[Git][security-tracker-team/security-tracker][master] NFus
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Jun 25 15:36:40 BST 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ceecae69 by Moritz Muehlenhoff at 2024-06-25T16:35:47+02:00
NFus
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15,11 +15,11 @@ CVE-2024-4197 (An unrestrictedfile upload vulnerability in Avaya IP Officewas di
CVE-2024-4196 (An improper input validation vulnerability was discovered in Avaya IP ...)
NOT-FOR-US: Avaya
CVE-2024-3249 (The Zita Elementor Site Library plugin for WordPress is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-38903 (H3C Magic R230 V100R002's udpserver opens port 9034, allowing attacker ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2024-38902 (H3C Magic R230 V100R002 was discovered to contain a hardcoded password ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2024-38897 (WAVLINK WN551K1'live_check.shtml enables attackers to obtain sensitive ...)
NOT-FOR-US: WAVLINK
CVE-2024-38896 (WAVLINK WN551K1 found a command injection vulnerability through the st ...)
@@ -31,9 +31,9 @@ CVE-2024-38894 (WAVLINK WN551K1 found a command injection vulnerability through
CVE-2024-38892 (An issue in Wavlink WN551K1 allows a remote attacker to obtain sensiti ...)
NOT-FOR-US: WAVLINK
CVE-2024-37759 (DataGear v5.0.0 and earlier was discovered to contain a SpEL (Spring E ...)
- TODO: check
+ NOT-FOR-US: DataGear
CVE-2024-37007 (A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL th ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2024-37006 (A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll throu ...)
NOT-FOR-US: Autodesk
CVE-2024-37005 (A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL th ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ceecae6962ab4c31f510cf08e5ec6577bf427014
--
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ceecae6962ab4c31f510cf08e5ec6577bf427014
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240625/4e30e0bd/attachment.htm>
More information about the debian-security-tracker-commits
mailing list