[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Nov 23 08:12:18 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cf867e24 by security tracker role at 2024-11-23T08:12:12+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,677 @@
+CVE-2024-9942 (The WPGYM - Wordpress Gym Management System plugin for WordPress is vu ...)
+ TODO: check
+CVE-2024-9941 (The WPGYM - Wordpress Gym Management System plugin for WordPress is vu ...)
+ TODO: check
+CVE-2024-9767 (IrfanView SID File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-9766 (Wacom Center WTabletServicePro Link Following Local Privilege Escalati ...)
+ TODO: check
+CVE-2024-9764 (Tungsten Automation Power PDF PDF File Parsing Use-After-Free Remote C ...)
+ TODO: check
+CVE-2024-9763 (Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Read Info ...)
+ TODO: check
+CVE-2024-9762 (Tungsten Automation Power PDF OXPS File Parsing Out-Of-Bounds Read Inf ...)
+ TODO: check
+CVE-2024-9761 (Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Read Info ...)
+ TODO: check
+CVE-2024-9760 (Tungsten Automation Power PDF PNG File Parsing Out-Of-Bounds Read Info ...)
+ TODO: check
+CVE-2024-9759 (Tungsten Automation Power PDF GIF File Parsing Out-Of-Bounds Read Info ...)
+ TODO: check
+CVE-2024-9758 (Tungsten Automation Power PDF AcroForm Annotation Out-Of-Bounds Read I ...)
+ TODO: check
+CVE-2024-9757 (Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Info ...)
+ TODO: check
+CVE-2024-9755 (Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remo ...)
+ TODO: check
+CVE-2024-9754 (Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Read Info ...)
+ TODO: check
+CVE-2024-9753 (Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Read Info ...)
+ TODO: check
+CVE-2024-9752 (Tungsten Automation Power PDF JPG File Parsing Out-Of-Bounds Read Info ...)
+ TODO: check
+CVE-2024-9751 (Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remo ...)
+ TODO: check
+CVE-2024-9750 (Tungsten Automation Power PDF PNG File Parsing Out-Of-Bounds Read Remo ...)
+ TODO: check
+CVE-2024-9749 (Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Read Info ...)
+ TODO: check
+CVE-2024-9748 (Tungsten Automation Power PDF XPS File Parsing Use-After-Free Remote C ...)
+ TODO: check
+CVE-2024-9747 (Tungsten Automation Power PDF PSD File Parsing Out-Of-Bounds Write Rem ...)
+ TODO: check
+CVE-2024-9746 (Tungsten Automation Power PDF TGA File Parsing Out-Of-Bounds Write Rem ...)
+ TODO: check
+CVE-2024-9745 (Tungsten Automation Power PDF TIF File Parsing Stack-based Buffer Over ...)
+ TODO: check
+CVE-2024-9744 (Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Write Rem ...)
+ TODO: check
+CVE-2024-9743 (Tungsten Automation Power PDF PDF File Parsing Heap-based Buffer Overf ...)
+ TODO: check
+CVE-2024-9742 (Tungsten Automation Power PDF PSD File Parsing Heap-based Buffer Overf ...)
+ TODO: check
+CVE-2024-9741 (Tungsten Automation Power PDF PDF File Parsing Heap-based Buffer Overf ...)
+ TODO: check
+CVE-2024-9740 (Tungsten Automation Power PDF BMP File Parsing Out-Of-Bounds Write Rem ...)
+ TODO: check
+CVE-2024-9739 (Tungsten Automation Power PDF PDF File Parsing Memory Corruption Remot ...)
+ TODO: check
+CVE-2024-9738 (Tungsten Automation Power PDF PDF File Parsing Memory Corruption Remot ...)
+ TODO: check
+CVE-2024-9737 (Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Write Rem ...)
+ TODO: check
+CVE-2024-9736 (Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Write Rem ...)
+ TODO: check
+CVE-2024-9735 (Tungsten Automation Power PDF JPF File Parsing Out-Of-Bounds Write Rem ...)
+ TODO: check
+CVE-2024-9734 (Tungsten Automation Power PDF PDF File Parsing Heap-based Buffer Overf ...)
+ TODO: check
+CVE-2024-9733 (Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Write Rem ...)
