[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Oct 3 09:24:56 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
da6029f8 by Salvatore Bonaccorso at 2024-10-03T10:24:33+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,23 +1,23 @@
CVE-2024-8352 (The Social Web Suite \u2013 Social Media Auto Post, Social Media Auto ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8159 (Deep Freeze 9.00.020.5760 is vulnerable to an out-of-bounds read vulne ...)
- TODO: check
+ NOT-FOR-US: Deep Freeze
CVE-2024-47616 (Pomerium is an identity and context-aware access proxy. The Pomerium d ...)
TODO: check
CVE-2024-47136 (Out-of-bounds read vulnerability exists in Kostac PLC Programming Soft ...)
- TODO: check
+ NOT-FOR-US: Kostac PLC Programming Software
CVE-2024-47135 (Stack-based buffer overflow vulnerability exists in Kostac PLC Program ...)
- TODO: check
+ NOT-FOR-US: Kostac PLC Programming Software
CVE-2024-47134 (Out-of-bounds write vulnerability exists in Kostac PLC Programming Sof ...)
- TODO: check
+ NOT-FOR-US: Kostac PLC Programming Software
CVE-2024-45519 (The postjournal service in Zimbra Collaboration (ZCS) before 8.8.15 Pa ...)
- TODO: check
+ NOT-FOR-US: Zimbra
CVE-2024-42504 (A security vulnerability in HPE IceWall Agent products could be exploi ...)
- TODO: check
+ NOT-FOR-US: HPE IceWall Agent products
CVE-2024-28888 (A use-after-free vulnerability exists in the way Foxit Reade 2024.1.0. ...)
- TODO: check
+ NOT-FOR-US: Foxit Reader
CVE-2024-24117 (Insecure Permissions vulnerability in Ruijie RG-NBS2009G-P RGOS v.10.4 ...)
- TODO: check
+ NOT-FOR-US: Ruijie
CVE-2024-9441 (The Linear eMerge e3-Series through version 1.00-07 is vulnerable to a ...)
NOT-FOR-US: Linear eMerge e3-Series
CVE-2024-9440 (Slim Select 2.0 versions through 2.9.0 are affected by a potential cro ...)
@@ -97,73 +97,73 @@ CVE-2024-33210 (A cross-site scripting (XSS) vulnerability has been identified i
CVE-2024-33209 (FlatPress v1.3 is vulnerable to Cross Site Scripting (XSS). An attacke ...)
NOT-FOR-US: FlatPress
CVE-2024-24122 (A remote code execution vulnerability in the project management of Wan ...)
- TODO: check
+ NOT-FOR-US: Wanxing Technology's Yitu project
CVE-2024-24116 (An issue in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release(9736) allows ...)
NOT-FOR-US: Ruijie
CVE-2024-20524 (A vulnerability in the web-based management interface of Cisco Small B ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20523 (A vulnerability in the web-based management interface of Cisco Small B ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20522 (A vulnerability in the web-based management interface of Cisco Small B ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20521 (A vulnerability in the web-based management interface of Cisco Small B ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20520 (A vulnerability in the web-based management interface of Cisco Small B ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20519 (A vulnerability in the web-based management interface of Cisco Small B ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20518 (A vulnerability in the web-based management interface of Cisco Small B ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20517 (A vulnerability in the web-based management interface of Cisco Small B ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20516 (A vulnerability in the web-based management interface of Cisco Small B ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20515 (A vulnerability in the web-based management interface of Cisco Identit ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20513 (A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20509 (A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20502 (A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20501 (Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco M ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20500 (A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20499 (Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco M ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20498 (Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco M ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20492 (A vulnerability in the restricted shell of Cisco Expressway Series cou ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20491 (A vulnerability in a logging function of Cisco Nexus Dashboard Insight ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20490 (A vulnerability in a logging function of Cisco Nexus Dashboard Fabric ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20477 (A vulnerability in a specific REST API endpoint of Cisco NDFC could al ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20470 (A vulnerability in the web-based management interface of Cisco Small B ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20449 (A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC) coul ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20448 (A vulnerability in the Cisco Nexus Dashboard Fabric Controller (NDFC) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20444 (A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), for ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20442 (A vulnerability in the REST API endpoints of Cisco Nexus Dashboard cou ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20441 (A vulnerability in a specific REST API endpoint of Cisco NDFC could al ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20438 (A vulnerability in the REST API endpoints of Cisco NDFC could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20432 (A vulnerability in the REST API and web UI of Cisco Nexus Dashboard Fa ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20393 (A vulnerability in the web-based management interface of Cisco Small B ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20385 (A vulnerability in the SSL/TLS implementation of Cisco Nexus Dashboard ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-20365 (A vulnerability in the Redfish API of Cisco UCS B-Series, Cisco UCS Ma ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-XXXX [znuny zsa-2024-05]
- znuny 6.5.11-1
[bookworm] - znuny <no-dsa> (Non-free not supported)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/da6029f804b9c5e3cadb9a5e3e126f447d934713
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/da6029f804b9c5e3cadb9a5e3e126f447d934713
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241003/65d4f0cf/attachment.htm>
More information about the debian-security-tracker-commits
mailing list