Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
030b94ac by Moritz Muehlenhoff at 2024-12-16T09:29:06+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,43 +1,43 @@
CVE-2024-9679 (A Hardcoded Cryptographic key vulnerability existed in DLP
Extension 1 ...)
- TODO: check
+ NOT-FOR-US: Trellix
CVE-2024-9678 (An SQL Injection vulnerability existed in DLP Extension
11.11.1.3. Th ...)
- TODO: check
+ NOT-FOR-US: Trellix
CVE-2024-8798 (No proper validation of the length of user input in
olcp_ind_handler i ...)
- TODO: check
+ NOT-FOR-US: Zephyr, different from src:zephyr
CVE-2024-8650 (An issue was discovered in GitLab CE/EE affecting all versions
from 15 ...)
- gitlab <unfixed>
CVE-2024-8116 (An issue has been discovered in GitLab CE/EE affecting all
versions fr ...)
- gitlab <unfixed>
CVE-2024-5333 (The Events Calendar WordPress plugin before 6.8.2.1 is missing
access ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-56112 (CyberPanel (aka Cyber Panel) before f0cf648 allows XSS via
token or us ...)
- TODO: check
+ NOT-FOR-US: CyberPanel
CVE-2024-56087 (An issue was discovered in Logpoint before 7.5.0.
Authenticated users ...)
- TODO: check
+ NOT-FOR-US: Logpoint
CVE-2024-56086 (An issue was discovered in Logpoint before 7.5.0.
Authenticated users ...)
- TODO: check
+ NOT-FOR-US: Logpoint
CVE-2024-56085 (An issue was discovered in Logpoint before 7.5.0.
Authenticated users ...)
- TODO: check
+ NOT-FOR-US: Logpoint
CVE-2024-56084 (An issue was discovered in Logpoint UniversalNormalizer before
5.7.0. ...)
- TODO: check
+ NOT-FOR-US: Logpoint
CVE-2024-56083 (Cognition Devin before 2024-12-12 provides write access to
code by an ...)
- TODO: check
+ NOT-FOR-US: Cognition Devin
CVE-2024-53376 (CyberPanel before 2.3.8 allows remote authenticated users to
execute a ...)
- TODO: check
+ NOT-FOR-US: CyberPanel
CVE-2024-12646 (The topm-client from Chunghwa Telecom has an Arbitrary File
Delete vul ...)
- TODO: check
+ NOT-FOR-US: Chunghwa Telecom
CVE-2024-12645 (The topm-client from Chunghwa Telecom has an Arbitrary File
Read vulne ...)
- TODO: check
+ NOT-FOR-US: Chunghwa Telecom
CVE-2024-12644 (The tbm-client from Chunghwa Telecom has an Arbitrary File
vulnerabili ...)
- TODO: check
+ NOT-FOR-US: Chunghwa Telecom
CVE-2024-12643 (The tbm-client from Chunghwa Telecom has an Arbitrary File
Delete vuln ...)
- TODO: check
+ NOT-FOR-US: Chunghwa Telecom
CVE-2024-12642 (TenderDocTransfer from Chunghwa Telecom has an Arbitrary File
Write vu ...)
- TODO: check
+ NOT-FOR-US: Chunghwa Telecom
CVE-2024-12641 (TenderDocTransfer from Chunghwa Telecom has a Reflected
Cross-site scr ...)
- TODO: check
+ NOT-FOR-US: Chunghwa Telecom
CVE-2024-11841 (The Tithe.ly Giving Button WordPress plugin through 1.1 does
not valid ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-7701 (Use of Password Hash With Insufficient Computational Effort
vulnerabil ...)
- percona-toolkit <unfixed>
TODO: check details on upstream reports
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/030b94ac3924b881f9c5ad2c1c045e44490c6068
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/030b94ac3924b881f9c5ad2c1c045e44490c6068
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