+ TODO: check
+CVE-2024-9732 (Tungsten Automation Power PDF XPS File Parsing Use-After-Free Remote C ...)
+ TODO: check
+CVE-2024-9731 (Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code ...)
+ TODO: check
+CVE-2024-9730 (Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code ...)
+ TODO: check
+CVE-2024-9729 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9728 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9727 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9726 (Trimble SketchUp Viewer SKP File Parsing Stack-based Buffer Overflow R ...)
+ TODO: check
+CVE-2024-9725 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9724 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9723 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9722 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9721 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9720 (Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Cod ...)
+ TODO: check
+CVE-2024-9719 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9718 (Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Cod ...)
+ TODO: check
+CVE-2024-9717 (Trimble SketchUp Viewer SKP File Parsing Uninitialized Variable Remote ...)
+ TODO: check
+CVE-2024-9716 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9715 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9714 (Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Ex ...)
+ TODO: check
+CVE-2024-9713 (Trimble SketchUp Pro SKP File Parsing Use-After-Free Remote Code Execu ...)
+ TODO: check
+CVE-2024-9712 (Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution ...)
+ TODO: check
+CVE-2024-9710 (PostHog database_schema Server-Side Request Forgery Information Disclo ...)
+ TODO: check
+CVE-2024-9665 (Zimbra GraphQL Cross-Site Request Forgery Information Disclosure Vulne ...)
+ TODO: check
+CVE-2024-9660 (The School Management System for Wordpress plugin for WordPress is vul ...)
+ TODO: check
+CVE-2024-9659 (The School Management System for Wordpress plugin for WordPress is vul ...)
+ TODO: check
+CVE-2024-9635 (The Checkout with Cash App on WooCommerce plugin for WordPress is vuln ...)
+ TODO: check
+CVE-2024-9511 (The FluentSMTP \u2013 WP SMTP Plugin with Amazon SES, SendGrid, MailGu ...)
+ TODO: check
+CVE-2024-9261 (IrfanView SID File Parsing Stack-based Buffer Overflow Remote Code Exe ...)
+ TODO: check
+CVE-2024-9260 (IrfanView SID File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-9259 (IrfanView SID File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-9258 (IrfanView SID File Parsing Uninitialized Pointer Remote Code Execution ...)
+ TODO: check
+CVE-2024-9257 (Logsign Unified SecOps Platform delete_gsuite_key_file Input Validatio ...)
+ TODO: check
+CVE-2024-9256 (Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vu ...)
+ TODO: check
+CVE-2024-9255 (Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulne ...)
+ TODO: check
+CVE-2024-9254 (Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulne ...)
+ TODO: check
+CVE-2024-9253 (Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vu ...)
+ TODO: check
+CVE-2024-9252 (Foxit PDF Reader AcroForm Use-After-Free Information Disclosure Vulner ...)
+ TODO: check
+CVE-2024-9251 (Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vuln ...)
+ TODO: check
+CVE-2024-9250 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
+ TODO: check
+CVE-2024-9249 (Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Remote Code Execu ...)
+ TODO: check
+CVE-2024-9248 (Foxit PDF Reader PDF File Parsing Out-Of-Bounds Write Remote Code Exec ...)
+ TODO: check
+CVE-2024-9247 (Foxit PDF Reader Annotation Out-Of-Bounds Write Remote Code Execution ...)
+ TODO: check
+CVE-2024-9246 (Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure ...)
+ TODO: check
+CVE-2024-9245 (Foxit PDF Reader Update Service Incorrect Permission Assignment Local ...)
+ TODO: check
+CVE-2024-9244 (Foxit PDF Reader Update Service Incorrect Permission Assignment Local ...)
+ TODO: check
+CVE-2024-9243 (Foxit PDF Reader AcroForm Doc Use-After-Free Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-9223 (The WPDash Notes plugin for WordPress is vulnerable to unauthorized ac ...)
+ TODO: check
+CVE-2024-9114 (FastStone Image Viewer GIF File Parsing Out-Of-Bounds Write Remote Cod ...)
+ TODO: check
+CVE-2024-9113 (FastStone Image Viewer TGA File Parsing Out-Of-Bounds Write Remote Cod ...)
+ TODO: check
+CVE-2024-9112 (FastStone Image Viewer PSD File Parsing Out-Of-Bounds Write Remote Cod ...)
