[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Apr 2 21:22:16 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c5d96ae2 by Salvatore Bonaccorso at 2024-04-02T22:21:47+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,69 +1,69 @@
CVE-2024-3151 (A vulnerability, which was classified as problematic, was found in Bdt ...)
- TODO: check
+ NOT-FOR-US: Bdtask Multi-Store Inventory Management System
CVE-2024-31109 (Cross-Site Request Forgery (CSRF) vulnerability in Toastie Studio Wooc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-31105 (Cross-Site Request Forgery (CSRF) vulnerability in Adam Bowen Tax Rate ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30965 (DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (C ...)
- TODO: check
+ NOT-FOR-US: DedeCMS
CVE-2024-30946 (DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (C ...)
- TODO: check
+ NOT-FOR-US: DedeCMS
CVE-2024-30809 (An issue was discovered in Bento4 v1.6.0-641-2-g1529b83. There is a he ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-30808 (An issue was discovered in Bento4 v1.6.0-641-2-g1529b83. There is a he ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-30807 (An issue was discovered in Bento4 v1.6.0-641-2-g1529b83. There is a he ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-30806 (An issue was discovered in Bento4 v1.6.0-641-2-g1529b83. There is a he ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-30621 (Tenda AX1803 v1.0.0.1 contains a stack overflow via the serverName par ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30620 (Tenda AX1803 v1.0.0.1 contains a stack overflow via the serviceName pa ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30532 (Server-Side Request Forgery (SSRF) vulnerability in Builderall Team Bu ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30531 (Server-Side Request Forgery (SSRF) vulnerability in Nelio Software Nel ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30335 (Foxit PDF Reader AcroForm Annotation Out-Of-Bounds Read Information Di ...)
- TODO: check
+ NOT-FOR-US: Foxit PDF Reader
CVE-2024-30248 (Piccolo Admin is an admin interface/content management system for Pyth ...)
TODO: check
CVE-2024-2931 (The WPFront User Role Editor plugin for WordPress is vulnerable to Sen ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-2745 (Rapid7's InsightVM maintenance mode login page suffers from a sensitiv ...)
- TODO: check
+ NOT-FOR-US: Rapid7
CVE-2024-2435 (For an attacker with pre-existing access to send a signal to a workflo ...)
TODO: check
CVE-2024-2389 (In Flowmon versions prior to 11.1.14 and 12.3.5, an operating system c ...)
- TODO: check
+ NOT-FOR-US: Flowmon
CVE-2024-29949 (There is a command injection vulnerability in some Hikvision NVRs. Thi ...)
- TODO: check
+ NOT-FOR-US: Hikvision
CVE-2024-29948 (There is an out-of-bounds read vulnerability in some Hikvision NVRs. A ...)
- TODO: check
+ NOT-FOR-US: Hikvision
CVE-2024-29947 (There is a NULL dereference pointer vulnerability in some Hikvision NV ...)
- TODO: check
+ NOT-FOR-US: Hikvision
CVE-2024-29834 (This vulnerability allows authenticated users with produce or consume ...)
- TODO: check
+ NOT-FOR-US: Apache Pulsar
CVE-2024-29514 (File Upload vulnerability in lepton v.7.1.0 allows a remote authentica ...)
- TODO: check
+ NOT-FOR-US: Lepton CMS
CVE-2024-28287 (A DOM-based open redirection in the returnUrl parameter of INSTINCT UI ...)
- TODO: check
+ NOT-FOR-US: INSTINCT UI Web Client
CVE-2024-24888 (Server-Side Request Forgery (SSRF) vulnerability in Kadence WP Gutenbe ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-22780 (Cross Site Scripting vulnerability in CA17 TeamsACS v.1.0.1 allows a r ...)
- TODO: check
+ NOT-FOR-US: CA17 TeamsACS
CVE-2024-22248 (VMware SD-WAN Orchestrator contains an open redirect vulnerability. A ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2024-22247 (VMware SD-WAN Edge contains a missing authentication and protection me ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2024-22246 (VMware SD-WAN Edge contains an unauthenticated command injection vulne ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2024-1946 (The Genesis Blocks plugin for WordPress is vulnerable to Stored Cross- ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-1807 (The Product Sort and Display for WooCommerce plugin for WordPress is v ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-1732 (The Sharkdropship for AliExpress Dropshipping and Affiliate plugin for ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-6951 (A Use of Weak Credentials vulnerability affecting the Wi-Fi network ge ...)
TODO: check
CVE-2023-6950 (An Improper Input Validation vulnerability affecting the FTP service r ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5d96ae299ea76a454f7e90e8ca9435f0ee69e16
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5d96ae299ea76a454f7e90e8ca9435f0ee69e16
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240402/3f0c1157/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list