[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 17 21:12:29 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
240f0211 by security tracker role at 2023-05-17T20:12:18+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,59 @@
+CVE-2023-32767 (The web interface of Symcon IP-Symcon before 6.3 (i.e., before 2023-05 ...)
+ TODO: check
+CVE-2023-31904 (savysoda Wifi HD Wireless Disk Drive 11 is vulnerable to Local File In ...)
+ TODO: check
+CVE-2023-31903 (GuppY CMS 6.00.10 is vulnerable to Unrestricted File Upload which allo ...)
+ TODO: check
+CVE-2023-31902 (RPA Technology Mobile Mouse 3.6.0.4 is vulnerable to Remote Code Execu ...)
+ TODO: check
+CVE-2023-31725 (yasm 1.3.0.55.g101bc was discovered to contain a heap-use-after-free v ...)
+ TODO: check
+CVE-2023-31724 (yasm 1.3.0.55.g101bc was discovered to contain a segmentation violatio ...)
+ TODO: check
+CVE-2023-31723 (yasm 1.3.0.55.g101bc was discovered to contain a segmentation violatio ...)
+ TODO: check
+CVE-2023-31722 (There exists a heap buffer overflow in nasm 2.16.02rc1 (GitHub commit: ...)
+ TODO: check
+CVE-2023-31703 (Cross Site Scripting (XSS) in the edit user form in Microworld Technol ...)
+ TODO: check
+CVE-2023-31702 (SQL injection in the View User Profile in MicroWorld eScan Management ...)
+ TODO: check
+CVE-2023-31701 (TP-Link TL-WPA4530 KIT V2 (EU)_170406 and V2 (EU)_161115 is vulnerable ...)
+ TODO: check
+CVE-2023-31700 (TP-Link TL-WPA4530 KIT V2 (EU)_170406 and V2 (EU)_161115 is vulnerable ...)
+ TODO: check
+CVE-2023-31699 (ChurchCRM v4.5.4 is vulnerable to Reflected Cross-Site Scripting (XSS) ...)
+ TODO: check
+CVE-2023-31698 (Bludit v3.14.1 is vulnerable to Stored Cross Site Scripting (XSS) via ...)
+ TODO: check
+CVE-2023-2776 (A vulnerability was found in code-projects Simple Photo Gallery 1.0. I ...)
+ TODO: check
+CVE-2023-2775 (A vulnerability was found in code-projects Bus Dispatch and Informatio ...)
+ TODO: check
+CVE-2023-2774 (A vulnerability was found in code-projects Bus Dispatch and Informatio ...)
+ TODO: check
+CVE-2023-2773 (A vulnerability has been found in code-projects Bus Dispatch and Infor ...)
+ TODO: check
+CVE-2023-2772 (A vulnerability, which was classified as critical, was found in Source ...)
+ TODO: check
+CVE-2023-2771 (A vulnerability, which was classified as critical, has been found in S ...)
+ TODO: check
+CVE-2023-2770 (A vulnerability classified as critical was found in SourceCodester Onl ...)
+ TODO: check
+CVE-2023-2769 (A vulnerability classified as critical has been found in SourceCodeste ...)
+ TODO: check
+CVE-2023-2768 (A vulnerability was found in Sucms 1.0. It has been rated as problemat ...)
+ TODO: check
+CVE-2023-2766 (A vulnerability was found in Weaver OA 9.5 and classified as problemat ...)
+ TODO: check
+CVE-2023-2765 (A vulnerability has been found in Weaver OA up to 9.5 and classified a ...)
+ TODO: check
+CVE-2023-2756 (SQL Injection in GitHub repository pimcore/customer-data-framework pri ...)
+ TODO: check
+CVE-2023-2745 (WordPress Core is vulnerable to Directory Traversal in versions up to, ...)
+ TODO: check
+CVE-2023-2679 (Data leakage in Adobe connector in Snow Software SPE 9.27.0 on Windows ...)
+ TODO: check
CVE-2023-31848 (davinci 0.3.0-rc is vulnerable to Server-side request forgery (SSRF).)