+ TODO: check
+CVE-2024-8849 (PDF-XChange Editor AcroForm Out-Of-Bounds Read Information Disclosure ...)
+ TODO: check
+CVE-2024-8848 (PDF-XChange Editor AcroForm Out-Of-Bounds Read Information Disclosure ...)
+ TODO: check
+CVE-2024-8847 (PDF-XChange Editor Doc Object Out-Of-Bounds Read Remote Code Execution ...)
+ TODO: check
+CVE-2024-8846 (PDF-XChange Editor TIF File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8845 (PDF-XChange Editor PDF File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8844 (PDF-XChange Editor PDF File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8843 (PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8842 (PDF-XChange Editor RTF File Parsing Uninitialized Variable Remote Code ...)
+ TODO: check
+CVE-2024-8841 (PDF-XChange Editor PDF File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8840 (PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Remote Code Exe ...)
+ TODO: check
+CVE-2024-8839 (PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8838 (PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Remote Code Exe ...)
+ TODO: check
+CVE-2024-8837 (PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Remote Code Exe ...)
+ TODO: check
+CVE-2024-8836 (PDF-XChange Editor TIF File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8835 (PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8834 (PDF-XChange Editor TIF File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8833 (PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Remote Code Exe ...)
+ TODO: check
+CVE-2024-8832 (PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8831 (PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Remote Code Exe ...)
+ TODO: check
+CVE-2024-8830 (PDF-XChange Editor XPS File Parsing Out-Of-Bounds Write Remote Code Ex ...)
+ TODO: check
+CVE-2024-8829 (PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8828 (PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8827 (PDF-XChange Editor PPM File Parsing Out-Of-Bounds Write Remote Code Ex ...)
+ TODO: check
+CVE-2024-8826 (PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Remote Code Exe ...)
+ TODO: check
+CVE-2024-8825 (PDF-XChange Editor PDF File Parsing Out-Of-Bounds Read Remote Code Exe ...)
+ TODO: check
+CVE-2024-8824 (PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8823 (PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8822 (PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8821 (PDF-XChange Editor U3D File Parsing Use-After-Free Information Disclos ...)
+ TODO: check
+CVE-2024-8820 (PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8819 (PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Dis ...)
+ TODO: check
+CVE-2024-8818 (PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Executi ...)
+ TODO: check
+CVE-2024-8817 (PDF-XChange Editor U3D File Parsing Out-Of-Bounds Write Remote Code Ex ...)
+ TODO: check
+CVE-2024-8816 (PDF-XChange Editor U3D File Parsing Use-After-Free Information Disclos ...)
+ TODO: check
+CVE-2024-8815 (PDF-XChange Editor U3D File Parsing Memory Corruption Remote Code Exec ...)
+ TODO: check
+CVE-2024-8814 (PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Exe ...)
+ TODO: check
+CVE-2024-8813 (PDF-XChange Editor U3D File Parsing Out-Of-Bounds Write Remote Code Ex ...)
+ TODO: check
+CVE-2024-8812 (PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Exe ...)
+ TODO: check
+CVE-2024-8811 (WinZip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows ...)
+ TODO: check
+CVE-2024-8809 (Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnera ...)
+ TODO: check
+CVE-2024-8808 (Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnera ...)
+ TODO: check
+CVE-2024-8807 (Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnera ...)
+ TODO: check
+CVE-2024-8806 (Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnera ...)
+ TODO: check
+CVE-2024-8360 (Visteon Infotainment REFLASH_DDU_ExtractFile Command Injection Remote ...)
+ TODO: check
+CVE-2024-8359 (Visteon Infotainment REFLASH_DDU_FindFile Command Injection Remote Cod ...)
+ TODO: check
+CVE-2024-8358 (Visteon Infotainment UPDATES_ExtractFile Command Injection Remote Code ...)
+ TODO: check
+CVE-2024-8357 (Visteon Infotainment App SoC Missing Immutable Root of Trust in Hardwa ...)
+ TODO: check
+CVE-2024-8356 (Visteon Infotainment VIP MCU Code Insufficient Validation of Data Auth ...)
+ TODO: check
+CVE-2024-8355 (Visteon Infotainment System DeviceManager iAP Serial Number SQL Inject ...)
