Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c5d96ae2 by Salvatore Bonaccorso at 2024-04-02T22:21:47+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,69 +1,69 @@
CVE-2024-3151 (A vulnerability, which was classified as problematic, was found
in Bdt ...)
- TODO: check
+ NOT-FOR-US: Bdtask Multi-Store Inventory Management System
CVE-2024-31109 (Cross-Site Request Forgery (CSRF) vulnerability in Toastie
Studio Wooc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-31105 (Cross-Site Request Forgery (CSRF) vulnerability in Adam Bowen
Tax Rate ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30965 (DedeCMS v5.7 was discovered to contain a Cross-Site Request
Forgery (C ...)
- TODO: check
+ NOT-FOR-US: DedeCMS
CVE-2024-30946 (DedeCMS v5.7 was discovered to contain a Cross-Site Request
Forgery (C ...)
- TODO: check
+ NOT-FOR-US: DedeCMS
CVE-2024-30809 (An issue was discovered in Bento4 v1.6.0-641-2-g1529b83. There
is a he ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-30808 (An issue was discovered in Bento4 v1.6.0-641-2-g1529b83. There
is a he ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-30807 (An issue was discovered in Bento4 v1.6.0-641-2-g1529b83. There
is a he ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-30806 (An issue was discovered in Bento4 v1.6.0-641-2-g1529b83. There
is a he ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-30621 (Tenda AX1803 v1.0.0.1 contains a stack overflow via the
serverName par ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30620 (Tenda AX1803 v1.0.0.1 contains a stack overflow via the
serviceName pa ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30532 (Server-Side Request Forgery (SSRF) vulnerability in Builderall
Team Bu ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30531 (Server-Side Request Forgery (SSRF) vulnerability in Nelio
Software Nel ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30335 (Foxit PDF Reader AcroForm Annotation Out-Of-Bounds Read
Information Di ...)
- TODO: check
+ NOT-FOR-US: Foxit PDF Reader
CVE-2024-30248 (Piccolo Admin is an admin interface/content management system
for Pyth ...)
TODO: check
CVE-2024-2931 (The WPFront User Role Editor plugin for WordPress is vulnerable
to Sen ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-2745 (Rapid7's InsightVM maintenance mode login page suffers from a
sensitiv ...)
- TODO: check
+ NOT-FOR-US: Rapid7
CVE-2024-2435 (For an attacker with pre-existing access to send a signal to a
workflo ...)
TODO: check
CVE-2024-2389 (In Flowmon versions prior to 11.1.14 and 12.3.5, an operating
system c ...)
- TODO: check
+ NOT-FOR-US: Flowmon
CVE-2024-29949 (There is a command injection vulnerability in some Hikvision
NVRs. Thi ...)
- TODO: check
+ NOT-FOR-US: Hikvision
CVE-2024-29948 (There is an out-of-bounds read vulnerability in some Hikvision
NVRs. A ...)
- TODO: check
+ NOT-FOR-US: Hikvision
CVE-2024-29947 (There is a NULL dereference pointer vulnerability in some
Hikvision NV ...)
- TODO: check
+ NOT-FOR-US: Hikvision
CVE-2024-29834 (This vulnerability allows authenticated users with produce or
consume ...)
- TODO: check
+ NOT-FOR-US: Apache Pulsar
CVE-2024-29514 (File Upload vulnerability in lepton v.7.1.0 allows a remote
authentica ...)
- TODO: check
+ NOT-FOR-US: Lepton CMS
CVE-2024-28287 (A DOM-based open redirection in the returnUrl parameter of
INSTINCT UI ...)
- TODO: check
+ NOT-FOR-US: INSTINCT UI Web Client
CVE-2024-24888 (Server-Side Request Forgery (SSRF) vulnerability in Kadence WP
Gutenbe ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-22780 (Cross Site Scripting vulnerability in CA17 TeamsACS v.1.0.1
allows a r ...)
- TODO: check
+ NOT-FOR-US: CA17 TeamsACS
CVE-2024-22248 (VMware SD-WAN Orchestrator contains an open redirect
vulnerability. A ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2024-22247 (VMware SD-WAN Edge contains a missing authentication and
protection me ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2024-22246 (VMware SD-WAN Edge contains an unauthenticated command
injection vulne ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2024-1946 (The Genesis Blocks plugin for WordPress is vulnerable to Stored
Cross- ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-1807 (The Product Sort and Display for WooCommerce plugin for
WordPress is v ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-1732 (The Sharkdropship for AliExpress Dropshipping and Affiliate
plugin for ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-6951 (A Use of Weak Credentials vulnerability affecting the Wi-Fi
network ge ...)
TODO: check
CVE-2023-6950 (An Improper Input Validation vulnerability affecting the FTP
service r ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5d96ae299ea76a454f7e90e8ca9435f0ee69e16
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5d96ae299ea76a454f7e90e8ca9435f0ee69e16
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
