Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5065751e by Moritz Muehlenhoff at 2025-01-09T20:08:13+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -41,119 +41,119 @@ CVE-2024-6324 (An issue was discovered in GitLab CE/EE
affecting all versions st
CVE-2024-5610
REJECTED
CVE-2024-54010 (A vulnerability in the firewall component of HPE Aruba
Networking CX 1 ...)
- TODO: check
+ NOT-FOR-US: HPE
CVE-2024-53995 (SickChill is an automatic video library manager for TV shows.
A user-c ...)
- TODO: check
+ NOT-FOR-US: SickChill
CVE-2024-53706 (A vulnerability in the Gen7 SonicOS Cloud platform NSv, allows
a remot ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-53705 (A Server-Side Request Forgery vulnerability in the SonicOS SSH
managem ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-53704 (An Improper Authentication vulnerability in the SSLVPN
authentication ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-52869 (Certain Teradata account-handling code through 2024-11-04,
used with S ...)
TODO: check
CVE-2024-43663 (There are many buffer overflow vulnerabilities present in
several CGI ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43662 (The <redacted>.exe or <redacted>.exe CGI binary can be used to
upload ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43661 (The <redacted>.so library, which is used by <redacted>, is
vulnerable ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43660 (The CGI script <redacted>.sh can be used to download any file
on the f ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43659 (After gaining access to the firmware of a charging station, a
file at ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43658 (Patch traversal, External Control of File Name or Path
vulnerability i ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43657 (Improper Neutralization of Special Elements used in a Command
('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43656 (Improper Neutralization of Special Elements used in a Command
('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43655 (Improper Neutralization of Special Elements used in a Command
('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43654 (Improper Neutralization of Special Elements used in a Command
('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43653 (Improper Neutralization of Special Elements used in a Command
('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43652 (Improper Neutralization of Special Elements used in a Command
('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43651 (Improper Neutralization of Special Elements used in a Command
('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43650 (Improper Neutralization of Special Elements used in a Command
('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43649 (Authenticated command injection in the filename of a
<redacted>.exe re ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43648 (Command injection in the <redacted> parameter of a
<redacted>.exe requ ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-40765 (An Integer-based buffer overflow vulnerability in the SonicOS
via IPSe ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-40762 (Use of Cryptographically Weak Pseudo-Random Number Generator
(PRNG) in ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-13213 (A vulnerability classified as problematic was found in SingMR
HouseRen ...)
- TODO: check
+ NOT-FOR-US: SingMR HouseRent
CVE-2024-13212 (A vulnerability classified as critical has been found in
SingMR HouseR ...)
- TODO: check
+ NOT-FOR-US: SingMR HouseRent
CVE-2024-13211 (A vulnerability was found in SingMR HouseRent 1.0. It has been
rated a ...)
- TODO: check
+ NOT-FOR-US: SingMR HouseRent
CVE-2024-13210 (A vulnerability was found in donglight
bookstore\u7535\u5546\u4e66\u57 ...)
- TODO: check
+ NOT-FOR-US: donglight bookstore
CVE-2024-13209 (A vulnerability was found in Redaxo CMS 5.18.1. It has been
classified ...)
- TODO: check
+ NOT-FOR-US: Redaxo CMS
CVE-2024-13206 (A vulnerability classified as critical has been found in REVE
Antiviru ...)
- TODO: check
+ NOT-FOR-US: REVE Antivirus
CVE-2024-13205 (A vulnerability was found in kurniaramadhan E-Commerce-PHP
1.0. It has ...)
- TODO: check
+ NOT-FOR-US: E-Commerce-PHP
CVE-2024-13204 (A vulnerability was found in kurniaramadhan E-Commerce-PHP
1.0. It has ...)
- TODO: check
+ NOT-FOR-US: E-Commerce-PHP
CVE-2024-13203 (A vulnerability was found in kurniaramadhan E-Commerce-PHP
1.0. It has ...)
- TODO: check
+ NOT-FOR-US: E-Commerce-PHP
CVE-2024-13202 (A vulnerability was found in wander-chu SpringBoot-Blog 1.0
and classi ...)
- TODO: check
+ NOT-FOR-US: SpringBoot-Blog
CVE-2024-13201 (A vulnerability has been found in wander-chu SpringBoot-Blog
1.0 and c ...)