+ TODO: check
+CVE-2024-8025 (Nikon NEF Codec Thumbnail Provider NRW File Parsing Heap-based Buffer ...)
+ TODO: check
+CVE-2024-7565 (SMARTBEAR SoapUI unpackageAll Directory Traversal Remote Code Executio ...)
+ TODO: check
+CVE-2024-7511 (Trimble SketchUp Pro SKP File Parsing Out-Of-Bounds Read Information D ...)
+ TODO: check
+CVE-2024-7510 (Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution ...)
+ TODO: check
+CVE-2024-7509 (Trimble SketchUp SKP File Parsing Stack-based Buffer Overflow Remote C ...)
+ TODO: check
+CVE-2024-7508 (Trimble SketchUp Viewer SKP File Parsing Heap-based Buffer Overflow Re ...)
+ TODO: check
+CVE-2024-7392 (ChargePoint Home Flex Bluetooth Low Energy Denial-of-Service Vulnerabi ...)
+ TODO: check
+CVE-2024-7391 (ChargePoint Home Flex Bluetooth Low Energy Information Disclosure Vuln ...)
+ TODO: check
+CVE-2024-7352 (PDF-XChange Editor PDF File Parsing Out-Of-Bounds Write Remote Code Ex ...)
+ TODO: check
+CVE-2024-7253 (NoMachine Uncontrolled Search Path Element Local Privilege Escalation ...)
+ TODO: check
+CVE-2024-7245 (Panda Security Dome VPN Incorrect Permission Assignment Local Privileg ...)
+ TODO: check
+CVE-2024-7244 (Panda Security Dome VPN DLL Hijacking Local Privilege Escalation Vulne ...)
+ TODO: check
+CVE-2024-7243 (Panda Security Dome Link Following Local Privilege Escalation Vulnerab ...)
+ TODO: check
+CVE-2024-7242 (Panda Security Dome Link Following Local Privilege Escalation Vulnerab ...)
+ TODO: check
+CVE-2024-7241 (Panda Security Dome Link Following Local Privilege Escalation Vulnerab ...)
+ TODO: check
+CVE-2024-7240 (F-Secure Total Link Following Local Privilege Escalation Vulnerability ...)
+ TODO: check
+CVE-2024-7239 (VIPRE Advanced Security Link Following Local Privilege Escalation Vuln ...)
+ TODO: check
+CVE-2024-7238 (VIPRE Advanced Security SBAMSvc Link Following Local Privilege Escalat ...)
+ TODO: check
+CVE-2024-7237 (AVG AntiVirus Free AVGSvc Link Following Local Privilege Escalation Vu ...)
+ TODO: check
+CVE-2024-7236 (AVG AntiVirus Free icarus Arbitrary File Creation Denial of Service Vu ...)
+ TODO: check
+CVE-2024-7235 (AVG AntiVirus Free Link Following Denial-of-Service Vulnerability. Thi ...)
+ TODO: check
+CVE-2024-7234 (AVG AntiVirus Free AVGSvc Link Following Local Privilege Escalation Vu ...)
+ TODO: check
+CVE-2024-7233 (Avast Free Antivirus AvastSvc Link Following Local Privilege Escalatio ...)
+ TODO: check
+CVE-2024-7232 (Avast Free Antivirus AvastSvc Link Following Local Privilege Escalatio ...)
+ TODO: check
+CVE-2024-7231 (Avast Cleanup Premium Link Following Local Privilege Escalation Vulner ...)
+ TODO: check
+CVE-2024-7230 (Avast Cleanup Premium Link Following Local Privilege Escalation Vulner ...)
+ TODO: check
+CVE-2024-7229 (Avast Cleanup Premium Link Following Local Privilege Escalation Vulner ...)
+ TODO: check
+CVE-2024-7228 (Avast Free Antivirus Link Following Denial-of-Service Vulnerability. T ...)
+ TODO: check
+CVE-2024-7227 (Avast Free Antivirus AvastSvc Link Following Local Privilege Escalatio ...)
+ TODO: check
+CVE-2024-6871 (G DATA Total Security Incorrect Permission Assignment Local Privilege ...)
