[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) Thu, 25 Jul 2024 13:12:49 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
6f39a872 by security tracker role at 2024-07-25T20:12:16+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,57 @@
+CVE-2024-7101 (A vulnerability, which was classified as critical, has been 
found in F ...)
+       TODO: check
+CVE-2024-7007 (Positron Broadcast Signal Processor TRA7005 v1.20 is vulnerable 
to an  ...)
+       TODO: check
+CVE-2024-6589 (The LearnPress \u2013 WordPress LMS Plugin plugin for WordPress 
is vul ...)
+       TODO: check
+CVE-2024-6558 (HMS Industrial Networks  Anybus-CompactCom 30 products are 
vulnerable  ...)
+       TODO: check
+CVE-2024-41806 (The Open edX Platform is a learning management platform. 
Instructors c ...)
+       TODO: check
+CVE-2024-41801 (OpenProject is open source project management software. Prior 
to versi ...)
+       TODO: check
+CVE-2024-41800 (Craft is a content management system (CMS). Craft CMS 5 allows 
reuse o ...)
+       TODO: check
+CVE-2024-40873 (There is a cross-site scripting vulnerability in the Secure 
Access adm ...)
+       TODO: check
+CVE-2024-40872 (There is an elevation of privilege vulnerability in server and 
client  ...)
+       TODO: check
+CVE-2024-40324 (A CRLF injection vulnerability in E-Staff v5.1 allows 
attackers to ins ...)
+       TODO: check
+CVE-2024-40318 (An arbitrary file upload vulnerability in Webkul Qloapps 
v1.6.0.0 allo ...)
+       TODO: check
+CVE-2024-39674 (Plaintext vulnerability in the Gallery search module. Impact: 
Successf ...)
+       TODO: check
+CVE-2024-39673 (Vulnerability of serialisation/deserialisation mismatch in the 
iAware  ...)
+       TODO: check
+CVE-2024-39672 (Memory request logic vulnerability in the memory module. 
Impact: Succe ...)
+       TODO: check
+CVE-2024-39671 (Access control vulnerability in the security verification 
module. Impa ...)
+       TODO: check
+CVE-2024-39670 (Privilege escalation vulnerability in the account 
synchronisation modu ...)
+       TODO: check
+CVE-2024-38289 (A boolean-based SQL injection issue in the Virtual Meeting 
Password (V ...)
+       TODO: check
+CVE-2024-38288 (A command-injection issue in the Certificate Signing Request 
(CSR) fun ...)
+       TODO: check
+CVE-2024-38287 (The password-reset mechanism in the Forgot Password 
functionality in R ...)
+       TODO: check
+CVE-2024-37084 (In Spring Cloud Data Flow versions prior to 2.11.4,a malicious 
user wh ...)
+       TODO: check
+CVE-2024-36542 (Insecure permissions in kuma v2.7.0 allows attackers to access 
sensiti ...)
+       TODO: check
+CVE-2024-36111 (KubePi is a K8s panel. Starting in version 1.6.3 and prior to 
version  ...)
+       TODO: check
+CVE-2024-29069 (In snapd versions prior to 2.62, snapd failed to properly 
check the de ...)
+       TODO: check
+CVE-2024-29068 (In snapd versions prior to 2.62, snapd failed to properly 
check the fi ...)
+       TODO: check
+CVE-2024-28772 (IBM Security Directory Integrator 7.2.0 and IBM Security 
Verify Direct ...)
+       TODO: check
+CVE-2024-1724 (In snapd versions prior to 2.62, when using AppArmor for 
enforcement o ...)
+       TODO: check
+CVE-2023-7271 (Privilege escalation vulnerability in the NMS module Impact: 
Successfu ...)
+       TODO: check
 CVE-2024-7091 (An issue was discovered in GitLab CE/EE affecting all versions 
startin ...)
        - gitlab <unfixed>
 CVE-2024-7081 (A vulnerability was found in itsourcecode Tailoring Management 
System  ...)
@@ -169394,8 +169448,8 @@ CVE-2022-32769 (Multiple authentication bypass 
vulnerabilities exist in the obje
        NOT-FOR-US: WWBN AVideo
 CVE-2022-32768 (Multiple authentication bypass vulnerabilities exist in the 
objects id ...)
        NOT-FOR-US: WWBN AVideo
-CVE-2022-32759
-       RESERVED
+CVE-2022-32759 (IBM Security Directory Integrator 7.2.0 and IBM Security 
Verify Direct ...)
+       TODO: check
 CVE-2022-32758
        RESERVED
 CVE-2022-32757 (IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 uses an 
inadequ ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f39a872bea62b0cbfa1b71bcc70e0a18e4a5729

-- 
This project does not include diff previews in email notifications.
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f39a872bea62b0cbfa1b71bcc70e0a18e4a5729
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to