- TODO: check
+ NOT-FOR-US: SpringBoot-Blog
CVE-2024-13200 (A vulnerability, which was classified as critical, was found
in wander ...)
- TODO: check
+ NOT-FOR-US: SpringBoot-Blog
CVE-2024-13199 (A vulnerability classified as problematic was found in langhsu
Mblog B ...)
- TODO: check
+ NOT-FOR-US: langhsu Mblog
CVE-2024-13198 (A vulnerability classified as problematic has been found in
langhsu Mb ...)
- TODO: check
+ NOT-FOR-US: langhsu Mblog
CVE-2024-13197 (A vulnerability was found in donglight
bookstore\u7535\u5546\u4e66\u57 ...)
- TODO: check
+ NOT-FOR-US: donglight bookstore
CVE-2024-13196 (A vulnerability was found in donglight
bookstore\u7535\u5546\u4e66\u57 ...)
- TODO: check
+ NOT-FOR-US: donglight bookstore
CVE-2024-13195 (A vulnerability was found in donglight
bookstore\u7535\u5546\u4e66\u57 ...)
- TODO: check
+ NOT-FOR-US: donglight bookstore
CVE-2024-13194 (A vulnerability was found in Sucms 1.0 and classified as
critical. Aff ...)
- TODO: check
+ NOT-FOR-US: Sucms
CVE-2024-13193 (A vulnerability has been found in SEMCMS up to 4.8 and
classified as c ...)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2024-13192 (A vulnerability, which was classified as problematic, was
found in Zer ...)
- TODO: check
+ NOT-FOR-US: ZeroWdd myblog
CVE-2024-13191 (A vulnerability, which was classified as critical, has been
found in Z ...)
- TODO: check
+ NOT-FOR-US: ZeroWdd myblog
CVE-2024-13190 (A vulnerability classified as critical was found in ZeroWdd
myblog 1.0 ...)
- TODO: check
+ NOT-FOR-US: ZeroWdd myblog
CVE-2024-13041 (An issue was discovered in GitLab CE/EE affecting all versions
startin ...)
- gitlab <unfixed>
CVE-2024-12806 (A post-authentication absolute path traversal vulnerability in
SonicOS ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-12805 (A post-authentication format string vulnerability in SonicOS
managemen ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-12803 (A post-authentication stack-based buffer overflow
vulnerability in Son ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-12736 (The BU Section Editing WordPress plugin through 0.9.9 does not
sanitis ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12731 (The Aklamator INfeed WordPress plugin through 2.0.0 does not
sanitise ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12717 (The Aklamator INfeed WordPress plugin through 2.0.0 does not
sanitise ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12715 (The Asgard Security Scanner WordPress plugin through 0.7 does
not sani ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12714 (The Backlink Monitoring Manager WordPress plugin through 0.1.3
does no ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12431 (An issue was discovered in GitLab CE/EE affecting all versions
startin ...)
- gitlab <unfixed>
CVE-2024-10815 (The PostLists WordPress plugin through 2.0.2 does not escape
the $_SER ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-22143 (WeGIA is a web manager for charitable institutions. A
Reflected Cross- ...)
NOT-FOR-US: WeGIA
CVE-2025-22141 (WeGIA is a web manager for charitable institutions. A SQL
Injection vu ...)
@@ -187,7 +187,7 @@ CVE-2025-0194 (An issue was discovered in GitLab CE/EE
affecting all versions st
CVE-2024-9939 (The WordPress File Upload plugin for WordPress is vulnerable to
Path T ...)
NOT-FOR-US: WordPress plugin
CVE-2024-6350 (A malformed 802.15.4 packet causes a buffer overflow to occur
leading ...)
- TODO: check
+ NOT-FOR-US: Silabs
CVE-2024-55656 (RedisBloom adds a set of probabilistic data structures to
Redis. There ...)
NOT-FOR-US: RedisBloom
CVE-2024-55517 (An issue was discovered in the Interllect Core Search in
Polaris FT In ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5065751e49cc51ad11d89744d125d1f98e5c234c
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5065751e49cc51ad11d89744d125d1f98e5c234c
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