+ TODO: check
+CVE-2024-6822 (IrfanView CIN File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-6821 (IrfanView CIN File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-6820 (IrfanView AWD File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-6819 (IrfanView PSP File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-6818 (IrfanView PSP File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-6817 (IrfanView PSP File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-6816 (IrfanView PSP File Parsing Heap-based Buffer Overflow Remote Code Exec ...)
+ TODO: check
+CVE-2024-6815 (IrfanView RLE File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-6260 (Malwarebytes Antimalware Link Following Local Privilege Escalation Vul ...)
+ TODO: check
+CVE-2024-6249 (Wyze Cam v3 TCP Traffic Handling Stack-Based Buffer Overflow Remote Co ...)
+ TODO: check
+CVE-2024-6248 (Wyze Cam v3 Cloud Infrastructure Improper Authentication Remote Code E ...)
+ TODO: check
+CVE-2024-6247 (Wyze Cam v3 Wi-Fi SSID OS Command Injection Remote Code Execution Vuln ...)
+ TODO: check
+CVE-2024-6246 (Wyze Cam v3 Realtek Wi-Fi Driver Heap-Based Buffer Overflow Remote Cod ...)
+ TODO: check
+CVE-2024-6233 (Check Point ZoneAlarm Extreme Security Link Following Local Privilege ...)
+ TODO: check
+CVE-2024-5877 (IrfanView PIC File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-5876 (IrfanView PSP File Parsing Heap-based Buffer Overflow Remote Code Exec ...)
+ TODO: check
+CVE-2024-5875 (IrfanView SHP File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-5874 (IrfanView PNT File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-5722 (Logsign Unified SecOps Platform HTTP API Hard-coded Cryptographic Key ...)
+ TODO: check
+CVE-2024-5721 (Logsign Unified SecOps Platform Missing Authentication Remote Code Exe ...)
+ TODO: check
+CVE-2024-5720 (Logsign Unified SecOps Platform Command Injection Remote Code Executio ...)
+ TODO: check
+CVE-2024-5719 (Logsign Unified SecOps Platform Command Injection Remote Code Executio ...)
+ TODO: check
+CVE-2024-5718 (Logsign Unified SecOps Platform Missing Authentication Remote Code Exe ...)
+ TODO: check
+CVE-2024-5717 (Logsign Unified SecOps Platform Command Injection Remote Code Executio ...)
+ TODO: check
+CVE-2024-5716 (Logsign Unified SecOps Platform Authentication Bypass Vulnerability. T ...)
+ TODO: check
+CVE-2024-5581 (Allegra unzipFile Directory Traversal Remote Code Execution Vulnerabil ...)
+ TODO: check
+CVE-2024-5580 (Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code E ...)
+ TODO: check
+CVE-2024-5579 (Allegra renderFieldMatch Deserialization of Untrusted Data Remote Code ...)
+ TODO: check
+CVE-2024-5513 (Kofax Power PDF JP2 File Parsing Out-Of-Bounds Write Remote Code Execu ...)
+ TODO: check
+CVE-2024-5512 (Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclo ...)
+ TODO: check
+CVE-2024-5511 (Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execut ...)
+ TODO: check
+CVE-2024-5510 (Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execut ...)
+ TODO: check
+CVE-2024-52034 (An OS Command Injection vulnerability exists within myPRO Manager. A p ...)
+ TODO: check
+CVE-2024-50054 (The back-end does not sufficiently verify the user-controlled filename ...)
+ TODO: check
+CVE-2024-47407 (A parameter within a command does not properly validate input within m ...)
+ TODO: check
+CVE-2024-47138 (The administrative interface listens by default on all interfaces on a ...)
+ TODO: check
+CVE-2024-45369 (The web application uses a weak authentication mechanism to verify tha ...)
+ TODO: check
+CVE-2024-41761 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5 ...)
+ TODO: check
+CVE-2024-30377 (G DATA Total Security Scan Server Link Following Local Privilege Escal ...)
+ TODO: check
+CVE-2024-30376 (Famatech Advanced IP Scanner Uncontrolled Search Path Element Local Pr ...)
+ TODO: check
+CVE-2024-30372 (Allegra getLinkText Server-Side Template Injection Remote Code Executi ...)
+ TODO: check
+CVE-2024-1868 (G DATA Total Security Link Following Local Privilege Escalation Vulner ...)
