Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9dbd9373 by Moritz Mühlenhoff at 2024-10-18T16:41:51+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -548,34 +548,34 @@ CVE-2024-20420 (A vulnerability in the web-based
management interface of Cisco A
CVE-2024-20280 (A vulnerability in the backup feature of Cisco UCS Central
Software co ...)
NOT-FOR-US: Cisco
CVE-2024-10033 (A vulnerability was found in aap-gateway. A Cross-site
Scripting (XSS) ...)
- TODO: check
+ NOT-FOR-US: Red Hat Ansible Automation Platform
CVE-2024-10024 (A vulnerability, which was classified as critical, has been
found in c ...)
- TODO: check
+ NOT-FOR-US: code-projects Pharmacy Management System
CVE-2024-10023 (A vulnerability classified as critical was found in
code-projects Phar ...)
- TODO: check
+ NOT-FOR-US: code-projects Pharmacy Management System
CVE-2024-10022 (A vulnerability classified as critical has been found in
code-projects ...)
- TODO: check
+ NOT-FOR-US: code-projects Pharmacy Management System
CVE-2024-10021 (A vulnerability was found in code-projects Pharmacy Management
System ...)
- TODO: check
+ NOT-FOR-US: code-projects Pharmacy Management System
CVE-2023-32266 (Untrusted Search Path vulnerability in OpenText\u2122
Application Life ...)
- TODO: check
+ NOT-FOR-US: OpenText
CVE-2023-32196 (A vulnerability has been identified whereby privilege
escalation check ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2023-32194 (A vulnerability has been identified when granting a create or
* global ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2023-32193 (A vulnerability has been identified in which unauthenticated
cross-sit ...)
- TODO: check
+ NOT-FOR-US: SuSE Norman
CVE-2023-32192 (A vulnerability has been identified in which unauthenticated
cross-sit ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2023-32191 (When RKE provisions a cluster, it stores the cluster state in
a config ...)
- TODO: check
+ NOT-FOR-US: SuSE RKE
CVE-2023-32190 (mlocate's %post script allows RUN_UPDATEDB_AS user to make
arbitrary f ...)
- mlocate <removed>
NOTE: https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-32190
CVE-2023-32189 (Insecure handling of ssh keys used to bootstrap clients allows
local a ...)
- TODO: check
+ NOT-FOR-US: SuSE Manager
CVE-2023-32188 (A user can reverse engineer the JWT token (JSON Web Token)
used in aut ...)
- TODO: check
+ NOT-FOR-US: SuSE neuvector
CVE-2020-36841 (The WooCommerce Smart Coupons plugin for WordPress is
vulnerable to au ...)
NOT-FOR-US: WordPress plugin
CVE-2024-9966 (Inappropriate implementation in Navigations in Google Chrome
prior to ...)
@@ -934,7 +934,7 @@ CVE-2024-44337 (The package
`github.com/gomarkdown/markdown` is a Go library for
CVE-2024-41344 (A Cross-Site Request Forgery (CSRF) in Codeigniter 3.1.13
allows attac ...)
NOT-FOR-US: Codeigniter
CVE-2024-35584 (SQL injection vulnerabilities were discovered in Ajax.php,
ForWindow.p ...)
- TODO: check
+ NOT-FOR-US: Ajax.php
CVE-2024-21286 (Vulnerability in the PeopleSoft Enterprise ELM Enterprise
Learning Man ...)
NOT-FOR-US: Oracle
CVE-2024-21285 (Vulnerability in the Oracle Banking Liquidity Management
product of Or ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9dbd9373416afbb9885ba86f79c72e319a8b03cc
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9dbd9373416afbb9885ba86f79c72e319a8b03cc
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
