[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Oct 10 11:06:16 BST 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
055e2cad by Moritz Muehlenhoff at 2024-10-10T12:05:49+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,65 +1,65 @@
CVE-2024-9802 (The conformance validation endpoint is public so everybody can verify ...)
- TODO: check
+ NOT-FOR-US: Zowe
CVE-2024-9798 (The health endpoint is public so everybody can see a list of all servi ...)
- TODO: check
+ NOT-FOR-US: Zowe
CVE-2024-9796 (The WP-Advanced-Search WordPress plugin before 3.3.9.2 does not saniti ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9781 (AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4. ...)
TODO: check
CVE-2024-9780 (ITS dissector crash in Wireshark 4.4.0 allows denial of service via pa ...)
TODO: check
CVE-2024-9685 (The Notification for Telegram plugin for WordPress is vulnerable to un ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9581 (The Shortcodes AnyWhere plugin for WordPress is vulnerable to arbitrar ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9522 (The WP Users Masquerade plugin for WordPress is vulnerable to authenti ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9520 (The UserPlus plugin for WordPress is vulnerable to unauthorized access ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9519 (The UserPlus plugin for WordPress is vulnerable to unauthorized modifi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9518 (The UserPlus plugin for WordPress is vulnerable to privilege escalatio ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9457 (The WP Builder plugin for WordPress is vulnerable to Stored Cross-Site ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9377 (The Products, Order & Customers Export for WooCommerce plugin for Word ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9205 (The Maximum Products per User for WooCommerce plugin for WordPress is ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9156 (The TI WooCommerce Wishlist WordPress plugin through 2.8.2 is vulnerab ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9074 (The Advanced Blocks Pro plugin for WordPress is vulnerable to Stored C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9072 (The GDPR-Extensions-com \u2013 Consent Manager plugin for WordPress is ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9067 (The Youzify \u2013 BuddyPress Community, User Profile, Social Network ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9066 (The Marketing and SEO Booster plugin for WordPress is vulnerable to St ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9065 (The WP Helper Premium plugin for WordPress is vulnerable to unauthoriz ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9064 (The Elementor Inline SVG plugin for WordPress is vulnerable to Stored ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9057 (The Curator.io: Show all your social media posts in a beautiful feed. ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9022 (The TS Poll \u2013 Survey, Versus Poll, Image Poll, Video Poll plugin ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8987 (The Youzify \u2013 BuddyPress Community, User Profile, Social Network ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8729 (The Easy Social Share Buttons plugin for WordPress is vulnerable to Re ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8513 (The QA Analytics \u2013 Web Analytics Tool with Heatmaps & Session Rep ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8477 (The Newsletter, SMTP, Email marketing and Subscribe forms by Brevo (fo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8264 (Fortra's Robot Schedule Enterprise Agent prior to version 3.05 writes ...)
- TODO: check
+ NOT-FOR-US: Fortra
CVE-2024-7049 (In version v0.3.8 of open-webui/open-webui, a vulnerability exists whe ...)
- TODO: check
+ NOT-FOR-US: open-webui
CVE-2024-7048 (In version v0.3.8 of open-webui, an improper privilege management vuln ...)
- TODO: check
+ NOT-FOR-US: open-webui
CVE-2024-6747 (Information leakage in mknotifyd in Checkmk before 2.3.0p18, 2.2.0p36, ...)
- TODO: check
+ - check-mk <removed>
CVE-2024-48958 (execute_filter_delta in archive_read_support_format_rar.c in libarchiv ...)
TODO: check
CVE-2024-48957 (execute_filter_audio in archive_read_support_format_rar.c in libarchiv ...)
@@ -67,9 +67,9 @@ CVE-2024-48957 (execute_filter_audio in archive_read_support_format_rar.c in lib
CVE-2024-48949 (The verify function in lib/elliptic/eddsa/index.js in the Elliptic pac ...)
TODO: check
CVE-2024-48942 (The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbuc ...)
- TODO: check
+ NOT-FOR-US: Jira plugin
CVE-2024-48941 (The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbuc ...)
- TODO: check
+ NOT-FOR-US: Jira plugin
CVE-2024-48933 (A cross-site scripting (XSS) vulnerability in LemonLDAP::NG before 2.1 ...)
TODO: check
CVE-2024-9680 (An attacker was able to achieve code execution in the content process ...)
@@ -281,15 +281,15 @@ CVE-2024-47410 (Animate versions 23.0.7, 24.0.4 and earlier are affected by a St
CVE-2024-47334 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
NOT-FOR-US: WordPress plugin
CVE-2024-47196 (A vulnerability has been identified in ModelSim (All versions < V2024. ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2024-47195 (A vulnerability has been identified in ModelSim (All versions < V2024. ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2024-47194 (A vulnerability has been identified in ModelSim (All versions < V2024. ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2024-47161 (In JetBrains TeamCity before 2024.07.3 password could be exposed via S ...)
