[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Jan 17 08:54:54 GMT 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2f53c59a by Moritz Muehlenhoff at 2024-01-17T09:54:28+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -23,25 +23,25 @@ CVE-2024-20960
CVE-2024-20962
- mysql-8.0 <unfixed>
CVE-2024-22916 (In D-LINK Go-RT-AC750 v101b03, the sprintf function in the sub_40E700 ...)
- TODO: check
+ NOT-FOR-US: D-LINK
CVE-2024-22411 (Avo is a framework to create admin panels for Ruby on Rails apps. In A ...)
- TODO: check
+ NOT-FOR-US: Avo
CVE-2024-22409 (DataHub is an open-source metadata platform. In affected versions a lo ...)
- TODO: check
+ NOT-FOR-US: DataHub
CVE-2024-22408 (Shopware is an open headless commerce platform. The implemented Flow B ...)
- TODO: check
+ NOT-FOR-US: Shopware
CVE-2024-22407 (Shopware is an open headless commerce platform. In the Shopware CMS, t ...)
- TODO: check
+ NOT-FOR-US: Shopware
CVE-2024-22406 (Shopware is an open headless commerce platform. The Shopware applicati ...)
- TODO: check
+ NOT-FOR-US: Shopware
CVE-2024-22192 (Ursa is a cryptographic library for use with blockchains. The revocati ...)
- TODO: check
+ NOT-FOR-US: Ursa
CVE-2024-22191 (Avo is a framework to create admin panels for Ruby on Rails apps. A st ...)
- TODO: check
+ NOT-FOR-US: Avo
CVE-2024-21670 (Ursa is a cryptographic library for use with blockchains. The revocati ...)
- TODO: check
+ NOT-FOR-US: Ursa
CVE-2024-20987 (Vulnerability in the Oracle BI Publisher product of Oracle Analytics ( ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20985 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2024-20983 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
@@ -49,7 +49,7 @@ CVE-2024-20983 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
CVE-2024-20981 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2024-20979 (Vulnerability in the Oracle BI Publisher product of Oracle Analytics ( ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20977 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2024-20975 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
@@ -69,129 +69,129 @@ CVE-2024-20963 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
CVE-2024-20961 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2024-20959 (Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracl ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20957 (Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20955 (Vulnerability in the Oracle GraalVM for JDK, Oracle GraalVM Enterprise ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20950 (Vulnerability in the Oracle Customer Interaction History product of Or ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20948 (Vulnerability in the Oracle Knowledge Management product of Oracle E-B ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20946 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20944 (Vulnerability in the Oracle iSupport product of Oracle E-Business Suit ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20942 (Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20940 (Vulnerability in the Oracle Knowledge Management product of Oracle E-B ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20938 (Vulnerability in the Oracle iStore product of Oracle E-Business Suite ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20936 (Vulnerability in the Oracle One-to-One Fulfillment product of Oracle E ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20934 (Vulnerability in the Oracle Installed Base product of Oracle E-Busines ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20930 (Vulnerability in the Oracle Outside In Technology product of Oracle Fu ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20928 (Vulnerability in the Oracle WebCenter Content product of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20924 (Vulnerability in Oracle Audit Vault and Database Firewall (component: ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20920 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20916 (Vulnerability in the Oracle Enterprise Manager Base Platform product o ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20914 (Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracl ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20912 (Vulnerability in Oracle Audit Vault and Database Firewall (component: ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20910 (Vulnerability in Oracle Audit Vault and Database Firewall (component: ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20908 (Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion M ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20906 (Vulnerability in the Integrated Lights Out Manager (ILOM) product of O ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-20904 (Vulnerability in the Oracle Business Intelligence Enterprise Edition p ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2024-0603 (A vulnerability classified as critical has been found in ZhiCms up to ...)
- TODO: check
+ NOT-FOR-US: ZhiCms
CVE-2024-0601 (A vulnerability was found in ZhongFuCheng3y Austin 1.0. It has been ra ...)
- TODO: check
+ NOT-FOR-US: ZhongFuCheng3y
CVE-2024-0405 (The Burst Statistics \u2013 Privacy-Friendly Analytics for WordPress p ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-52285 (ExamSys 9150244 allows SQL Injection via the /Support/action/Pages.php ...)
- TODO: check
+ NOT-FOR-US: ExamSys
CVE-2023-52069 (kodbox v1.49.04 was discovered to contain a cross-site scripting (XSS) ...)
- TODO: check
+ NOT-FOR-US: kodbox
CVE-2023-52068 (kodbox v1.43 was discovered to contain a cross-site scripting (XSS) vu ...)
- TODO: check
+ NOT-FOR-US: kodbox
CVE-2023-52042 (An issue discovered in sub_4117F8 function in TOTOLINK X6000R V9.4.0cu ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2023-51807 (Cross Site Scripting vulnerability in OFCMS v.1.14 allows a remote att ...)
- TODO: check
+ NOT-FOR-US: OFCMS
CVE-2023-51743 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51742 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51741 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51740 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51739 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51738 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51737 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51736 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51735 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51734 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51733 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51732 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51731 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51730 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51729 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51728 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51727 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51726 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51725 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51724 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51723 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51722 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51721 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51720 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-51719 (This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, ...)
- TODO: check
+ NOT-FOR-US: Skyworth Router CM5100
CVE-2023-49515 (Insecure Permissiosn vulnerability in TP Link TC70 and C200 WIFI Camer ...)
- TODO: check
+ NOT-FOR-US: TP Link
CVE-2023-48926 (An issue in 202 ecommerce Advanced Loyalty Program: Loyalty Points bef ...)
- TODO: check
+ NOT-FOR-US: PrestaShop addon
CVE-2023-46952 (Cross Site Scripting vulnerability in ABO.CMS v.5.9.3 allows an attack ...)
- TODO: check
+ NOT-FOR-US: ABO.CMS
CVE-2023-39691 (An issue discovered in kodbox through 1.43 allows attackers to arbitra ...)
- TODO: check
+ NOT-FOR-US: kodbox
CVE-2023-36236 (Cross Site Scripting vulnerability in webkil Bagisto v.1.5.0 and befor ...)
- TODO: check
+ NOT-FOR-US: webkil Bagisto
CVE-2023-36235 (An issue in webkul qloapps before v1.6.0 allows an attacker to obtain ...)
- TODO: check
+ NOT-FOR-US: webkul qloapps
CVE-2024-0607 [netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()]
- linux 6.5.13-1
[bookworm] - linux 6.1.64-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2f53c59a448eb897736a7a52f273c5586949ae2c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2f53c59a448eb897736a7a52f273c5586949ae2c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240117/cf05b938/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list