@ CVE-2022-46437
CVE-2022-46436
RESERVED
CVE-2022-46435 (An issue in the firmware update process of TP-Link TL-WR941ND
V2/V3 up ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2022-46434 (An issue in the firmware update process of TP-Link TL-WA7510N
v1 v3.12 ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2022-46433
RESERVED
CVE-2022-46432 (An exploitable firmware modification vulnerability was
discovered on T ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2022-46431
RESERVED
CVE-2022-46430 (TP-Link TL-WR740N V1 and V2 v3.12.4 and earlier allows
authenticated a ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2022-46429
RESERVED
CVE-2022-46428 (TP-Link TL-WR1043ND V1 3.13.15 and earlier allows
authenticated attack ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2022-46427
RESERVED
CVE-2022-46426
@@ -52898,7 +52898,7 @@ CVE-2022-4148 (The WP OAuth Server (OAuth
Authentication) WordPress plugin befor
CVE-2022-4147 (Quarkus CORS filter allows simple GET and POST requests with
invalid O ...)
NOT-FOR-US: Quarkus
CVE-2022-46139 (TP-Link TL-WR940N V4 3.16.9 and earlier allows authenticated
attackers ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2022-46138
RESERVED
CVE-2022-46137 (AeroCMS v0.0.1 is vulnerable to Directory Traversal. The
impact is: ob ...)
@@ -87831,7 +87831,7 @@ CVE-2022-34557 (Barangay Management System v1.0 was
discovered to contain a SQL
CVE-2022-34556 (PicoC v3.2.2 was discovered to contain a NULL pointer
dereference at v ...)
NOT-FOR-US: PicoC
CVE-2022-34555 (TP-LINK TL-R473G 2.0.1 Build 220529 Rel.65574n was discovered
to conta ...)
- NOT-FOR-US: TP-LINK
+ NOT-FOR-US: TP-Link
CVE-2022-34554
RESERVED
CVE-2022-34553
@@ -125250,7 +125250,7 @@ CVE-2021-46124
CVE-2021-46123
RESERVED
CVE-2021-46122 (Tp-Link TL-WR840N (EU) v6.20 Firmware (0.9.1 4.17 v0001.0
Build 201124 ...)
- NOT-FOR-US: Tp-Link TL-WR840N
+ NOT-FOR-US: TP-Link TL-WR840N
CVE-2021-46121
RESERVED
CVE-2021-46120
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3b58bda4af782fc21f2cce1ceb17e63bd3ff0b2
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3b58bda4af782fc21f2cce1ceb17e63bd3ff0b2
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
