Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ee2a9ee9 by Salvatore Bonaccorso at 2019-08-03T09:31:02Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
CVE-2019-14551 (Das Q before 2019-08-02 allows web sites to execute arbitrary
code on ...)
- TODO: check
+ NOT-FOR-US: Das Keyboard Q
CVE-2019-14550
RESERVED
CVE-2019-14549
@@ -13,7 +13,7 @@ CVE-2019-14546
CVE-2019-14545
RESERVED
CVE-2019-14544 (routes/api/v1/api.go in Gogs 0.11.86 lacks permission checks
for route ...)
- TODO: check
+ NOT-FOR-US: Go Git Service
CVE-2019-14543
RESERVED
CVE-2019-14542
@@ -1203,7 +1203,7 @@ CVE-2019-14286 (In app/webroot/js/event-graph.js in MISP
2.4.111, a stored XSS v
CVE-2019-14285
RESERVED
CVE-2015-9288 (The Unity Web Player plugin before 4.6.6f2 and 5.x before
5.0.3f2 allo ...)
- TODO: check
+ NOT-FOR-US: Unity Web Player plugin
CVE-2019-1000033
REJECTED
CVE-2019-14284 (In the Linux kernel before 5.2.3, drivers/block/floppy.c
allows a deni ...)
@@ -1308,9 +1308,9 @@ CVE-2019-14262 (MetadataExtractor 2.1.0 allows stack
consumption. ...)
CVE-2019-14261
RESERVED
CVE-2019-14260 (On the Alcatel-Lucent Enterprise (ALE) 8008 Cloud Edition
Deskphone Vo ...)
- TODO: check
+ NOT-FOR-US: Alcatel-Lucent Enterprise (ALE) 8008 Cloud Edition
Deskphone VoIP phone
CVE-2019-14259 (On the Polycom Obihai Obi1022 VoIP phone with firmware 5.1.11,
a comma ...)
- TODO: check
+ NOT-FOR-US: Polycom Obihai Obi1022 VoIP phone
CVE-2019-14258
RESERVED
CVE-2019-14257
@@ -3824,7 +3824,7 @@ CVE-2019-13574 (In lib/mini_magick/image.rb in MiniMagick
before 4.9.4, a fetche
CVE-2019-13573 (A SQL injection vulnerability exists in the FolioVision FV
Flowplayer ...)
NOT-FOR-US: FolioVision FV Flowplayer Video Player plugin for WordPress
CVE-2019-13572 (The Adenion Blog2Social plugin through 5.5.0 for WordPress
allows SQL ...)
- TODO: check
+ NOT-FOR-US: Adenion Blog2Social plugin for WordPress
CVE-2019-13571 (A SQL injection vulnerability exists in the Vsourz Digital
Advanced CF ...)
NOT-FOR-US: Vsourz Digital Advanced CF7 DB plugin for WordPress
CVE-2019-13570 (The AJdG AdRotate plugin before 5.3 for WordPress allows SQL
Injection ...)
@@ -5432,7 +5432,7 @@ CVE-2019-12950
CVE-2019-12949 (In pfSense 2.4.4-p2 and 2.4.4-p3, if it is possible to trick
an authen ...)
NOT-FOR-US: pfSense
CVE-2019-12948 (A vulnerability in the web-based management interface of VVX,
Trio, So ...)
- TODO: check
+ NOT-FOR-US: Polycom UC Software
CVE-2019-12947
RESERVED
CVE-2019-12946 (Elcom CMS before 10.7 has SQL Injection via
EventSearchByState.aspx an ...)
@@ -9979,7 +9979,7 @@ CVE-2019-11204 (The web interface component of TIBCO
Software Inc.'s TIBCO Spotf
CVE-2019-11203 (The workspace client, openspace client, app development
client, and RE ...)
NOT-FOR-US: TIBCO
CVE-2019-11202 (An issue was discovered that affects the following versions of
Rancher ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2019-11201 (Dolibarr ERP/CRM 9.0.1 provides a module named website that
provides f ...)
- dolibarr <removed>
CVE-2019-11200 (Dolibarr ERP/CRM 9.0.1 provides a web-based functionality that
backs u ...)
@@ -10594,7 +10594,7 @@ CVE-2019-10963
CVE-2019-10962 (BD Alaris Gateway versions, 1.0.13,1.1.3 Build 10,1.1.3 MR
Build 11,1. ...)
NOT-FOR-US: BD Alaris Gateway
CVE-2019-10961 (In Advantech WebAccess HMI Designer Version 2.1.9.23 and
prior, proces ...)
