[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
64a14189 by security tracker role at 2024-07-16T08:12:17+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,23 @@
+CVE-2024-6780 (Improper permission control in the mobile application (com.android.ser ...)
+	TODO: check
+CVE-2024-6559 (The Backup, Restore and Migrate WordPress Sites With the XCloner Plugi ...)
+	TODO: check
+CVE-2024-6557 (The SchedulePress \u2013 Auto Post & Publish, Auto Social Share, Sched ...)
+	TODO: check
+CVE-2024-4780 (The Image Hover Effects \u2013 Elementor Addon plugin for WordPress is ...)
+	TODO: check
+CVE-2024-4224 (An authenticated stored cross-site scripting (XSS) exists in the TP-Li ...)
+	TODO: check
+CVE-2024-4143 (A potential security vulnerability has been identified in certain HP P ...)
+	TODO: check
+CVE-2024-41008 (In the Linux kernel, the following vulnerability has been resolved:  d ...)
+	TODO: check
+CVE-2024-40632 (Linkerd is an open source, ultralight, security-first service mesh for ...)
+	TODO: check
+CVE-2024-40524 (Directory Traversal vulnerability in xmind2testcase v.1.5 allows a rem ...)
+	TODO: check
+CVE-2023-52290 (In streampark-console the list pages(e.g: application pages), users ca ...)
+	TODO: check
 CVE-2024-6746 (A vulnerability classified as problematic was found in NaiboWang EasyS ...)
 	NOT-FOR-US: NaiboWang EasySpider
 CVE-2024-6745 (A vulnerability classified as critical has been found in code-projects ...)
@@ -361,7 +381,7 @@ CVE-2024-39909 (KubeClarity is a tool for detection and management of Software B
 	NOT-FOR-US: KubeClarity
 CVE-2024-39903 (Solara is a pure Python, React-style framework for scaling Jupyter and ...)
 	NOT-FOR-US: Solara
-CVE-2024-39340 (Securepoint UTM before 12.6.5 mishandles OTP codes.)
+CVE-2024-39340 (A security vulnerability has been discovered in the handling of OTP ke ...)
 	NOT-FOR-US: Securepoint
 CVE-2024-38736 (Unrestricted Upload of File with Dangerous Type vulnerability in Realt ...)
 	NOT-FOR-US: WordPress plugin



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64a1418935c41a0b84210c2edc434eb8daca90ab

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64a1418935c41a0b84210c2edc434eb8daca90ab
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240716/53b3e426/attachment.htm>