Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4427a869 by Moritz Muehlenhoff at 2024-06-28T10:58:01+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -167,9 +167,9 @@ CVE-2024-3331 (Vulnerability in Spotfire Spotfire
Enterprise Runtime for R - Ser
CVE-2024-3330 (Vulnerability in Spotfire Spotfire Analyst, Spotfire Spotfire
Server, ...)
NOT-FOR-US: Spotfire
CVE-2024-3043 (An unauthenticated IEEE 802.15.4 'co-ordinator realignment'
packet can ...)
- TODO: check
+ NOT-FOR-US: Silabs
CVE-2024-3017 (In a Silicon Labsmulti-protocol gateway, a corrupt pointer to
buffer ...)
- TODO: check
+ NOT-FOR-US: Silabs
CVE-2024-39669 (In the Console in Soffid IAM before 3.5.39, necessary checks
were not ...)
NOT-FOR-US: Soffid IAM
CVE-2024-39376 (TELSAT marKoni FM Transmitters are vulnerable to users gaining
unautho ...)
@@ -183,7 +183,7 @@ CVE-2024-39373 (TELSAT marKoni FM Transmitters are
vulnerable to a command injec
CVE-2024-39208 (luci-app-lucky v2.8.3 was discovered to contain hardcoded
credentials.)
NOT-FOR-US: luci-app-lucky
CVE-2024-39207 (lua-shmem v1.0-1 was discovered to contain a buffer overflow
via the s ...)
- TODO: check
+ NOT-FOR-US: lua-shmem
CVE-2024-39158 (idccms v1.35 was discovered to contain a Cross-Site Request
Forgery (C ...)
NOT-FOR-US: idccms
CVE-2024-39157 (idccms v1.35 was discovered to contain a Cross-Site Request
Forgery (C ...)
@@ -880,13 +880,13 @@ CVE-2024-23140 (A maliciously crafted 3DM and MODEL file,
when parsed in opennur
CVE-2024-22385 (Incorrect Default Permissions vulnerability in Hitachi Storage
Provide ...)
NOT-FOR-US: Hitachi
CVE-2024-22168 (A Cross-Site Scripting (XSS) vulnerability on the My Cloud, My
Cloud H ...)
- TODO: check
+ NOT-FOR-US: Western Digital
CVE-2023-6198 (Use of Hard-coded Credentials vulnerability in Baicells Snap
Router Ba ...)
NOT-FOR-US: Baicells Snap Router BaiCE_BMI on EP3011
CVE-2023-5038 (badmonkey, a Security Researcher has found a flaw that allows
for a un ...)
- TODO: check
+ NOT-FOR-US: Hanwha Vision
CVE-2023-50029 (PHP Injection vulnerability in the module "M4 PDF Extensions"
(m4pdf) ...)
- TODO: check
+ NOT-FOR-US: PrestaShop addon
CVE-2023-45196 (Adminer and AdminerEvo allow an unauthenticated remote
attacker to cau ...)
TODO: check
CVE-2023-45195 (Adminer and AdminerEvo are vulnerable to SSRF via database
connection ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4427a869b83bf92f2a09bf5614f5196d16c88d10
--
This project does not include diff previews in email notifications.
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4427a869b83bf92f2a09bf5614f5196d16c88d10
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
