[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Apr 17 21:23:48 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
00498fc0 by Salvatore Bonaccorso at 2024-04-17T22:23:12+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,17 +3,17 @@ CVE-2024-3914 (Use after free in V8 in Google Chrome prior to 124.0.6367.60 allo
[bullseye] - chromium <end-of-life> (see #1061268)
[buster] - chromium <end-of-life> (see DSA 5046)
CVE-2024-3910 (A vulnerability, which was classified as critical, has been found in T ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-3909 (A vulnerability classified as critical was found in Tenda AC500 2.0.1. ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-3908 (A vulnerability classified as critical has been found in Tenda AC500 2 ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-3907 (A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been ra ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-3906 (A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been de ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-3905 (A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been cl ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-3900 (Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by long ...)
TODO: check
CVE-2024-3825 (Versions of the BlazeMeter Jenkins plugin prior to 4.22 contain a flaw ...)
@@ -21,133 +21,133 @@ CVE-2024-3825 (Versions of the BlazeMeter Jenkins plugin prior to 4.22 contain a
CVE-2024-3817 (HashiCorp\u2019s go-getter library is vulnerable to argument injection ...)
TODO: check
CVE-2024-3333 (The Essential Addons for Elementor plugin for WordPress is vulnerable ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-3323 (Cross Site Scripting in UI Request/Response Validation in TIBCO Ja ...)
- TODO: check
+ NOT-FOR-US: TIBCO JasperReports Server
CVE-2024-32550 (Cross-Site Request Forgery (CSRF) vulnerability in BMI Adult & Kid Cal ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32549 (Cross-Site Request Forgery (CSRF) vulnerability in Microkid Related Po ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32548 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32547 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32546 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32545 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32544 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32543 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32542 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32541 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32540 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32539 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32538 (Cross-Site Request Forgery (CSRF) vulnerability in Joshua Eldridge Eas ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32536 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32535 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32534 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32533 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32531 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32530 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32529 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32528 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32527 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32526 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32510 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32508 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32506 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32505 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32463 (phlex is an open source framework for building object-oriented views i ...)
- TODO: check
+ NOT-FOR-US: phlex framework
CVE-2024-32457 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32456 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32320 (Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32318 (Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32317 (Tenda AC10 v4.0 V16.03.10.13 and V16.03.10.20 firmware has a stack ove ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32316 (Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32315 (Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32314 (Tenda AC500 V2.0.1.9(1307) firmware contains a command injection vulne ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32313 (Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32312 (Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability locat ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32311 (Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32310 (Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability locat ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32307 (Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32306 (Tenda AC10U v1.0 Firmware v15.03.06.49 has a stack overflow vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32305 (Tenda A18 v15.03.05.05 firmware has a stack overflow vulnerability loc ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32303 (Tenda AC15 v15.03.20_multi, v15.03.05.19, and v15.03.05.18 firmware ha ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32302 (Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32301 (Tenda AC7V1.0 v15.03.06.44 firmware has a stack overflow vulnerability ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32299 (Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32293 (Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32292 (Tenda W30E v1.0 V1.0.1.25(633) firmware contains a command injection v ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32291 (Tenda W30E v1.0 firmware v1.0.1.25(633) has a stack overflow vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32290 (Tenda W30E v1.0 v1.0.1.25(633) firmware has a stack overflow vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32288 (Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32287 (Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32286 (Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32285 (Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32283 (Tenda FH1203 V2.0.1.6 firmware has a command injection vulnerablility ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32282 (Tenda FH1202 v1.2.0.14(408) firmware contains a command injection vuln ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32281 (Tenda AC7V1.0 v15.03.06.44 firmware contains a command injection vulne ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-32163 (CMSeasy 7.7.7.9 is vulnerable to code execution.)
- TODO: check
+ NOT-FOR-US: CMSeasy
CVE-2024-32162 (CMSeasy 7.7.7.9 is vulnerable to Arbitrary file deletion.)
- TODO: check
+ NOT-FOR-US: CMSeasy
CVE-2024-32161 (jizhiCMS 2.5 suffers from a File upload vulnerability.)
- TODO: check
+ NOT-FOR-US: jizhiCMS
CVE-2024-32130 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-31585 (FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Er ...)
TODO: check
CVE-2024-31583 (Pytorch before version v2.2.0 was discovered to contain a use-after-fr ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00498fc0885fad0c1a86a2f39a4c673e50093ece
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00498fc0885fad0c1a86a2f39a4c673e50093ece
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240417/d2e05231/attachment.htm>
More information about the debian-security-tracker-commits
mailing list