- TODO: check
+ NOT-FOR-US: Advantech WebAccess HMI Designer
CVE-2019-10960
RESERVED
CVE-2019-10959 (BD Alaris Gateway Workstation Versions, 1.1.3 Build 10, 1.1.3
MR Build ...)
@@ -10640,7 +10640,7 @@ CVE-2019-10940
CVE-2019-10939
RESERVED
CVE-2019-10938 (A vulnerability has been identified in Ethernet plug-in
communication ...)
- TODO: check
+ NOT-FOR-US: Ethernet plug-in communication modules for SIPROTEC 5
devices
CVE-2019-10937
RESERVED
CVE-2019-10936
@@ -12057,29 +12057,29 @@ CVE-2019-10368
CVE-2019-10367
RESERVED
CVE-2019-10366 (Jenkins Skytap Cloud CI Plugin 2.06 and earlier stored
credentials une ...)
- TODO: check
+ NOT-FOR-US: Jenkins Skytap Cloud CI Plugin
CVE-2019-10365 (Jenkins Google Kubernetes Engine Plugin 0.6.2 and earlier
created a te ...)
- TODO: check
+ NOT-FOR-US: Jenkins Google Kubernetes Engine Plugin
CVE-2019-10364 (Jenkins Amazon EC2 Plugin 1.43 and earlier wrote the beginning
of priv ...)
- TODO: check
+ NOT-FOR-US: Jenkins Amazon EC2 Plugin
CVE-2019-10363 (Jenkins Configuration as Code Plugin 1.24 and earlier did not
reliably ...)
- TODO: check
+ NOT-FOR-US: Jenkins Configuration as Code Plugin
CVE-2019-10362 (Jenkins Configuration as Code Plugin 1.24 and earlier did not
escape v ...)
- TODO: check
+ NOT-FOR-US: Jenkins Configuration as Code Plugin
CVE-2019-10361 (Jenkins Maven Release Plugin 0.14.0 and earlier stored
credentials une ...)
- TODO: check
+ NOT-FOR-US: Jenkins Maven Release Plugin
CVE-2019-10360 (A stored cross site scripting vulnerability in Jenkins Maven
Release P ...)
- TODO: check
+ NOT-FOR-US: Jenkins Maven Release Plugin
CVE-2019-10359 (A cross-site request forgery vulnerability in Jenkins Maven
Release Pl ...)
- TODO: check
+ NOT-FOR-US: Jenkins Maven Release Plugin
CVE-2019-10358 (Jenkins Maven Integration Plugin 3.3 and earlier did not apply
build l ...)
- TODO: check
+ NOT-FOR-US: Jenkins Maven Integration Plugi
CVE-2019-10357 (A missing permission check in Jenkins Pipeline: Shared Groovy
Librarie ...)
- TODO: check
+ NOT-FOR-US: Jenkins Pipeline: Shared Groovy Libraries Plugin
CVE-2019-10356 (A sandbox bypass vulnerability in Jenkins Script Security
Plugin 1.61 ...)
- TODO: check
+ NOT-FOR-US: Jenkins Script Security Plugin
CVE-2019-10355 (A sandbox bypass vulnerability in Jenkins Script Security
Plugin 1.61 ...)
- TODO: check
+ NOT-FOR-US: Jenkins Script Security Plugin
CVE-2019-10354 (A vulnerability in the Stapler web framework used in Jenkins
2.185 and ...)
NOT-FOR-US: Jenkins
CVE-2019-10353 (CSRF tokens in Jenkins 2.185 and earlier, LTS 2.176.1 and
earlier did ...)
@@ -12099,11 +12099,11 @@ CVE-2019-10347 (Jenkins Mashup Portlets Plugin stored
credentials unencrypted on
CVE-2019-10346 (A reflected cross site scripting vulnerability in Jenkins
Embeddable B ...)
NOT-FOR-US: Jenkins plugin
CVE-2019-10345 (Jenkins Configuration as Code Plugin 1.20 and earlier did not
treat th ...)
- TODO: check
+ NOT-FOR-US: Jenkins Configuration as Code Plugin
CVE-2019-10344 (Missing permission checks in Jenkins Configuration as Code
Plugin 1.24 ...)
- TODO: check
+ NOT-FOR-US: Jenkins Configuration as Code Plugin
CVE-2019-10343 (Jenkins Configuration as Code Plugin 1.24 and earlier did not
properly ...)
- TODO: check
+ NOT-FOR-US: Jenkins Configuration as Code Plugin
CVE-2019-10342 (A missing permission check in Jenkins Docker Plugin 1.1.6 and
earlier ...)
NOT-FOR-US: Jenkins plugin
CVE-2019-10341 (A missing permission check in Jenkins Docker Plugin 1.1.6 and
earlier ...)
