[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Jun 28 11:15:27 BST 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4427a869 by Moritz Muehlenhoff at 2024-06-28T10:58:01+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -167,9 +167,9 @@ CVE-2024-3331 (Vulnerability in Spotfire Spotfire Enterprise Runtime for R - Ser
CVE-2024-3330 (Vulnerability in Spotfire Spotfire Analyst, Spotfire Spotfire Server, ...)
NOT-FOR-US: Spotfire
CVE-2024-3043 (An unauthenticated IEEE 802.15.4 'co-ordinator realignment' packet can ...)
- TODO: check
+ NOT-FOR-US: Silabs
CVE-2024-3017 (In a Silicon Labsmulti-protocol gateway, a corrupt pointer to buffer ...)
- TODO: check
+ NOT-FOR-US: Silabs
CVE-2024-39669 (In the Console in Soffid IAM before 3.5.39, necessary checks were not ...)
NOT-FOR-US: Soffid IAM
CVE-2024-39376 (TELSAT marKoni FM Transmitters are vulnerable to users gaining unautho ...)
@@ -183,7 +183,7 @@ CVE-2024-39373 (TELSAT marKoni FM Transmitters are vulnerable to a command injec
CVE-2024-39208 (luci-app-lucky v2.8.3 was discovered to contain hardcoded credentials.)
NOT-FOR-US: luci-app-lucky
CVE-2024-39207 (lua-shmem v1.0-1 was discovered to contain a buffer overflow via the s ...)
- TODO: check
+ NOT-FOR-US: lua-shmem
CVE-2024-39158 (idccms v1.35 was discovered to contain a Cross-Site Request Forgery (C ...)
NOT-FOR-US: idccms
CVE-2024-39157 (idccms v1.35 was discovered to contain a Cross-Site Request Forgery (C ...)
@@ -880,13 +880,13 @@ CVE-2024-23140 (A maliciously crafted 3DM and MODEL file, when parsed in opennur
CVE-2024-22385 (Incorrect Default Permissions vulnerability in Hitachi Storage Provide ...)
NOT-FOR-US: Hitachi
CVE-2024-22168 (A Cross-Site Scripting (XSS) vulnerability on the My Cloud, My Cloud H ...)
- TODO: check
+ NOT-FOR-US: Western Digital
CVE-2023-6198 (Use of Hard-coded Credentials vulnerability in Baicells Snap Router Ba ...)
NOT-FOR-US: Baicells Snap Router BaiCE_BMI on EP3011
CVE-2023-5038 (badmonkey, a Security Researcher has found a flaw that allows for a un ...)
- TODO: check
+ NOT-FOR-US: Hanwha Vision
CVE-2023-50029 (PHP Injection vulnerability in the module "M4 PDF Extensions" (m4pdf) ...)
- TODO: check
+ NOT-FOR-US: PrestaShop addon
CVE-2023-45196 (Adminer and AdminerEvo allow an unauthenticated remote attacker to cau ...)
TODO: check
CVE-2023-45195 (Adminer and AdminerEvo are vulnerable to SSRF via database connection ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4427a869b83bf92f2a09bf5614f5196d16c88d10
--
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4427a869b83bf92f2a09bf5614f5196d16c88d10
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240628/637502c9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list