NOT-FOR-US: davinci
CVE-2023-31847 (In davinci 0.3.0-rc after logging in, the user can connect to the mysq ...)
@@ -1397,8 +1453,8 @@ CVE-2023-31210
RESERVED
CVE-2023-31209
RESERVED
-CVE-2023-31208
- RESERVED
+CVE-2023-31208 (Improper neutralization of livestatus command delimiters in the RestAP ...)
+ TODO: check
CVE-2023-31207 (Transmission of credentials within query parameters in Checkmk <= 2.1. ...)
- check-mk <removed>
CVE-2023-2283 [Authorization bypass in pki_verify_data_signature]
@@ -1549,8 +1605,8 @@ CVE-2023-31137 (MaraDNS is open-source software that implements the Domain Name
NOTE: https://github.com/samboy/MaraDNS/security/advisories/GHSA-58m7-826v-9c3c
CVE-2023-31136 (PostgresNIO is a Swift client for PostgreSQL. Any user of PostgresNIO ...)
NOT-FOR-US: PostgresNIO
-CVE-2023-31135
- RESERVED
+CVE-2023-31135 (Dgraph is an open source distributed GraphQL database. Existing Dgraph ...)
+ TODO: check
CVE-2023-31134 (Tauri is software for building applications for multi-platform deploym ...)
NOT-FOR-US: Tauri
CVE-2023-31133 (Ghost is an app for new-media creators with tools to build a website, ...)
@@ -3913,8 +3969,8 @@ CVE-2023-30440
RESERVED
CVE-2023-30439
RESERVED
-CVE-2023-30438
- RESERVED
+CVE-2023-30438 (An internally discovered vulnerability in PowerVM on IBM Power9 and Po ...)
+ TODO: check
CVE-2023-30437
RESERVED
CVE-2023-30436
@@ -4435,8 +4491,8 @@ CVE-2023-30193
RESERVED
CVE-2023-30192 (Prestashop possearchproducts 1.7 is vulnerable to SQL Injection via Po ...)
NOT-FOR-US: Prestashop
-CVE-2023-30191
- RESERVED
+CVE-2023-30191 (PrestaShop cdesigner < 3.1.9 is vulnerable to SQL Injection via Cdesig ...)
+ TODO: check
CVE-2023-30190
RESERVED
CVE-2023-30189 (Prestashop posstaticblocks <= 1.0.0 is vulnerable to SQL Injection via ...)
@@ -5187,8 +5243,8 @@ CVE-2023-29839 (A Stored Cross Site Scripting (XSS) vulnerability exists in mult
NOTE: Fixed upstream in 3.0.5
CVE-2023-29838
RESERVED
-CVE-2023-29837
- RESERVED
+CVE-2023-29837 (Cross Site Scripting vulnerability found in Exelysis Unified Communica ...)
+ TODO: check
CVE-2023-29836 (Cross Site Scripting vulnerability found in Exelysis Unified Communica ...)
NOT-FOR-US: Exelysis Unified Communication Solutions (EUCS)
CVE-2023-29835 (Insecure Permission vulnerability found in Wondershare Dr.Fone v.12.9. ...)
@@ -13619,8 +13675,8 @@ CVE-2023-27235 (An arbitrary file upload vulnerability in the \admin\c\CommonCon
NOT-FOR-US: Jizhicms
CVE-2023-27234 (A Cross-Site Request Forgery (CSRF) in /Sys/index.html of Jizhicms v2. ...)
NOT-FOR-US: Jizhicms
-CVE-2023-27233
- RESERVED
+CVE-2023-27233 (Piwigo v13.5.0 was discovered to contain a SQL injection vulnerability ...)
+ TODO: check
CVE-2023-27232 (TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a com ...)
NOT-FOR-US: TOTOLINK
CVE-2023-27231 (TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a com ...)
@@ -16639,8 +16695,8 @@ CVE-2023-26046 (teler-waf is a Go HTTP middleware that provides teler IDS functi
NOT-FOR-US: teler-waf
CVE-2023-26045
RESERVED
-CVE-2023-26044
- RESERVED
+CVE-2023-26044 (react/http is an event-driven, streaming HTTP client and server implem ...)
