Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
68d0e467 by Moritz Muehlenhoff at 2024-03-18T11:06:40+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,67 +1,67 @@
CVE-2024-2581 (A vulnerability was found in Tenda AC10 16.03.10.13 and
classified as ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-2577 (A vulnerability has been found in SourceCodester Employee Task
Managem ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2576 (A vulnerability, which was classified as critical, was found in
Source ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2575 (A vulnerability, which was classified as critical, has been
found in S ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2574 (A vulnerability classified as critical was found in
SourceCodester Emp ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2573 (A vulnerability classified as critical has been found in
SourceCodeste ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2572 (A vulnerability was found in SourceCodester Employee Task
Management S ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2571 (A vulnerability was found in SourceCodester Employee Task
Management S ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2570 (A vulnerability was found in SourceCodester Employee Task
Management S ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2569 (A vulnerability was found in SourceCodester Employee Task
Management S ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2568 (A vulnerability has been found in heyewei JFinalCMS 5.0.0 and
classifi ...)
- TODO: check
+ NOT-FOR-US: JFinalCMS
CVE-2024-2567 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was
classified ...)
- TODO: check
+ NOT-FOR-US: AndroidWeatherApp
CVE-2024-29156 (In OpenStack Murano through 16.0.0, when YAQL before 3.0.0 is
used, th ...)
TODO: check
CVE-2024-29154 (danielmiessler fabric through 1.3.0 allows
installer/client/gui/static ...)
- TODO: check
+ NOT-FOR-US: danielmiessler/fabric
CVE-2024-29151 (Rocket.Chat.Audit through 5ad78e8 depends on filecachetools,
which doe ...)
- TODO: check
+ NOT-FOR-US: Rocket.Chat.Audit
CVE-2024-28745 (Improper export of Android application components issue exists
in 'ABE ...)
- TODO: check
+ NOT-FOR-US: ABEMA App for Android
CVE-2024-28128 (Cross-site scripting vulnerability exists in FitNesse releases
prior t ...)
- TODO: check
+ NOT-FOR-US: FitNesse
CVE-2024-28125 (FitNesse all releases allows a remote authenticated attacker
to execut ...)
- TODO: check
+ NOT-FOR-US: FitNesse
CVE-2024-27974 (Cross-site request forgery vulnerability in FUJIFILM printers
which im ...)
- TODO: check
+ NOT-FOR-US: FUJIFILM
CVE-2024-27757 (flusity CMS through 2.45 allows tools/addons_model.php Gallery
Name XS ...)
- TODO: check
+ NOT-FOR-US: flusity CMS
CVE-2024-24539 (FusionPBX before 5.2.0 does not validate a session.)
- TODO: check
+ NOT-FOR-US: FusionPBX
CVE-2024-24230 (Komm.One CMS 10.4.2.14 has a Server-Side Template Injection
(SSTI) vul ...)
- TODO: check
+ NOT-FOR-US: Komm.One CMS
CVE-2024-23604 (Cross-site scripting vulnerability exists in FitNesse all
releases, wh ...)
- TODO: check
+ NOT-FOR-US: FitNesse
CVE-2024-23139 (An Out-Of-Bounds Write Vulnerability in Autodesk FBX Review
version 1. ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2024-23138 (A maliciously crafted DWG file when parsed through Autodesk
DWG TrueVi ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2024-22475 (Cross-site request forgery vulnerability in multiple printers
and scan ...)
- TODO: check
+ NOT-FOR-US: BROTHER
CVE-2024-21824 (Improper authentication vulnerability in exists in multiple
printers a ...)
- TODO: check
+ NOT-FOR-US: BROTHER
CVE-2023-52159 (A stack-based buffer overflow vulnerability in gross 0.9.3
through 1.x ...)
TODO: check
CVE-2023-40747 (Directory traversal vulnerability exists in A.K.I Software's
PMailServ ...)
- TODO: check
+ NOT-FOR-US: PMailServer2
CVE-2023-40160 (Directory traversal vulnerability exists in Mailing List
Search CGI (p ...)
- TODO: check
+ NOT-FOR-US: PMailServer2
CVE-2023-39933 (Insufficient verification vulnerability exists in Broadcast
Mail CGI ( ...)
- TODO: check
+ NOT-FOR-US: PMailServer2
CVE-2023-39223 (Stored cross-site scripting vulnerability exists in CGIs
included in A ...)
- TODO: check
+ NOT-FOR-US: PMailServer2
CVE-2021-47157 (The Kossy module before 0.60 for Perl allows JSON hijacking
because of ...)
TODO: check
CVE-2021-47156 (The Net::IPAddress::Util module before 5.000 for Perl does not
properl ...)
@@ -85171,9 +85171,9 @@ CVE-2022-47039
CVE-2022-47038
RESERVED
CVE-2022-47037 (Siklu TG Terragraph devices before 2.1.1 allow attackers to
discover v ...)
- TODO: check
+ NOT-FOR-US: Siklu TG Terragraph
CVE-2022-47036 (Siklu TG Terragraph devices before approximately 2.1.1 have a
hardcode ...)
- TODO: check
+ NOT-FOR-US: Siklu TG Terragraph
CVE-2022-47035 (Buffer Overflow Vulnerability in D-Link DIR-825
v1.33.0.44ebdd4-embedd ...)
NOT-FOR-US: D-Link
CVE-2022-47034 (A type juggling vulnerability in the component /auth/fn.php of
PlaySMS ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68d0e467da4e906942637d607b26c1e134565a79
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68d0e467da4e906942637d607b26c1e134565a79
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
