Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a91ac033 by Salvatore Bonaccorso at 2024-09-07T23:02:17+02:00
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -29,49 +29,49 @@ CVE-2024-6849 (The Preloader Plus \u2013 WordPress Loading
Screen Plugin plugin
CVE-2024-6010 (The Cost Calculator Builder PRO plugin for WordPress is
vulnerable to ...)
NOT-FOR-US: WordPress plugin
CVE-2024-42024 (A vulnerability that allows an attacker in possession of the
Veeam ONE ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-42023 (An improper access control vulnerability allows low-privileged
users t ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-42022 (An incorrect permission assignment vulnerability allows an
attacker to ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-42021 (An improper access control vulnerability allows an attacker
with valid ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-42020 (A Cross-site-scripting (XSS) vulnerability exists in the
Reporter Widg ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-42019 (A vulnerability that allows an attacker to access the NTLM
hash of the ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-40718 (A server side request forgery vulnerability allows a
low-privileged us ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-40714 (An improper certificate validation vulnerability in TLS
certificate va ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-40713 (A vulnerability that allows a user who has been assigned a
low-privile ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-40712 (A path traversal vulnerability allows an attacker with a
low-privilege ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-40711 (A deserialization of untrusted data vulnerability with a
malicious pay ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-40710 (A series of related high-severity vulnerabilities, the most
notable en ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-40709 (A missing authorization vulnerability allows a local
low-privileged us ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-40681 (IBM MQ Operator 2.0.26 and 3.2.4 could allow an authenticated
user in ...)
NOT-FOR-US: IBM
CVE-2024-40680 (IBM MQ Operator 2.0.26 and 3.2.4 could allow a local user to
cause a d ...)
NOT-FOR-US: IBM
CVE-2024-39718 (An improper input validation vulnerability that allows a
low-privilege ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-39715 (A code injection vulnerability that allows a low-privileged
user with ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-39714 (A code injection vulnerability that permits a low-privileged
user to u ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-38651 (A code injection vulnerability can allow a low-privileged user
to over ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-38650 (An authentication bypass vulnerability can allow a low
privileged atta ...)
- TODO: check
+ NOT-FOR-US: Veeam
CVE-2024-37068 (IBM Maximo Application Suite - Manage Component 8.10, 8.11,
and 9.0 us ...)
NOT-FOR-US: IBM
CVE-2024-1596 (The Ninja Forms - File Uploads plugin for WordPress is
vulnerable to S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8521 (A vulnerability, which was classified as problematic, was found
in Wav ...)
NOT-FOR-US: Wavelog
CVE-2024-8439
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a91ac033f070b8e749fb7531a0436ac07748dd01
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a91ac033f070b8e749fb7531a0436ac07748dd01
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