+ TODO: check
+CVE-2024-1867 (G DATA Total Security Link Following Local Privilege Escalation Vulner ...)
+ TODO: check
+CVE-2024-11630 (A vulnerability has been found in E-Lins H685, H685f, H700, H720, H750 ...)
+ TODO: check
+CVE-2024-11619 (A vulnerability, which was classified as problematic, has been found i ...)
+ TODO: check
+CVE-2024-11612 (7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vu ...)
+ TODO: check
+CVE-2024-11586 (Ubuntu's implementation of pulseaudio can be crashed by a malicious pr ...)
+ TODO: check
+CVE-2024-11581 (Luxion KeyShot JT File Parsing Out-Of-Bounds Read Remote Code Executio ...)
+ TODO: check
+CVE-2024-11580 (Luxion KeyShot ABC File Parsing Heap-based Buffer Overflow Remote Code ...)
+ TODO: check
+CVE-2024-11579 (Luxion KeyShot OBJ File Parsing Out-Of-Bounds Write Remote Code Execut ...)
+ TODO: check
+CVE-2024-11578 (Luxion KeyShot 3DS File Parsing Stack-based Buffer Overflow Remote Cod ...)
+ TODO: check
+CVE-2024-11577 (Luxion KeyShot SKP File Parsing Out-Of-Bounds Write Remote Code Execut ...)
+ TODO: check
+CVE-2024-11576 (Luxion KeyShot 3DS File Parsing Heap-based Buffer Overflow Remote Code ...)
+ TODO: check
+CVE-2024-11575 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11574 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11573 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11572 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11571 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11570 (IrfanView DXF File Parsing Use-After-Free Remote Code Execution Vulner ...)
+ TODO: check
+CVE-2024-11569 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11568 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11567 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11566 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11565 (IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11564 (IrfanView DWG File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11563 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11562 (IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11561 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11560 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11559 (IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11558 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11557 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11556 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11555 (IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11554 (IrfanView DWG File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11553 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11552 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11551 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11550 (IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11549 (IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11548 (IrfanView DWG File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11547 (IrfanView DWG File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11546 (IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11545 (IrfanView DXF File Parsing Use-After-Free Remote Code Execution Vulner ...)
+ TODO: check
+CVE-2024-11544 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11543 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11542 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11541 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11540 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11539 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11538 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11537 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11536 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11535 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11534 (IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11533 (IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11532 (IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11531 (IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11530 (IrfanView CGM File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11529 (IrfanView DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11528 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11527 (IrfanView DWG File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11526 (IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11525 (IrfanView DXF File Parsing Use-After-Free Remote Code Execution Vulner ...)
+ TODO: check
+CVE-2024-11524 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11523 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11522 (IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11521 (IrfanView DJVU File Parsing Use-After-Free Remote Code Execution Vulne ...)
+ TODO: check
+CVE-2024-11520 (IrfanView ARW File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11519 (IrfanView RLE File Parsing Memory Corruption Remote Code Execution Vul ...)
+ TODO: check
+CVE-2024-11518 (IrfanView RLE File Parsing Heap-based Buffer Overflow Remote Code Exec ...)
+ TODO: check
+CVE-2024-11517 (IrfanView JPM File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11516 (IrfanView JPM File Parsing Heap-based Buffer Overflow Remote Code Exec ...)
+ TODO: check
+CVE-2024-11515 (IrfanView JPM File Parsing Out-Of-Bounds Write Remote Code Execution V ...)
+ TODO: check
+CVE-2024-11514 (IrfanView ECW File Parsing Heap-based Buffer Overflow Remote Code Exec ...)
+ TODO: check
+CVE-2024-11513 (IrfanView ECW File Parsing Heap-based Buffer Overflow Remote Code Exec ...)
+ TODO: check
+CVE-2024-11512 (IrfanView WBZ Plugin WB1 File Parsing Out-Of-Bounds Write Remote Code ...)
+ TODO: check
+CVE-2024-11511 (IrfanView XCF Plugin XCF File Parsing Heap-based Buffer Overflow Remot ...)
+ TODO: check
+CVE-2024-11510 (IrfanView WBZ plugin WB1 File Parsing Stack-based Buffer Overflow Remo ...)
