Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9e7b0926 by Salvatore Bonaccorso at 2026-01-14T14:24:09+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -229,75 +229,75 @@ CVE-2022-50936 (WBCE CMS version 1.5.2 contains an
authenticated remote code exe
CVE-2022-50935 (Flame II HSPA USB Modem contains an unquoted service path
vulnerabilit ...)
NOT-FOR-US: Flame II HSPA USB Modem
CVE-2022-50934 (Wing FTP Server versions 4.3.8 and below contain an
authenticated remo ...)
- TODO: check
+ NOT-FOR-US: Wing FTP Server
CVE-2022-50933 (Cain & Abel 4.9.56 contains an unquoted service path
vulnerability tha ...)
- TODO: check
+ NOT-FOR-US: Cain & Abel
CVE-2022-50932 (Kyocera Command Center RX ECOSYS M2035dn contains a directory
traversa ...)
- TODO: check
+ NOT-FOR-US: Kyocera Command Center RX ECOSYS
CVE-2022-50931 (TeamSpeak 3.5.6 contains an insecure file permissions
vulnerability th ...)
TODO: check
CVE-2022-50930 (Emerson PAC Machine Edition 9.80 contains an unquoted service
path vul ...)
- TODO: check
+ NOT-FOR-US: Emerson PAC Machine Edition
CVE-2022-50929 (Connectify Hotspot 2018 contains an unquoted service path
vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: Connectify Hotspot
CVE-2022-50928 (BlueSoleilCS 5.4.277 contains an unquoted service path
vulnerability i ...)
- TODO: check
+ NOT-FOR-US: BlueSoleilCS
CVE-2022-50927 (Cyclades Serial Console Server 3.3.0 contains a local
privilege escala ...)
- TODO: check
+ NOT-FOR-US: Cyclades Serial Console Server
CVE-2022-50926 (WAGO 750-8212 PFC200 G2 2ETH RS firmware contains a privilege
escalati ...)
- TODO: check
+ NOT-FOR-US: WAGO
CVE-2022-50925 (Prowise Reflect version 1.0.9 contains a remote keystroke
injection vu ...)
- TODO: check
+ NOT-FOR-US: Prowise Reflect
CVE-2022-50924 (Private Internet Access 3.3 contains an unquoted service path
vulnerab ...)
- TODO: check
+ NOT-FOR-US: Private Internet Access
CVE-2022-50923 (Cobian Backup 0.9 contains an unquoted service path
vulnerability that ...)
- TODO: check
+ NOT-FOR-US: Cobian Backup
CVE-2022-50922 (Audio Conversion Wizard v2.01 contains a buffer overflow
vulnerability ...)
- TODO: check
+ NOT-FOR-US: Audio Conversion Wizard
CVE-2022-50921 (WOW21 5.0.1.9 contains an unquoted service path vulnerability
that all ...)
- TODO: check
+ NOT-FOR-US: WOW21
CVE-2022-50920 (Sandboxie-Plus 5.50.2 contains an unquoted service path
vulnerability ...)
- TODO: check
+ NOT-FOR-US: Sandboxie-Plus
CVE-2022-50919 (Tdarr 2.00.15 contains an unauthenticated remote code
execution vulner ...)
- TODO: check
+ NOT-FOR-US: Tdarr
CVE-2022-50918 (VIVE Runtime Service 1.0.0.4 contains an unquoted service path
vulnera ...)
- TODO: check
+ NOT-FOR-US: VIVE Runtime Service
CVE-2022-50917 (ProtonVPN 1.26.0 contains an unquoted service path
vulnerability in it ...)
- TODO: check
+ NOT-FOR-US: ProtonVPN
CVE-2022-50916 (e107 CMS version 3.2.1 contains a file upload vulnerability
that allow ...)
- TODO: check
+ NOT-FOR-US: e107 CMS
CVE-2022-50915 (PTPublisher 2.3.4 contains an unquoted service path
vulnerability in t ...)
- TODO: check
+ NOT-FOR-US: PTPublisher
CVE-2022-50914 (EaseUS Data Recovery 15.1.0.0 contains an unquoted service
path vulner ...)
- TODO: check
+ NOT-FOR-US: EaseUS Data Recovery
CVE-2022-50913 (ITeC ITeCProteccioAppServer contains an unquoted service path
vulnerab ...)
- TODO: check
+ NOT-FOR-US: ITeC ITeCProteccioAppServer
CVE-2022-50912 (ImpressCMS 1.4.4 contains a file upload vulnerability with
weak extens ...)
- TODO: check
+ NOT-FOR-US: ImpressCMS
CVE-2022-50911 (Bitrix24 contains an authenticated remote code execution
vulnerability ...)
- TODO: check
+ NOT-FOR-US: Bitrix24
CVE-2022-50910 (Beehive Forum 1.5.2 contains a host header injection
vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Beehive Forum
CVE-2022-50909 (Algo 8028 Control Panel version 3.3.3 contains a command
injection vul ...)
- TODO: check
+ NOT-FOR-US: Algo 8028 Control Panel
CVE-2022-50908 (Mailhog 1.0.1 contains a stored cross-site scripting
vulnerability tha ...)
- TODO: check
+ NOT-FOR-US: Mailhog
CVE-2022-50907 (e107 CMS version 3.2.1 contains a file upload vulnerability
that allow ...)
- TODO: check
+ NOT-FOR-US: e107 CMS
CVE-2022-50906 (e107 CMS 3.2.1 contains an upload restriction bypass
vulnerability tha ...)
- TODO: check
+ NOT-FOR-US: e107 CMS
CVE-2022-50905 (e107 CMS version 3.2.1 contains multiple vulnerabilities that
allow cr ...)
- TODO: check
+ NOT-FOR-US: e107 CMS
CVE-2022-50904 (Wondershare UBackit 2.0.5 contains an unquoted service path
vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Wondershare UBackit
CVE-2022-50903 (Wondershare MobileTrans 3.5.9 contains an unquoted service
path vulner ...)
- TODO: check
+ NOT-FOR-US: Wondershare MobileTrans
CVE-2022-50902 (Wondershare FamiSafe 1.0 contains an unquoted service path
vulnerabili ...)
- TODO: check
+ NOT-FOR-US: Wondershare
CVE-2022-50901 (Wondershare Dr.Fone 11.4.9 contains an unquoted service path
vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Wondershare
CVE-2022-50900 (Wondershare Dr.Fone 12.0.18 contains an unquoted service path
vulnerab ...)
- TODO: check
+ NOT-FOR-US: Wondershare
CVE-2022-50899 (Geonetwork 3.10 through 4.2.0 contains an XML external entity
vulnerab ...)
TODO: check
CVE-2022-50898 (NanoCMS 0.4 contains an authenticated file upload
vulnerability that a ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e7b0926a4a7aa9dc67ea7f33abff2a38b4349ce
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e7b0926a4a7aa9dc67ea7f33abff2a38b4349ce
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
