[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue May 28 09:12:24 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5aeb324b by security tracker role at 2024-05-28T08:12:09+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,27 @@
+CVE-2024-36428 (OrangeHRM 3.3.3 allows admin/viewProjects sortOrder SQL injection.)
+	TODO: check
+CVE-2024-36426 (In TARGIT Decision Suite 23.2.15007.0 before Autumn 2023, the session  ...)
+	TODO: check
+CVE-2024-32944 (Path traversal vulnerability exists in UTAU versions prior to v0.4.19. ...)
+	TODO: check
+CVE-2024-29078 (Incorrect permission assignment for critical resource issue exists in  ...)
+	TODO: check
+CVE-2024-28886 (OS command injection vulnerability exists in UTAU versions prior to v0 ...)
+	TODO: check
+CVE-2024-28880 (Path traversal vulnerability in MosP kintai kanri V4.6.6 and earlier a ...)
+	TODO: check
+CVE-2023-52712 (Various Issues Due To Exposed SMI Handler in AmdPspP2CmboxV2. The firs ...)
+	TODO: check
+CVE-2023-52711 (Various Issues Due To Exposed SMI Handler in AmdPspP2CmboxV2. The firs ...)
+	TODO: check
+CVE-2023-52710 (Huawei Matebook D16(Model: CREM-WXX9, BIOS: v2.26), As the communicati ...)
+	TODO: check
+CVE-2023-52548 (Huawei Matebook D16(Model: CREM-WXX9, BIOS: v2.26) Arbitrary Memory Co ...)
+	TODO: check
+CVE-2023-52547 (Huawei Matebook D16(Model: CREM-WXX9, BIOS: v2.26. Memory Corruption i ...)
+	TODO: check
+CVE-2022-48681 (Some Huawei smart speakers have a memory overflow vulnerability. Succe ...)
+	TODO: check
 CVE-2024-5409 (RhinOS 3.0-1190 is vulnerable to an XSS via the "tamper" parameter in  ...)
 	NOT-FOR-US: RhinOS
 CVE-2024-5408 (Vulnerability in RhinOS 3.0-1190 consisting of an XSS through the "sea ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5aeb324b056f16341b59a6716864a89c01590979

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5aeb324b056f16341b59a6716864a89c01590979
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240528/ec7d2ea1/attachment.htm>

More information about the debian-security-tracker-commits mailing list