Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9e1418d8 by Moritz Muehlenhoff at 2024-01-26T10:05:52+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,79 +1,79 @@
CVE-2024-24399 (An arbitrary file upload vulnerability in LeptonCMS v7.0.0
allows auth ...)
- TODO: check
+ NOT-FOR-US: LeptonCMS
CVE-2024-23630 (An arbitrary firmware upload vulnerability exists in the
Motorola MR2 ...)
- TODO: check
+ NOT-FOR-US: Motorola
CVE-2024-23629 (An authentication bypass vulnerability exists in the web
component of ...)
- TODO: check
+ NOT-FOR-US: Motorola
CVE-2024-23628 (A command injection vulnerability exists in the
'SaveStaticRouteIPv6P ...)
- TODO: check
+ NOT-FOR-US: Motorola
CVE-2024-23627 (A command injection vulnerability exists in the
'SaveStaticRouteIPv4Pa ...)
- TODO: check
+ NOT-FOR-US: Motorola
CVE-2024-23626 (A command injection vulnerability exists in the
\u2018SaveSysLogParams ...)
- TODO: check
+ NOT-FOR-US: Motorola
CVE-2024-23625 (A command injection vulnerability exists in D-Link DAP-1650
devices wh ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2024-23624 (A command injection vulnerability exists in the gena.cgi
module of D-L ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2024-23622 (A stack-based buffer overflow exists in IBM Merge Healthcare
eFilm Wor ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2024-23621 (A buffer overflow exists in IBM Merge Healthcare eFilm
Workstation lic ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2024-23620 (An improper privilege management vulnerability exists in IBM
Merge Hea ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2024-23619 (A hardcoded credential vulnerability exists in IBM Merge
Healthcare eF ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2024-23618 (An arbitrary code execution vulnerability exists in Arris
SURFboard SG ...)
- TODO: check
+ NOT-FOR-US: Arris
CVE-2024-23617 (A buffer overflow vulnerability exists in Symantec Data Loss
Preventio ...)
- TODO: check
+ NOT-FOR-US: Symantec
CVE-2024-23616 (A buffer overflow vulnerability exists in Symantec Server
Management S ...)
- TODO: check
+ NOT-FOR-US: Symantec
CVE-2024-23615 (A buffer overflow vulnerability exists in Symantec Messaging
Gateway v ...)
- TODO: check
+ NOT-FOR-US: Symantec
CVE-2024-23614 (A buffer overflow vulnerability exists in Symantec Messaging
Gateway v ...)
- TODO: check
+ NOT-FOR-US: Symantec
CVE-2024-23613 (A buffer overflow vulnerability exists in Symantec Deployment
Solution ...)
- TODO: check
+ NOT-FOR-US: Symantec
CVE-2024-23388 (Improper authorization in handler for custom URL scheme issue
in "Merc ...)
- TODO: check
+ NOT-FOR-US: Mercari
CVE-2024-23055 (An issue in Plone Docker Official Image 5.2.13 (5221)
open-source soft ...)
- TODO: check
+ NOT-FOR-US: Plone Docker image
CVE-2024-22922 (An issue in Projectworlds Vistor Management Systemin PHP v.1.0
allows ...)
- TODO: check
+ NOT-FOR-US: Projectworlds Vistor Management Systemin PHP
CVE-2024-22639 (iGalerie v3.0.22 was discovered to contain a reflected
cross-site scri ...)
- TODO: check
+ NOT-FOR-US: iGalerie
CVE-2024-22638 (liveSite v2019.1 was discovered to contain a remote code
execution (RC ...)
- TODO: check
+ NOT-FOR-US: liveSite
CVE-2024-22637 (Form Tools v3.1.1 was discovered to contain a reflected
cross-site scr ...)
- TODO: check
+ NOT-FOR-US: Form Tools
CVE-2024-22636 (PluXml Blog v5.8.9 was discovered to contain a remote code
execution ( ...)
- TODO: check
+ - pluxml <removed>
CVE-2024-22635 (WebCalendar v1.3.0 was discovered to contain a reflected
cross-site sc ...)
- TODO: check
+ - webcalendar <removed>
CVE-2024-22545 (TRENDnet TEW-824DRU version 1.04b01 is vulnerable to Command
Injection ...)
- TODO: check
+ NOT-FOR-US: TRENDnet
CVE-2024-21620 (An Improper Neutralization of Input During Web Page Generation
('Cross ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2024-21619 (A Missing Authentication for Critical Function vulnerability
combined ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2024-21387 (Microsoft Edge for Android Spoofing Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-21385 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-21383 (Microsoft Edge (Chromium-based) Spoofing Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-21382 (Microsoft Edge for Android Information Disclosure
Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-21326 (Microsoft Edge (Chromium-based) Elevation of Privilege
Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-0891 (A vulnerability was found in hongmaple octopus 1.0. It has been
declar ...)
- TODO: check
+ NOT-FOR-US: hongmaple octopus
CVE-2024-0890 (A vulnerability was found in hongmaple octopus 1.0. It has been
classi ...)
- TODO: check
+ NOT-FOR-US: hongmaple octopus
CVE-2024-0889 (A vulnerability was found in Kmint21 Golden FTP Server 2.02b
and class ...)
- TODO: check
+ NOT-FOR-US: Kmint21 Golden FTP Server
CVE-2024-0888 (A vulnerability, which was classified as problematic, was found
in BOR ...)
- TODO: check
+ NOT-FOR-US: BORGChat
CVE-2024-0887 (A vulnerability, which was classified as problematic, has been
found i ...)
TODO: check
CVE-2024-0886 (A vulnerability classified as problematic was found in
Poikosoft EZ CD ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e1418d8b08ea5d1e14c9e517c50b790169ad615
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e1418d8b08ea5d1e14c9e517c50b790169ad615
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
