[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) Thu, 19 Sep 2024 05:27:24 -0700


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
0f286ddd by Moritz Muehlenhoff at 2024-09-19T14:26:55+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15,11 +15,11 @@ CVE-2024-47086 (This vulnerability exists in Apex Softcell 
LD DP Back Office due
 CVE-2024-47085 (This vulnerability exists in Apex Softcell LD DP Back Office 
due to im ...)
        NOT-FOR-US: Apex Softcell LD Geo
 CVE-2024-47059 (When logging in with the correct username and incorrect weak 
password, ...)
-       TODO: check
+       NOT-FOR-US: Mautic
 CVE-2024-47058 (With access to edit a Mautic form, the attacker can add 
Cross-Site Scr ...)
-       TODO: check
+       NOT-FOR-US: Mautic
 CVE-2024-47050 (Prior to this patch being applied, Mautic's tracking was 
vulnerable to ...)
-       TODO: check
+       NOT-FOR-US: Mautic
 CVE-2024-46946 (langchain_experimental (aka LangChain Experimental) 0.1.17 
through 0.3 ...)
        NOT-FOR-US: LangChain Experimental
 CVE-2024-46377 (Best House Rental Management System 1.0 contains an arbitrary 
file upl ...)
@@ -35,9 +35,9 @@ CVE-2024-46373 (Dedecms V5.7.115 contains an arbitrary code 
execution via file u
 CVE-2024-46372 (DedeCMS 5.7.115 is vulnerable to Cross Site Scripting (XSS) 
via the ad ...)
        NOT-FOR-US: DedeCMS
 CVE-2024-40568 (Buffer Overflow vulnerability in btstack mesh commit before 
v.864e2f2b ...)
-       TODO: check
+       NOT-FOR-US: btstack
 CVE-2024-37406 (In Brave Android prior to v1.67.116, domains in the Brave 
Shields popu ...)
-       TODO: check
+       NOT-FOR-US: Brave Android
 CVE-2024-8969 (OMFLOW from The SYSCOM Group has a vulnerability involving the 
exposur ...)
        NOT-FOR-US: OMFLOW
 CVE-2024-8957 (PTZOptics PT30X-SDI/NDI-xx before firmware 6.3.40 is vulnerable 
to an  ...)
@@ -55,7 +55,7 @@ CVE-2024-8888 (An attacker with access to the network where 
CIRCUTOR Q-SMT is lo
 CVE-2024-8887 (CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected 
by a d ...)
        NOT-FOR-US: CIRCUTOR Q-SMT
 CVE-2024-8287 (Anbox Management Service, in versions 1.17.0 through 1.23.0, 
does not  ...)
-       TODO: check
+       NOT-FOR-US: Anbox Management Service
 CVE-2024-6878 (Files or Directories Accessible to External Parties 
vulnerability in E ...)
        NOT-FOR-US: Eliz Software Panel
 CVE-2024-6877 (Improper Neutralization of Input During Web Page Generation 
(XSS or 'C ...)
@@ -257,9 +257,9 @@ CVE-2024-43778 (OS command injection vulnerability in 
multiple digital video rec
 CVE-2024-43188 (IBM Business Automation Workflow   22.0.2, 23.0.1, 23.0.2, and 
24.0.0  ...)
        NOT-FOR-US: IBM
 CVE-2024-43025 (An HTML injection vulnerability in RWS MultiTrans v7.0.23324.2 
and ear ...)
-       TODO: check
+       NOT-FOR-US: RWS MultiTrans
 CVE-2024-43024 (Multiple stored cross-site scripting (XSS) vulnerabilities in 
RWS Mult ...)
-       TODO: check
+       NOT-FOR-US: RWS MultiTrans
 CVE-2024-42404 (SQL injection vulnerability in Welcart e-Commerce prior to 
2.11.2 allo ...)
        NOT-FOR-US: Welcart e-Commerce
 CVE-2024-41929 (Improper authentication vulnerability in multiple digital 
video record ...)
@@ -269,7 +269,7 @@ CVE-2024-39590 (Multiple invalid pointer dereference 
vulnerabilities exist in th
 CVE-2024-39589 (Multiple invalid pointer dereference vulnerabilities exist in 
the Open ...)
        NOT-FOR-US: OpenPLC
 CVE-2024-39339 (A vulnerability has been discovered in all versions of 
Smartplay headu ...)
-       TODO: check
+       NOT-FOR-US: Smartplay
 CVE-2024-39081 (An issue in SMART TYRE CAR & BIKE v4.2.0 allows attackers to 
perform a ...)
        NOT-FOR-US: SMART TYRE CAR & BIKE
 CVE-2024-37985 (Windows Kernel Information Disclosure Vulnerability)
@@ -288,83 +288,83 @@ CVE-2024-34057 (Triangle Microworks TMW IEC 61850 Client 
source code libraries b
 CVE-2024-34026 (A stack-based buffer overflow vulnerability exists in the 
OpenPLC Runt ...)
        NOT-FOR-US: OpenPLC
 CVE-2024-31198 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31197 (Improper Null Termination vulnerability in Open Networking 
Foundation  ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31196 (Unchecked Return Value to NULL Pointer Dereference 
vulnerability in Op ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31195 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31194 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31193 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31192 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31191 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31190 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31189 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31188 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31187 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31186 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31185 (Unchecked Return Value to NULL Pointer Dereference 
vulnerability in Op ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31184 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31183 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31182 (Unchecked Return Value to NULL Pointer Dereference 
vulnerability in Op ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31181 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31180 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31179 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31178 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31177 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31176 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31175 (Unchecked Return Value to NULL Pointer Dereference 
vulnerability in Op ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31174 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31173 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31172 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31171 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31170 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31169 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31168 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31167 (Unchecked Return Value to NULL Pointer Dereference 
vulnerability in Op ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31166 (Out-of-bounds Read vulnerability in Open Networking Foundation 
(ONF) l ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31165 (Unchecked Return Value to NULL Pointer Dereference 
vulnerability in Op ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-31164 (Unchecked Return Value to NULL Pointer Dereference 
vulnerability in Op ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-23916 (Unchecked Return Value to NULL Pointer Dereference 
vulnerability in Op ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2024-23915 (Unchecked Return Value to NULL Pointer Dereference 
vulnerability in Op ...)
-       TODO: check
+       NOT-FOR-US: libfluid
 CVE-2023-49203 (Technitium 11.5.3 allows remote attackers to cause a denial of 
service ...)
-       TODO: check
+       NOT-FOR-US: Technitium
 CVE-2023-47105 (exec.CommandContext in Chaosblade 0.3 through 1.7.3, when 
server mode  ...)
-       TODO: check
+       NOT-FOR-US: Chaosblade
 CVE-2023-41612 (Victure PC420 1.1.39 was discovered to use a weak encryption 
key for t ...)
        NOT-FOR-US: Victure
 CVE-2023-41611 (Victure PC420 1.1.39 was discovered to use a weak and 
partially hardco ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f286ddd7e40747df57bea65190ddc5efa36562d

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f286ddd7e40747df57bea65190ddc5efa36562d
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] NFUs

Reply via email to