+ TODO: check
CVE-2023-26043 (GeoNode is an open source platform that facilitates the creation, shar ...)
NOT-FOR-US: GeoNode
CVE-2023-26042 (Part-DB is an open source inventory management system for your electro ...)
@@ -20339,8 +20395,7 @@ CVE-2023-24807 (Undici is an HTTP/1.1 client for Node.js. Prior to version 5.19.
NOTE: https://github.com/nodejs/undici/commit/f2324e549943f0b0937b09fb1c0c16cc7c93abdf (v5.19.1)
CVE-2023-24806
REJECTED
-CVE-2023-24805
- RESERVED
+CVE-2023-24805 (cups-filters contains backends, filters, and other software required t ...)
- cups-filters <unfixed> (bug #1036224)
NOTE: https://www.openwall.com/lists/oss-security/2023/05/17/5
NOTE: https://github.com/OpenPrinting/cups-filters/security/advisories/GHSA-gpxc-v2m8-fr3x
@@ -23269,8 +23324,8 @@ CVE-2023-23548
RESERVED
CVE-2023-22359
RESERVED
-CVE-2023-22348
- RESERVED
+CVE-2023-22348 (Improper Authorization in RestAPI in Checkmk GmbH's Checkmk versions < ...)
+ TODO: check
CVE-2023-22318 (Denial of service in Webconf in Tribe29 Checkmk Appliance before 1.6.5 ...)
TODO: check
CVE-2023-22309 (Reflective Cross-Site-Scripting in Webconf in Tribe29 Checkmk Applianc ...)
@@ -73350,63 +73405,63 @@ CVE-2022-33680 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerabi
NOT-FOR-US: Microsoft
CVE-2022-33679 (Windows Kerberos Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33678 (Azure Site Recovery Remote Code Execution Vulnerability. This CVE ID i ...)
+CVE-2022-33678 (Azure Site Recovery Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33677 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33677 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33676 (Azure Site Recovery Remote Code Execution Vulnerability. This CVE ID i ...)
+CVE-2022-33676 (Azure Site Recovery Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33675 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33675 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33674 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33674 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33673 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33673 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33672 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33672 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33671 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33671 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-33670 (Windows Partition Management Driver Elevation of Privilege Vulnerabili ...)
NOT-FOR-US: Microsoft
-CVE-2022-33669 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33669 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33668 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33668 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33667 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33667 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33666 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33666 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33665 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33665 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33664 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33664 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33663 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33663 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33662 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33662 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33661 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33661 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33660 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33660 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33659 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33659 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33658 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33658 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33657 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33657 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33656 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33656 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33655 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33655 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33654 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33654 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33653 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33653 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33652 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33652 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33651 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33651 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33650 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33650 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-33649 (Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability.)
NOT-FOR-US: Microsoft
@@ -73420,11 +73475,11 @@ CVE-2022-33645 (Windows TCP/IP Driver Denial of Service Vulnerability.)
NOT-FOR-US: Microsoft
CVE-2022-33644 (Xbox Live Save Service Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33643 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33643 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33642 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33642 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-33641 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-33641 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-33640 (System Center Operations Manager: Open Management Infrastructure (OMI) ...)
NOT-FOR-US: Microsoft
@@ -73432,7 +73487,7 @@ CVE-2022-33639 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerabi
NOT-FOR-US: Microsoft
CVE-2022-33638 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. ...)
NOT-FOR-US: Microsoft
-CVE-2022-33637 (Microsoft Defender for Endpoint Tampering Vulnerability.)
+CVE-2022-33637 (Microsoft Defender for Endpoint Tampering Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-33636 (Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability.)
NOT-FOR-US: Microsoft
@@ -73440,7 +73495,7 @@ CVE-2022-33635 (Windows GDI+ Remote Code Execution Vulnerability.)
NOT-FOR-US: Microsoft
CVE-2022-33634 (Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulner ...)
NOT-FOR-US: Microsoft
-CVE-2022-33633 (Skype for Business and Lync Remote Code Execution Vulnerability.)
