Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
85889466 by Salvatore Bonaccorso at 2024-12-28T09:45:44+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,17 +1,17 @@
CVE-2024-54775 (Dcat-Admin v2.2.0-beta and v2.2.2-beta contains a Cross-Site
Scripting ...)
- TODO: check
+ NOT-FOR-US: Dcat-Admin
CVE-2024-54774 (Dcat Admin v2.2.0-beta contains a cross-site scripting (XSS)
vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Dcat-Admin
CVE-2024-50717 (SQL injection vulnerability in Smart Agent v.1.1.0 allows a
remote att ...)
- TODO: check
+ NOT-FOR-US: Smart Agent
CVE-2024-50716 (SQL injection vulnerability in Smart Agent v.1.1.0 allows a
remote att ...)
- TODO: check
+ NOT-FOR-US: Smart Agent
CVE-2024-50715 (An issue in smarts-srl.com Smart Agent v.1.1.0 allows a remote
attacke ...)
- TODO: check
+ NOT-FOR-US: Smart Agent
CVE-2024-50714 (A Server-Side Request Forgery (SSRF) in smarts-srl.com Smart
Agent v.1 ...)
- TODO: check
+ NOT-FOR-US: Smart Agent
CVE-2024-50713 (SmartAgent v1.1.0 was discovered to contain a SQL injection
vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Smart Agent
CVE-2024-46973 (Software installed and run as a non-privileged user may
conduct improp ...)
TODO: check
CVE-2024-46972 (Software installed and run as a non-privileged user may
conduct improp ...)
@@ -19,11 +19,11 @@ CVE-2024-46972 (Software installed and run as a
non-privileged user may conduct
CVE-2024-43705 (Software installed and run as a non-privileged user can
trigger the GP ...)
TODO: check
CVE-2023-7266 (Some Huawei home routers have a connection hijacking
vulnerability. Su ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2023-7263 (Some Huawei home music system products have a path traversal
vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2023-52718 (A connection hijacking vulnerability exists in some Huawei
home router ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2024-56732 (HarfBuzz is a text shaping engine. Starting with 8.5.0 through
10.0.1, ...)
- harfbuzz <unfixed> (bug #1091529)
[bookworm] - harfbuzz <not-affected> (Vulnerable code introduced later)
@@ -33,9 +33,9 @@ CVE-2024-56732 (HarfBuzz is a text shaping engine. Starting
with 8.5.0 through 1
CVE-2024-56509 (changedetection.io is a free open source web page change
detection, we ...)
TODO: check
CVE-2024-56508 (LinkAce is a self-hosted archive to collect links of your
favorite web ...)
- TODO: check
+ NOT-FOR-US: LinkAce
CVE-2024-56507 (LinkAce is a self-hosted archive to collect links of your
favorite web ...)
- TODO: check
+ NOT-FOR-US: LinkAce
CVE-2024-54454 (An issue was discovered in Kurmi Provisioning Suite before
7.9.0.35, 7 ...)
NOT-FOR-US: Kurmi Provisioning Suite
CVE-2024-54453 (An issue was discovered in Kurmi Provisioning Suite before
7.9.0.35, 7 ...)
@@ -61,7 +61,7 @@ CVE-2024-12991 (A vulnerability was found in Beijing Longda
Jushang Technology D
CVE-2024-12990 (A vulnerability was found in ruifang-tech Rebuild 3.8.6. It
has been c ...)
TODO: check
CVE-2024-12989 (A vulnerability was found in WISI Tangram GT31 up to 20241214
and clas ...)
- TODO: check
+ NOT-FOR-US: WISI Tangram GT31
CVE-2024-12988 (A vulnerability has been found in Netgear R6900P and R7000P
1.3.3.154 ...)
NOT-FOR-US: Netgear
CVE-2024-12987 (A vulnerability, which was classified as critical, was found
in DrayTe ...)
@@ -69,7 +69,7 @@ CVE-2024-12987 (A vulnerability, which was classified as
critical, was found in
CVE-2024-12986 (A vulnerability, which was classified as critical, has been
found in D ...)
NOT-FOR-US: DrayTek
CVE-2024-12985 (A vulnerability classified as critical was found in Overtek
OT-E801G O ...)
- TODO: check
+ NOT-FOR-US: Overtek OT-E801G
CVE-2024-12984 (A vulnerability classified as problematic has been found in
Amcrest IP ...)
NOT-FOR-US: Amcrest
CVE-2024-12856 (The Four-Faith router models F3x24 and F3x36 are affected by
an operat ...)
@@ -135919,7 +135919,7 @@ CVE-2022-48472 (A Huawei printer has a system command
injection vulnerability. S
CVE-2022-48471 (There is a misinterpretation of input vulnerability in Huawei
Printer. ...)
NOT-FOR-US: Huawei
CVE-2022-48470 (Huawei HiLink AI Life product has an identity authentication
bypass vu ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2022-48469 (There is a traffic hijacking vulnerability in Huawei routers.
Successf ...)
NOT-FOR-US: Huawei
CVE-2014-125099 (A vulnerability has been found in I Recommend This Plugin up
to 3.7.2 ...)
@@ -272565,7 +272565,7 @@ CVE-2021-37002 (There is a Memory out-of-bounds
access vulnerability in Huawei S
CVE-2021-37001 (There is a Register tampering vulnerability in Huawei
Smartphone.Succe ...)
NOT-FOR-US: Huawei
CVE-2021-37000 (Some Huawei wearables have a permission management
vulnerability.)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-36999 (There is a Buffer overflow vulnerability in Huawei
Smartphone.Successf ...)
NOT-FOR-US: Huawei
CVE-2021-36998 (There is an Improper verification vulnerability in Huawei
Smartphone.S ...)
@@ -309305,7 +309305,7 @@ CVE-2021-22486 (There is a issue of Unstandardized
field names in Huawei Smartph
CVE-2021-22485 (There is a SSID vulnerability with Wi-Fi network connections
in Huawei ...)
NOT-FOR-US: Huawei
CVE-2021-22484 (Some Huawei wearables have a vulnerability of not verifying
the actual ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-22483 (There is a issue of IP address spoofing in Huawei Smartphone.
Successf ...)
NOT-FOR-US: Huawei
CVE-2021-22482 (There is an Uninitialized variable vulnerability in Huawei
Smartphone. ...)
@@ -394552,15 +394552,15 @@ CVE-2020-1826 (Huawei Honor Magic2 mobile phones
with versions earlier than 10.0
CVE-2020-1825 (FusionAccess with versions earlier than 6.5.1.SPC002 have a
Denial of ...)
NOT-FOR-US: Huawei
CVE-2020-1824 (There are multiple out of bounds (OOB) read vulnerabilities in
the imp ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2020-1823 (There are multiple out of bounds (OOB) read vulnerabilities in
the imp ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2020-1822 (There are multiple out of bounds (OOB) read vulnerabilities in
the imp ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2020-1821 (There are multiple out of bounds (OOB) read vulnerabilities in
the imp ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2020-1820 (There are multiple out of bounds (OOB) read vulnerabilities in
the imp ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2020-1819 (There are multiple out of bounds (OOB) read vulnerabilities in
the imp ...)
NOT-FOR-US: Huawei
CVE-2020-1818 (There are multiple out of bounds (OOB) read vulnerabilities in
the imp ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/85889466171318ae333dfde3720af6820176fda5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/85889466171318ae333dfde3720af6820176fda5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
