[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Mar 18 10:07:08 GMT 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
68d0e467 by Moritz Muehlenhoff at 2024-03-18T11:06:40+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,67 +1,67 @@
CVE-2024-2581 (A vulnerability was found in Tenda AC10 16.03.10.13 and classified as ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-2577 (A vulnerability has been found in SourceCodester Employee Task Managem ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2576 (A vulnerability, which was classified as critical, was found in Source ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2575 (A vulnerability, which was classified as critical, has been found in S ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2574 (A vulnerability classified as critical was found in SourceCodester Emp ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2573 (A vulnerability classified as critical has been found in SourceCodeste ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2572 (A vulnerability was found in SourceCodester Employee Task Management S ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2571 (A vulnerability was found in SourceCodester Employee Task Management S ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2570 (A vulnerability was found in SourceCodester Employee Task Management S ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2569 (A vulnerability was found in SourceCodester Employee Task Management S ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2024-2568 (A vulnerability has been found in heyewei JFinalCMS 5.0.0 and classifi ...)
- TODO: check
+ NOT-FOR-US: JFinalCMS
CVE-2024-2567 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified ...)
- TODO: check
+ NOT-FOR-US: AndroidWeatherApp
CVE-2024-29156 (In OpenStack Murano through 16.0.0, when YAQL before 3.0.0 is used, th ...)
TODO: check
CVE-2024-29154 (danielmiessler fabric through 1.3.0 allows installer/client/gui/static ...)
- TODO: check
+ NOT-FOR-US: danielmiessler/fabric
CVE-2024-29151 (Rocket.Chat.Audit through 5ad78e8 depends on filecachetools, which doe ...)
- TODO: check
+ NOT-FOR-US: Rocket.Chat.Audit
CVE-2024-28745 (Improper export of Android application components issue exists in 'ABE ...)
- TODO: check
+ NOT-FOR-US: ABEMA App for Android
CVE-2024-28128 (Cross-site scripting vulnerability exists in FitNesse releases prior t ...)
- TODO: check
+ NOT-FOR-US: FitNesse
CVE-2024-28125 (FitNesse all releases allows a remote authenticated attacker to execut ...)
- TODO: check
+ NOT-FOR-US: FitNesse
CVE-2024-27974 (Cross-site request forgery vulnerability in FUJIFILM printers which im ...)
- TODO: check
+ NOT-FOR-US: FUJIFILM
CVE-2024-27757 (flusity CMS through 2.45 allows tools/addons_model.php Gallery Name XS ...)
- TODO: check
+ NOT-FOR-US: flusity CMS
CVE-2024-24539 (FusionPBX before 5.2.0 does not validate a session.)
- TODO: check
+ NOT-FOR-US: FusionPBX
CVE-2024-24230 (Komm.One CMS 10.4.2.14 has a Server-Side Template Injection (SSTI) vul ...)
- TODO: check
+ NOT-FOR-US: Komm.One CMS
CVE-2024-23604 (Cross-site scripting vulnerability exists in FitNesse all releases, wh ...)
- TODO: check
+ NOT-FOR-US: FitNesse
CVE-2024-23139 (An Out-Of-Bounds Write Vulnerability in Autodesk FBX Review version 1. ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2024-23138 (A maliciously crafted DWG file when parsed through Autodesk DWG TrueVi ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2024-22475 (Cross-site request forgery vulnerability in multiple printers and scan ...)
- TODO: check
+ NOT-FOR-US: BROTHER
CVE-2024-21824 (Improper authentication vulnerability in exists in multiple printers a ...)
- TODO: check
+ NOT-FOR-US: BROTHER
CVE-2023-52159 (A stack-based buffer overflow vulnerability in gross 0.9.3 through 1.x ...)
TODO: check
CVE-2023-40747 (Directory traversal vulnerability exists in A.K.I Software's PMailServ ...)
- TODO: check
+ NOT-FOR-US: PMailServer2
CVE-2023-40160 (Directory traversal vulnerability exists in Mailing List Search CGI (p ...)
- TODO: check
+ NOT-FOR-US: PMailServer2
CVE-2023-39933 (Insufficient verification vulnerability exists in Broadcast Mail CGI ( ...)
- TODO: check
+ NOT-FOR-US: PMailServer2
CVE-2023-39223 (Stored cross-site scripting vulnerability exists in CGIs included in A ...)
- TODO: check
+ NOT-FOR-US: PMailServer2
CVE-2021-47157 (The Kossy module before 0.60 for Perl allows JSON hijacking because of ...)
TODO: check
CVE-2021-47156 (The Net::IPAddress::Util module before 5.000 for Perl does not properl ...)
@@ -85171,9 +85171,9 @@ CVE-2022-47039
CVE-2022-47038
RESERVED
CVE-2022-47037 (Siklu TG Terragraph devices before 2.1.1 allow attackers to discover v ...)
- TODO: check
+ NOT-FOR-US: Siklu TG Terragraph
CVE-2022-47036 (Siklu TG Terragraph devices before approximately 2.1.1 have a hardcode ...)
- TODO: check
+ NOT-FOR-US: Siklu TG Terragraph
CVE-2022-47035 (Buffer Overflow Vulnerability in D-Link DIR-825 v1.33.0.44ebdd4-embedd ...)
NOT-FOR-US: D-Link
CVE-2022-47034 (A type juggling vulnerability in the component /auth/fn.php of PlaySMS ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68d0e467da4e906942637d607b26c1e134565a79
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68d0e467da4e906942637d607b26c1e134565a79
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240318/b45d3551/attachment.htm>
More information about the debian-security-tracker-commits
mailing list