+CVE-2022-33633 (Skype for Business and Lync Remote Code Execution Vulnerability)
NOT-FOR-US: Skype for Business and Lync
CVE-2022-33632 (Microsoft Office Security Feature Bypass Vulnerability)
NOT-FOR-US: Microsoft
@@ -83056,17 +83111,17 @@ CVE-2021-46791 (Insufficient input validation during parsing of the System Manag
NOT-FOR-US: AMD
CVE-2022-30227
RESERVED
-CVE-2022-30226 (Windows Print Spooler Elevation of Privilege Vulnerability. This CVE I ...)
+CVE-2022-30226 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-30225 (Windows Media Player Network Sharing Service Elevation of Privilege Vu ...)
NOT-FOR-US: Microsoft
-CVE-2022-30224 (Windows Advanced Local Procedure Call Elevation of Privilege Vulnerabi ...)
+CVE-2022-30224 (Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vu ...)
NOT-FOR-US: Microsoft
-CVE-2022-30223 (Windows Hyper-V Information Disclosure Vulnerability. This CVE ID is u ...)
+CVE-2022-30223 (Windows Hyper-V Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-30222 (Windows Shell Remote Code Execution Vulnerability.)
+CVE-2022-30222 (Windows Shell Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-30221 (Windows Graphics Component Remote Code Execution Vulnerability.)
+CVE-2022-30221 (Windows Graphics Component Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-30220 (Windows Common Log File System Driver Elevation of Privilege Vulnerabi ...)
NOT-FOR-US: Microsoft
@@ -83076,13 +83131,13 @@ CVE-2022-30218
RESERVED
CVE-2022-30217
RESERVED
-CVE-2022-30216 (Windows Server Service Tampering Vulnerability.)
+CVE-2022-30216 (Windows Server Service Tampering Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-30215 (Active Directory Federation Services Elevation of Privilege Vulnerabil ...)
NOT-FOR-US: Microsoft
-CVE-2022-30214 (Windows DNS Server Remote Code Execution Vulnerability.)
+CVE-2022-30214 (Windows DNS Server Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-30213 (Windows GDI+ Information Disclosure Vulnerability.)
+CVE-2022-30213 (Windows GDI+ Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-30212 (Windows Connected Devices Platform Service Information Disclosure Vuln ...)
NOT-FOR-US: Microsoft
@@ -83090,21 +83145,21 @@ CVE-2022-30211 (Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution
NOT-FOR-US: Microsoft
CVE-2022-30210
RESERVED
-CVE-2022-30209 (Windows IIS Server Elevation of Privilege Vulnerability.)
+CVE-2022-30209 (Windows IIS Server Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-30208 (Windows Security Account Manager (SAM) Denial of Service Vulnerability ...)
+CVE-2022-30208 (Windows Security Account Manager (SAM) Denial of Service Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-30207
RESERVED
-CVE-2022-30206 (Windows Print Spooler Elevation of Privilege Vulnerability. This CVE I ...)
+CVE-2022-30206 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-30205 (Windows Group Policy Elevation of Privilege Vulnerability.)
+CVE-2022-30205 (Windows Group Policy Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-30204
RESERVED
-CVE-2022-30203 (Windows Boot Manager Security Feature Bypass Vulnerability.)
+CVE-2022-30203 (Windows Boot Manager Security Feature Bypass Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-30202 (Windows Advanced Local Procedure Call Elevation of Privilege Vulnerabi ...)
+CVE-2022-30202 (Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vu ...)
NOT-FOR-US: Microsoft
CVE-2022-30201
RESERVED
@@ -83134,7 +83189,7 @@ CVE-2022-30189 (Windows Autopilot Device Management and Enrollment Client Spoofi
NOT-FOR-US: Microsoft
CVE-2022-30188 (HEVC Video Extensions Remote Code Execution Vulnerability. This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2022-30187 (Azure Storage Library Information Disclosure Vulnerability.)
+CVE-2022-30187 (Azure Storage Library Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-30186
RESERVED
@@ -83146,7 +83201,7 @@ CVE-2022-30183
RESERVED
CVE-2022-30182
RESERVED
-CVE-2022-30181 (Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID ...)