@@ -16250,9 +16250,9 @@ CVE-2019-9143 (An issue was discovered in Exiv2 0.27.
There is infinite recursio
CVE-2019-9142 (An issue was discovered in b3log Symphony (aka Sym) before
v3.4.7. XSS ...)
NOT-FOR-US: b3log Symphony (aka Sym)
CVE-2019-9141 (ZInsVX.dll ActiveX Control 2018.02 and earlier in Zoneplayer
contains ...)
- TODO: check
+ NOT-FOR-US: Zoneplayer
CVE-2019-9140 (When processing Deeplink scheme, Happypoint mobile app 6.3.19
and earl ...)
- TODO: check
+ NOT-FOR-US: Happypoint mobile app
CVE-2019-9139 (DaviewIndy 8.98.7 and earlier versions have a Integer overflow
vulnera ...)
NOT-FOR-US: DaviewIndy
CVE-2019-9138 (DaviewIndy 8.98.7 and earlier versions have a Integer overflow
vulnera ...)
@@ -19145,67 +19145,67 @@ CVE-2019-7953 (Adobe Experience Manager version 6.4
and ealier have a Cross-Site
CVE-2019-7952
RESERVED
CVE-2019-7951 (An information leakage vulnerability exists in Magento 2.1
prior to 2. ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7950 (An access control bypass vulnerability exists in Magento 2.1
prior to ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7949
RESERVED
CVE-2019-7948
RESERVED
CVE-2019-7947 (A cross-site request forgery vulnerability exists in the
GiftCardAccou ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7946
RESERVED
CVE-2019-7945 (A stored cross-cite scripting vulnerability exists in Magento
Open Sou ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7944 (A stored cross-site scripting vulnerability exists in the
product comm ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7943
RESERVED
CVE-2019-7942 (A remote code execution vulnerability exists in Magento 2.1
prior to 2 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7941 (Adobe Campaign Classic version 18.10.5-8984 and earlier
versions have ...)
NOT-FOR-US: Adobe
CVE-2019-7940 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7939 (A reflected cross-site scripting vulnerability exists on the
customer ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7938 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7937 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7936 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7935 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7934 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7933
RESERVED
CVE-2019-7932 (A remote code execution vulnerability exists in Magento Open
Source pr ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7931
RESERVED
CVE-2019-7930 (A file upload restriction bypass exists in Magento 2.1 prior to
2.1.18 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7929 (An information leakage vulnerability exists in Magento 2.1
prior to 2. ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7928 (A denial-of-service (DoS) vulnerability exists in Magento 2.1
prior to ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7927 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7926 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7925 (An insecure direct object reference (IDOR) vulnerability exists
in Mag ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7924
RESERVED
CVE-2019-7923 (A server-side request forgery (SSRF) vulnerability exists in
Magento 2 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7922
RESERVED
CVE-2019-7921 (A stored cross-site scripting vulnerability exists in the
product cata ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7920
RESERVED
CVE-2019-7919
@@ -19217,21 +19217,21 @@ CVE-2019-7917
CVE-2019-7916
RESERVED
CVE-2019-7915 (A denial-of-service vulnerability exists in Magento 2.1 prior
to 2.1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7914
RESERVED
CVE-2019-7913 (A server-side request forgery (SSRF) vulnerability exists in
Magento 2 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7912 (A file upload filter bypass exists in Magento 2.1 prior to
2.1.18, Mag ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7911 (A server-side request forgery (SSRF) vulnerability exists in
Magento O ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7910
RESERVED
CVE-2019-7909 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7908 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7907
RESERVED
CVE-2019-7906
@@ -19239,9 +19239,9 @@ CVE-2019-7906
CVE-2019-7905
RESERVED
CVE-2019-7904 (Insufficient enforcement of user access controls in Magento 2.1
prior ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7903 (A remote code execution vulnerability exists in Magento 2.1
prior to 2 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7902
RESERVED
CVE-2019-7901
@@ -19249,107 +19249,107 @@ CVE-2019-7901
CVE-2019-7900
RESERVED
CVE-2019-7899 (Names of disabled downloadable products could be disclosed due
to inad ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7898 (Samples of disabled downloadable products are accessible in
Magento Op ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7897 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7896 (A remote code execution vulnerability exists in Magento 2.1
prior to 2 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7895 (A remote code execution vulnerability exists in Magento 2.1
prior to 2 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7894
RESERVED
CVE-2019-7893
RESERVED
CVE-2019-7892 (A remote code execution vulnerability exists in Magento 2.1
prior to 2 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7891
RESERVED
CVE-2019-7890 (An Insecure Direct Object Reference (IDOR) vulnerability exists
in the ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7889 (An injection vulnerability exists in Magento Open Source prior