+ TODO: check
+CVE-2024-11509 (IrfanView SVG File Parsing Heap-based Buffer Overflow Remote Code Exec ...)
+ TODO: check
+CVE-2024-11508 (IrfanView DXF File Parsing Type Confusion Remote Code Execution Vulner ...)
+ TODO: check
+CVE-2024-11507 (IrfanView DXF File Parsing Type Confusion Remote Code Execution Vulner ...)
+ TODO: check
+CVE-2024-11506 (IrfanView DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vu ...)
+ TODO: check
+CVE-2024-11463 (The DeBounce Email Validator plugin for WordPress is vulnerable to Ref ...)
+ TODO: check
+CVE-2024-11446 (The Chessgame Shizzle plugin for WordPress is vulnerable to Reflected ...)
+ TODO: check
+CVE-2024-11426 (The AutoListicle: Automatically Update Numbered List Articles plugin f ...)
+ TODO: check
+CVE-2024-11415 (The WP-Orphanage Extended plugin for WordPress is vulnerable to Cross- ...)
+ TODO: check
+CVE-2024-11408 (The Slotti Ajanvaraus plugin for WordPress is vulnerable to Stored Cro ...)
+ TODO: check
+CVE-2024-11394 (Hugging Face Transformers Trax Model Deserialization of Untrusted Data ...)
+ TODO: check
+CVE-2024-11393 (Hugging Face Transformers MaskFormer Model Deserialization of Untruste ...)
+ TODO: check
+CVE-2024-11392 (Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Dat ...)
+ TODO: check
+CVE-2024-11387 (The Easy Liveblogs plugin for WordPress is vulnerable to Stored Cross- ...)
+ TODO: check
+CVE-2024-11362 (The Payments Plugin and Checkout Plugin for WooCommerce: Stripe, PayPa ...)
+ TODO: check
+CVE-2024-11361 (The PDF Invoices & Packing Slips Generator for WooCommerce plugin for ...)
+ TODO: check
+CVE-2024-11332 (The HIPAA Compliant Forms with Drag\u2019n\u2019Drop HIPAA Form Builde ...)
+ TODO: check
+CVE-2024-11330 (The Custom CSS, JS & PHP plugin for WordPress is vulnerable to Reflect ...)
+ TODO: check
+CVE-2024-11298
+ REJECTED
+CVE-2024-11296
+ REJECTED
+CVE-2024-11265 (The Increase Maximum Upload File Size | Increase Execution Time plugin ...)
+ TODO: check
+CVE-2024-11188 (The Formidable Forms \u2013 Contact Form Plugin, Survey, Quiz, Payment ...)
+ TODO: check
+CVE-2024-10961 (The Social Login plugin for WordPress is vulnerable to authentication ...)
+ TODO: check
+CVE-2024-10886 (The Tribute Testimonials \u2013 WordPress Testimonial Grid/Slider plug ...)
+ TODO: check
+CVE-2024-10880 (The JobBoardWP \u2013 Job Board Listings and Submissions plugin for Wo ...)
+ TODO: check
+CVE-2024-10874 (The Quotes llama plugin for WordPress is vulnerable to Stored Cross-Si ...)
+ TODO: check
+CVE-2024-10873 (The LA-Studio Element Kit for Elementor plugin for WordPress is vulner ...)
+ TODO: check
+CVE-2024-10869 (The WordPress Brute Force Protection \u2013 Stop Brute Force Attacks p ...)
+ TODO: check
+CVE-2024-10868 (The Enter Addons \u2013 Ultimate Template Builder for Elementor plugin ...)
+ TODO: check
+CVE-2024-10813 (The Product Table for WooCommerce by CodeAstrology (wooproducttable.co ...)
+ TODO: check
+CVE-2024-10803 (The MP3 Sticky Player plugin for WordPress is vulnerable to Directory ...)
+ TODO: check
+CVE-2024-10606 (The WP Travel Engine \u2013 Tour Booking Plugin \u2013 Tour Operator S ...)
+ TODO: check
+CVE-2024-10537 (The WP User Manager \u2013 User Profile Builder & Membership plugin fo ...)
+ TODO: check
+CVE-2024-10216 (The WP User Manager \u2013 User Profile Builder & Membership plugin fo ...)
