Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
44787419 by Salvatore Bonaccorso at 2023-12-28T09:50:41+01:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13,13 +13,13 @@ CVE-2023-51084 (hyavijava v6.0.07.1 was discovered to
contain a stack overflow v
CVE-2023-51080 (The NumberUtil.toBigDecimal method in hutool-core v5.8.23 was
discover ...)
NOT-FOR-US: Hutool
CVE-2023-51079 (A TimeOut error exists in the ParseTools.subCompileExpression
method i ...)
- TODO: check
+ NOT-FOR-US: mvel2
CVE-2023-51075 (hutool-core v5.8.23 was discovered to contain an infinite loop
in the ...)
NOT-FOR-US: Hutool
CVE-2023-51074 (json-path v2.8.0 was discovered to contain a stack overflow
via the Cr ...)
TODO: check
CVE-2023-51010 (An issue in the export component AdSdkH5Activity of
com.sdjictec.qdmet ...)
- TODO: check
+ NOT-FOR-US: com.sdjictec.qdmetro
CVE-2023-51006 (An issue in the openFile method of Chinese Perpetual Calendar
v9.0.0 a ...)
NOT-FOR-US: Chinese Perpetual Calendar
CVE-2023-50692 (File Upload vulnerability in JIZHICMS v.2.5, allows remote
attacker to ...)
@@ -45,25 +45,25 @@ CVE-2023-49001 (An issue in Indi Browser (aka kvbrowser)
v.12.11.23 allows an at
CVE-2023-49000 (An issue in ArtistScope ArtisBrowser v.34.1.5 and before
allows an att ...)
NOT-FOR-US: ArtistScope ArtisBrowser
CVE-2023-47883 (The com.altamirano.fabricio.tvbrowser TV browser application
through 4 ...)
- TODO: check
+ NOT-FOR-US: com.altamirano.fabricio.tvbrowser TV browser application
CVE-2023-47882 (The Kami Vision YI IoT com.yunyi.smartcamera application
through 4.1.9 ...)
- TODO: check
+ NOT-FOR-US: Kami Vision YI IoT com.yunyi.smartcamera application
CVE-2023-46989 (SQL Injection vulnerability in the Innovadeluxe Quick Order
module for ...)
- TODO: check
+ NOT-FOR-US: PrestaShop module
CVE-2023-46919 (Phlox com.phlox.simpleserver (aka Simple HTTP Server) 1.8 and
com.phlo ...)
- TODO: check
+ NOT-FOR-US: Phlox
CVE-2023-46918 (Phlox com.phlox.simpleserver.plus (aka Simple HTTP Server
PLUS) 1.8.1- ...)
- TODO: check
+ NOT-FOR-US: Phlox
CVE-2023-45702 (An HCL UrbanCode Deploy Agent installed as a Windows service
in a non- ...)
- TODO: check
+ NOT-FOR-US: HCL
CVE-2023-45701 (HCL Launch could allow a remote attacker to obtain sensitive
informati ...)
- TODO: check
+ NOT-FOR-US: HCL
CVE-2023-43955 (The com.phlox.tvwebbrowser TV Bro application through 2.0.0
for Androi ...)
- TODO: check
+ NOT-FOR-US: com.phlox.tvwebbrowser TV Bro application
CVE-2023-43481 (An issue in Shenzhen TCL Browser TV Web BrowseHere (aka
com.tcl.browse ...)
- TODO: check
+ NOT-FOR-US: Shenzhen TCL Browser TV Web BrowseHere (aka com.tcl.browser)
CVE-2023-34829 (Incorrect access control in TP-Link Tapo before v3.1.315
allows attack ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2023-7116 (A vulnerability, which was classified as critical, has been
found in W ...)
NOT-FOR-US: WeiYe-Jing datax-web
CVE-2023-6531
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4478741950ec914c54ea9b65bd70026c427feb44
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4478741950ec914c54ea9b65bd70026c427feb44
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
