[Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Dec 28 08:51:07 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
44787419 by Salvatore Bonaccorso at 2023-12-28T09:50:41+01:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13,13 +13,13 @@ CVE-2023-51084 (hyavijava v6.0.07.1 was discovered to contain a stack overflow v
CVE-2023-51080 (The NumberUtil.toBigDecimal method in hutool-core v5.8.23 was discover ...)
NOT-FOR-US: Hutool
CVE-2023-51079 (A TimeOut error exists in the ParseTools.subCompileExpression method i ...)
- TODO: check
+ NOT-FOR-US: mvel2
CVE-2023-51075 (hutool-core v5.8.23 was discovered to contain an infinite loop in the ...)
NOT-FOR-US: Hutool
CVE-2023-51074 (json-path v2.8.0 was discovered to contain a stack overflow via the Cr ...)
TODO: check
CVE-2023-51010 (An issue in the export component AdSdkH5Activity of com.sdjictec.qdmet ...)
- TODO: check
+ NOT-FOR-US: com.sdjictec.qdmetro
CVE-2023-51006 (An issue in the openFile method of Chinese Perpetual Calendar v9.0.0 a ...)
NOT-FOR-US: Chinese Perpetual Calendar
CVE-2023-50692 (File Upload vulnerability in JIZHICMS v.2.5, allows remote attacker to ...)
@@ -45,25 +45,25 @@ CVE-2023-49001 (An issue in Indi Browser (aka kvbrowser) v.12.11.23 allows an at
CVE-2023-49000 (An issue in ArtistScope ArtisBrowser v.34.1.5 and before allows an att ...)
NOT-FOR-US: ArtistScope ArtisBrowser
CVE-2023-47883 (The com.altamirano.fabricio.tvbrowser TV browser application through 4 ...)
- TODO: check
+ NOT-FOR-US: com.altamirano.fabricio.tvbrowser TV browser application
CVE-2023-47882 (The Kami Vision YI IoT com.yunyi.smartcamera application through 4.1.9 ...)
- TODO: check
+ NOT-FOR-US: Kami Vision YI IoT com.yunyi.smartcamera application
CVE-2023-46989 (SQL Injection vulnerability in the Innovadeluxe Quick Order module for ...)
- TODO: check
+ NOT-FOR-US: PrestaShop module
CVE-2023-46919 (Phlox com.phlox.simpleserver (aka Simple HTTP Server) 1.8 and com.phlo ...)
- TODO: check
+ NOT-FOR-US: Phlox
CVE-2023-46918 (Phlox com.phlox.simpleserver.plus (aka Simple HTTP Server PLUS) 1.8.1- ...)
- TODO: check
+ NOT-FOR-US: Phlox
CVE-2023-45702 (An HCL UrbanCode Deploy Agent installed as a Windows service in a non- ...)
- TODO: check
+ NOT-FOR-US: HCL
CVE-2023-45701 (HCL Launch could allow a remote attacker to obtain sensitive informati ...)
- TODO: check
+ NOT-FOR-US: HCL
CVE-2023-43955 (The com.phlox.tvwebbrowser TV Bro application through 2.0.0 for Androi ...)
- TODO: check
+ NOT-FOR-US: com.phlox.tvwebbrowser TV Bro application
CVE-2023-43481 (An issue in Shenzhen TCL Browser TV Web BrowseHere (aka com.tcl.browse ...)
- TODO: check
+ NOT-FOR-US: Shenzhen TCL Browser TV Web BrowseHere (aka com.tcl.browser)
CVE-2023-34829 (Incorrect access control in TP-Link Tapo before v3.1.315 allows attack ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2023-7116 (A vulnerability, which was classified as critical, has been found in W ...)
NOT-FOR-US: WeiYe-Jing datax-web
CVE-2023-6531
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4478741950ec914c54ea9b65bd70026c427feb44
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4478741950ec914c54ea9b65bd70026c427feb44
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231228/7c9cb137/attachment.htm>
More information about the debian-security-tracker-commits
mailing list