Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3200d565 by Salvatore Bonaccorso at 2024-03-06T09:16:48+01:00
Process some new NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,35 +1,35 @@
CVE-2024-2179 (Concrete CMS version 9 before 9.2.7 is vulnerable to Stored XSS
via th ...)
TODO: check
CVE-2024-27765 (Directory Traversal vulnerability in Jeewms v.3.7 and before
allows a ...)
- TODO: check
+ NOT-FOR-US: Jeewms
CVE-2024-27764 (An issue in Jeewms v.3.7 and before allows a remote attacker
to escala ...)
- TODO: check
+ NOT-FOR-US: Jeewms
CVE-2024-27278 (OpenPNE Plugin "opTimelinePlugin" 1.2.11 and earlier contains
a cross- ...)
- TODO: check
+ NOT-FOR-US: OpenPNE Plugin
CVE-2024-25858 (In Foxit PDF Reader before 2024.1 and PDF Editor before
2024.1, code e ...)
- TODO: check
+ NOT-FOR-US: Foxit PDF Reader
CVE-2024-25817 (Buffer Overflow vulnerability in eza before version 0.18.2,
allows loc ...)
TODO: check
CVE-2024-25616 (Aruba has identified certain configurations of ArubaOS that
can lead t ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2024-25615 (An unauthenticated Denial-of-Service (DoS) vulnerability
exists in the ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2024-25614 (There is an arbitrary file deletion vulnerability in the CLI
used by A ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2024-25613 (Authenticated command injection vulnerabilities exist in the
ArubaOS c ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2024-25612 (Authenticated command injection vulnerabilities exist in the
ArubaOS c ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2024-25611 (Authenticated command injection vulnerabilities exist in the
ArubaOS c ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2024-24786 (The protojson.Unmarshal function can enter an infinite loop
when unmar ...)
TODO: check
CVE-2024-24278 (An issue in Teamwire Windows desktop client v.2.0.1 through
v.2.4.0 al ...)
- TODO: check
+ NOT-FOR-US: Teamwire Windows desktop client
CVE-2024-24276 (Cross Site Scripting (XSS) vulnerability in Teamwire Windows
desktop c ...)
- TODO: check
+ NOT-FOR-US: Teamwire Windows desktop client
CVE-2024-24275 (Cross Site Scripting vulnerability in Teamwire Windows desktop
client ...)
- TODO: check
+ NOT-FOR-US: Teamwire Windows desktop client
CVE-2024-22889 (Due to incorrect access control in Plone version v6.0.9,
remote attack ...)
TODO: check
CVE-2024-1989 (The Social Sharing Plugin \u2013 Sassy Social Share plugin for
WordPre ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3200d56575a356cdf6bd96b56b410acfe317846a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3200d56575a356cdf6bd96b56b410acfe317846a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