to 1.9. ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7888 (An information disclosure vulnerability exists in Magento 2.1
prior to ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7887 (A reflected cross-site scripting vulnerability exists in the
admin pan ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7886 (A cryptograhic flaw exists in Magento 2.1 prior to 2.1.18,
Magento 2.2 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7885 (Insufficient input validation in the config builder of the
Elastic sea ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7884
RESERVED
CVE-2019-7883
RESERVED
CVE-2019-7882 (A stored cross-site scripting vulnerability exists in the
WYSIWYG edit ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7881 (A cross-site scripting mitigation bypass exists in Magento 2.1
prior t ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7880 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7879
RESERVED
CVE-2019-7878
RESERVED
CVE-2019-7877 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7876 (A remote code execution vulnerability exists in Magento 2.1
prior to 2 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7875 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7874 (A cross-site request forgery vulnerability exists in Magento
2.1 prior ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7873 (A cross-site request forgery vulnerability exists in Magento
2.1 prior ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7872 (An insecure direct object reference (IDOR) vulnerability exists
in Mag ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7871 (A security bypass exists in Magento 2.1 prior to 2.1.18,
Magento 2.2 p ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7870
RESERVED
CVE-2019-7869 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7868 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7867 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7866 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7865 (A cross-site request forgery (CSRF) vulnerability exists in the
checko ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7864 (An insecure direct object reference (IDOR) vulnerability exists
in the ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7863 (A stored cross-site scripting vulnerability exists in the admin
panel ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7862 (A reflected cross-site scripting vulnerability exists in the
Product w ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7861 (Insufficient server-side validation of user input could allow
an attac ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7860 (A cryptographically weak pseudo-rando number generator is used
in mult ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7859 (A path traversal vulnerability in the WYSIWYG editor for
Magento 2.1 p ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7858 (A cryptographic flaw in Magento 2.1 prior to 2.1.18, Magento
2.2 prior ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7857 (A cross-site request forgery vulnerability in Magento 2.1 prior
to 2.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7856
RESERVED
CVE-2019-7855 (A cryptograhic flaw in Magento 2.1 prior to 2.1.18, Magento 2.2
prior ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7854 (An insecure direct object reference (IDOR) vulnerability in
Magento 2. ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7853 (A stored cross-site scripting vulnerability exists in Magento
2.1 prio ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7852 (A path disclosure vulnerability exists in Magento 2.1 prior to
2.1.18, ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7851 (A cross-site request forgery vulnerability in Magento 2.1 prior
to 2.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7850 (Adobe Campaign Classic version 18.10.5-8984 and earlier
versions have ...)
NOT-FOR-US: Adobe
CVE-2019-7849 (A defense-in-depth check was added to mitigate inadequate
session vali ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7848 (Adobe Campaign Classic version 18.10.5-8984 and earlier
versions have ...)
NOT-FOR-US: Adobe
CVE-2019-7847 (Adobe Campaign Classic version 18.10.5-8984 and earlier
versions have ...)
@@ -21239,7 +21239,7 @@ CVE-2019-7164 (SQLAlchemy through 1.2.17 and 1.3.x
through 1.3.0b2 allows SQL In
NOTE: https://github.com/sqlalchemy/sqlalchemy/issues/4481
NOTE:
https://github.com/sqlalchemy/sqlalchemy/commit/30307c4616ad67c01ddae2e1e8e34fabf6028414
CVE-2019-7163 (The web interface of Alcatel LINKZONE MW40-V-V1.0
MW40_LU_02.00_02 dev ...)
- TODO: check
+ NOT-FOR-US: Alcatel
CVE-2019-7162
RESERVED
CVE-2019-7161 (An issue was discovered in Zoho ManageEngine ADSelfService Plus
5.x th ...)
@@ -21724,9 +21724,9 @@ CVE-2019-6971 (An issue was discovered on TP-Link
TL-WR1043ND V2 devices. An att
CVE-2019-6970 (Moodle 3.5.x before 3.5.4 allows SSRF. ...)
- moodle <removed>
CVE-2019-6969 (The web interface of the D-Link DVA-5592 20180823 is vulnerable
to an ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2019-6968 (The web interface of the D-Link DVA-5592 20180823 is vulnerable
to XSS ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2019-6967 (AirTies Air5341 1.0.0.12 devices allow cgi-bin/login CSRF. ...)
NOT-FOR-US: AirTies devices
CVE-2019-6966 (An issue was discovered in Bento4 1.5.1-628. The AP4_ElstAtom
class in ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ee2a9ee988d32e0e1fb97fbbec56ed2f63af1153
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ee2a9ee988d32e0e1fb97fbbec56ed2f63af1153
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