+CVE-2022-30181 (Azure Site Recovery Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-30180 (Azure RTOS GUIX Studio Information Disclosure Vulnerability.)
NOT-FOR-US: Microsoft
@@ -111298,39 +111353,39 @@ CVE-2022-22052
RESERVED
CVE-2022-22051
RESERVED
-CVE-2022-22050 (Windows Fax Service Elevation of Privilege Vulnerability.)
+CVE-2022-22050 (Windows Fax Service Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22049 (Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is uni ...)
+CVE-2022-22049 (Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privileg ...)
NOT-FOR-US: Microsoft
-CVE-2022-22048 (BitLocker Security Feature Bypass Vulnerability.)
+CVE-2022-22048 (BitLocker Security Feature Bypass Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22047 (Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is uni ...)
+CVE-2022-22047 (Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privileg ...)
NOT-FOR-US: Microsoft
CVE-2022-22046
RESERVED
-CVE-2022-22045 (Windows.Devices.Picker.dll Elevation of Privilege Vulnerability.)
+CVE-2022-22045 (Windows.Devices.Picker.dll Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-22044
RESERVED
CVE-2022-22043 (Windows Fast FAT File System Driver Elevation of Privilege Vulnerabili ...)
NOT-FOR-US: Microsoft
-CVE-2022-22042 (Windows Hyper-V Information Disclosure Vulnerability. This CVE ID is u ...)
+CVE-2022-22042 (Windows Hyper-V Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22041 (Windows Print Spooler Elevation of Privilege Vulnerability. This CVE I ...)
+CVE-2022-22041 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-22040 (Internet Information Services Dynamic Compression Module Denial of Ser ...)
NOT-FOR-US: Microsoft
-CVE-2022-22039 (Windows Network File System Remote Code Execution Vulnerability. This ...)
+CVE-2022-22039 (Windows Network File System Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22038 (Remote Procedure Call Runtime Remote Code Execution Vulnerability.)
+CVE-2022-22038 (Remote Procedure Call Runtime Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22037 (Windows Advanced Local Procedure Call Elevation of Privilege Vulnerabi ...)
+CVE-2022-22037 (Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vu ...)
NOT-FOR-US: Microsoft
-CVE-2022-22036 (Performance Counters for Windows Elevation of Privilege Vulnerability.)
+CVE-2022-22036 (Performance Counters for Windows Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-22035 (Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulner ...)
NOT-FOR-US: Microsoft
-CVE-2022-22034 (Windows Graphics Component Elevation of Privilege Vulnerability.)
+CVE-2022-22034 (Windows Graphics Component Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-22033
RESERVED
@@ -111340,21 +111395,21 @@ CVE-2022-22031 (Windows Credential Guard Domain-joined Public Key Elevation of P
NOT-FOR-US: Microsoft
CVE-2022-22030
RESERVED
-CVE-2022-22029 (Windows Network File System Remote Code Execution Vulnerability. This ...)
+CVE-2022-22029 (Windows Network File System Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22028 (Windows Network File System Information Disclosure Vulnerability.)
+CVE-2022-22028 (Windows Network File System Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22027 (Windows Fax Service Remote Code Execution Vulnerability. This CVE ID i ...)
+CVE-2022-22027 (Windows Fax Service Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-22026 (Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is uni ...)
+CVE-2022-22026 (Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privileg ...)
NOT-FOR-US: Microsoft
CVE-2022-22025 (Windows Internet Information Services Cachuri Module Denial of Service ...)
NOT-FOR-US: Microsoft
-CVE-2022-22024 (Windows Fax Service Remote Code Execution Vulnerability. This CVE ID i ...)
+CVE-2022-22024 (Windows Fax Service Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-22023 (Windows Portable Device Enumerator Service Security Feature Bypass Vul ...)
NOT-FOR-US: Microsoft
-CVE-2022-22022 (Windows Print Spooler Elevation of Privilege Vulnerability. This CVE I ...)
+CVE-2022-22022 (Windows Print Spooler Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-22021 (Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability.)
NOT-FOR-US: Microsoft
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/240f0211b7c640947a715896c9def477be2f6f10
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/240f0211b7c640947a715896c9def477be2f6f10
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230517/e5fb619a/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list