Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4ab9c45f by Salvatore Bonaccorso at 2024-09-22T09:09:45+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,33 +1,33 @@
CVE-2024-9048 (A vulnerability was found in y_project RuoYi up to 4.7.9. It
has been ...)
- TODO: check
+ NOT-FOR-US: y_project RuoYi
CVE-2024-8680 (The MC4WP: Mailchimp for WordPress plugin for WordPress is
vulnerable ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-6787 (This vulnerability occurs when an attacker exploits a race
condition b ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2024-6786 (The vulnerability allows an attacker to craft MQTT messages
that inclu ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2024-6785 (The configuration file stores credentials in cleartext. An
attacker wi ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2024-46649 (eNMS up to 4.7.1 is vulnerable to Directory Traversal via
download/fol ...)
- TODO: check
+ NOT-FOR-US: eNMS
CVE-2024-46648 (eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via
scan_fold ...)
- TODO: check
+ NOT-FOR-US: eNMS
CVE-2024-46647 (eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via
upload_fi ...)
- TODO: check
+ NOT-FOR-US: eNMS
CVE-2024-46646 (eNMS up to 4.7.1 is vulnerable to Directory Traversal via
/download/fi ...)
- TODO: check
+ NOT-FOR-US: eNMS
CVE-2024-46645 (eNMS 4.0.0 is vulnerable to Directory Traversal via
get_tree_files.)
- TODO: check
+ NOT-FOR-US: eNMS
CVE-2024-46644 (eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via
edit_file ...)
- TODO: check
+ NOT-FOR-US: eNMS
CVE-2024-46640 (SeaCMS 13.2 has a remote code execution vulnerability located
in the f ...)
- TODO: check
+ NOT-FOR-US: SeaCMS
CVE-2024-46103 (SEMCMS 4.8 is vulnerable to SQL Injection via SEMCMS_Main.php.)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2024-46101 (GDidees CMS <= v3.9.1 has a file upload vulnerability.)
- TODO: check
+ NOT-FOR-US: GDidees CMS
CVE-2024-42323 (SnakeYaml Deser Load Malicious xml rce vulnerability in Apache
HertzBe ...)
- TODO: check
+ NOT-FOR-US: Apache HertzBeat
CVE-2024-9043 (Secure Email Gateway from Cellopoint has Buffer Overflow
Vulnerability ...)
NOT-FOR-US: Cellopoint Secure Email Gateway
CVE-2024-9041 (A vulnerability has been found in SourceCodester Best House
Rental Man ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4ab9c45f7d4ffce5bfb0f2f7cd80a47b8cabdb44
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4ab9c45f7d4ffce5bfb0f2f7cd80a47b8cabdb44
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