+ TODO: check
+CVE-2024-10116 (The Twitter Follow Button plugin for WordPress is vulnerable to Stored ...)
+ TODO: check
+CVE-2024-0138 (NVIDIA Base Command Manager contains a missing authentication vulnerab ...)
+ TODO: check
+CVE-2024-0122 (NVIDIA Delegated Licensing Service for all appliance platforms contain ...)
+ TODO: check
+CVE-2023-52335 (Advantech iView ConfigurationServlet SQL Injection Information Disclos ...)
+ TODO: check
+CVE-2023-52334 (Allegra downloadAttachmentGlobal Directory Traversal Information Discl ...)
+ TODO: check
+CVE-2023-52333 (Allegra saveFile Directory Traversal Remote Code Execution Vulnerabili ...)
+ TODO: check
+CVE-2023-52332 (Allegra serveMathJaxLibraries Directory Traversal Information Disclosu ...)
+ TODO: check
+CVE-2023-51648 (Allegra getFileContentAsString Directory Traversal Information Disclos ...)
+ TODO: check
+CVE-2023-51647 (Allegra saveInlineEdit Directory Traversal Remote Code Execution Vulne ...)
+ TODO: check
+CVE-2023-51646 (Allegra uploadSimpleFile Directory Traversal Remote Code Execution Vul ...)
+ TODO: check
+CVE-2023-51645 (Allegra unzipFile Directory Traversal Remote Code Execution Vulnerabil ...)
+ TODO: check
+CVE-2023-51644 (Allegra SiteConfigAction Improper Access Control Remote Code Execution ...)
+ TODO: check
+CVE-2023-51643 (Allegra uploadFile Directory Traversal Remote Code Execution Vulnerabi ...)
+ TODO: check
+CVE-2023-51642 (Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code E ...)
+ TODO: check
+CVE-2023-51641 (Allegra renderFieldMatch Deserialization of Unstrusted Data Remote Cod ...)
+ TODO: check
+CVE-2023-51640 (Allegra extarctZippedFile Directory Traversal Remote Code Execution Vu ...)
+ TODO: check
+CVE-2023-51639 (Allegra downloadExportedChart Directory Traversal Authentication Bypas ...)
+ TODO: check
+CVE-2023-51638 (Allegra Hard-coded Credentials Authentication Bypass Vulnerability. Th ...)
+ TODO: check
+CVE-2023-51635 (NETGEAR RAX30 fing_dil Stack-based Buffer Overflow Remote Code Executi ...)
+ TODO: check
+CVE-2023-51634 (NETGEAR RAX30 Improper Certificate Validation Remote Code Execution Vu ...)
+ TODO: check
+CVE-2023-39470 (PaperCut NG print.script.sandboxed Exposed Dangerous Function Remote C ...)
+ TODO: check
CVE-2024-7882 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
NOT-FOR-US: Special Minds Design and Software e-Commerce
CVE-2024-7837 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
@@ -650,7 +1324,7 @@ CVE-2024-10126 (Local File Inclusion vulnerability in M-Files Server in versions
NOT-FOR-US: M-Files
CVE-2024-10094 (Pega Platform versions 6.x to Infinity 24.1.1 are affected by an issue ...)
NOT-FOR-US: Pega Platform
-CVE-2024-11477
+CVE-2024-11477 (7-Zip Zstandard Decompression Integer Underflow Remote Code Execution ...)
- 7zip 24.07+dfsg-1
[bookworm] - 7zip <not-affected> (Vulnerable code introduced in 24.01)
- p7zip <not-affected> (Vulnerable code not present)
@@ -16700,7 +17374,7 @@ CVE-2022-49038 (Inclusion of functionality from untrusted control sphere vulnera
NOT-FOR-US: Synology
CVE-2022-49037 (Insertion of sensitive information into log file vulnerability in prox ...)
NOT-FOR-US: Synology
-CVE-2024-8805 [Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE]
+CVE-2024-8805 (BlueZ HID over GATT Profile Improper Access Control Remote Code Execut ...)
- linux 6.11.4-1
[bookworm] - linux 6.1.115-1
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1229/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf867e242c993f52d0de87d888301f01a15ec975
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf867e242c993f52d0de87d888301f01a15ec975
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241123/429882a0/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list