NOT-FOR-US: JetBrains TeamCity
CVE-2024-47046 (A vulnerability has been identified in Simcenter Nastran 2306 (All ver ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2024-47011 (Path Traversal in Ivanti Avalanche before version 6.4.5 allows a remot ...)
NOT-FOR-US: Ivanti
CVE-2024-47010 (Path Traversal in Ivanti Avalanche before version 6.4.5 allows a remot ...)
@@ -301,297 +301,297 @@ CVE-2024-47008 (Server-side request forgery in Ivanti Avalanche before version 6
CVE-2024-47007 (A NULL pointer dereference in WLAvalancheService.exe of Ivanti Avalanc ...)
NOT-FOR-US: Ivanti
CVE-2024-46887 (The web server of affected devices do not properly authenticate user r ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2024-46886 (The web server of affected devices does not properly validate input th ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2024-46871 (In the Linux kernel, the following vulnerability has been resolved: d ...)
TODO: check
CVE-2024-46870 (In the Linux kernel, the following vulnerability has been resolved: d ...)
TODO: check
CVE-2024-46539 (Insecure permissions in the Bluetooth Low Energy (BLE) component of Fi ...)
- TODO: check
+ NOT-FOR-US: Fire-Boltt Artillery Smart Watch
CVE-2024-46410 (PublicCMS V4.0.202406.d was discovered to contain a cross-site scripti ...)
- TODO: check
+ NOT-FOR-US: PublicCMS
CVE-2024-46316 (DrayTek Vigor3900 v1.5.1.6 was discovered to contain a command injecti ...)
- TODO: check
+ NOT-FOR-US: DrayTek
CVE-2024-46307 (A loop hole in the payment logic of Sparkshop v1.16 allows attackers t ...)
- TODO: check
+ NOT-FOR-US: Sparkshop
CVE-2024-46304 (A Buffer Overflow vulnerability in libcoap v4.3.5-rc2 and below allows ...)
TODO: check
CVE-2024-46292 (A buffer overflow in modsecurity v3.0.12 allows attackers to cause a D ...)
TODO: check
CVE-2024-46237 (PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul Hospital Management System
CVE-2024-45918 (Fujian Kelixin Communication Command and Dispatch Platform <=7.6.6.439 ...)
- TODO: check
+ NOT-FOR-US: Fujian Kelixin
CVE-2024-45880 (A command injection vulnerability exists in Motorola CX2L router v1.0. ...)
- TODO: check
+ NOT-FOR-US: Motorola
CVE-2024-45746 (An issue was discovered in Trusted Firmware-M through 2.1.0. User prov ...)
TODO: check
CVE-2024-45476 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45475 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45474 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45473 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45472 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45471 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45470 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45469 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45468 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45467 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45466 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45465 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45464 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45463 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
- TODO: check
+ NOT-FOR-US: Tecnomatix
CVE-2024-45330 (A use of externally-controlled format string in Fortinet FortiAnalyzer ...)
- TODO: check
+ NOT-FOR-US: Fortinet
CVE-2024-45179 (An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 ...)
- TODO: check
+ NOT-FOR-US: za-internet C-MOR Video Surveillance
CVE-2024-45152 (Substance3D - Stager versions 3.0.3 and earlier are affected by an out ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45150 (Dimension versions 4.0.3 and earlier are affected by an out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45146 (Dimension versions 4.0.3 and earlier are affected by a Use After Free ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45145 (Lightroom Desktop versions 7.4.1, 13.5, 12.5.1 and earlier are affecte ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45144 (Substance3D - Stager versions 3.0.3 and earlier are affected by an out ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45143 (Substance3D - Stager versions 3.0.3 and earlier are affected by a Heap ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45142 (Substance3D - Stager versions 3.0.3 and earlier are affected by a Writ ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45141 (Substance3D - Stager versions 3.0.3 and earlier are affected by an out ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45140 (Substance3D - Stager versions 3.0.3 and earlier are affected by an out ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45139 (Substance3D - Stager versions 3.0.3 and earlier are affected by a Heap ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45138 (Substance3D - Stager versions 3.0.3 and earlier are affected by a Use ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45137 (InDesign Desktop versions 19.4, 18.5.3 and earlier are affected by an ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-45136 (InCopy versions 19.4, 18.5.3 and earlier are affected by an Unrestrict ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-44349 (A SQL injection vulnerability in login portal in AnteeoWMS before v4.7 ...)
- TODO: check
+ NOT-FOR-US: AnteeoWMS
CVE-2024-43616 (Microsoft Office Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43615 (Microsoft OpenSSH for Windows Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43614 (Microsoft Defender for Endpoint for Linux Spoofing Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43612 (Power BI Report Server Spoofing Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43611 (Windows Routing and Remote Access Service (RRAS) Remote Code Execution ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43610 (Exposure of Sensitive Information to an Unauthorized Actor in Copilot ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43609 (Microsoft Office Spoofing Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43608 (Windows Routing and Remote Access Service (RRAS) Remote Code Execution ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43607 (Windows Routing and Remote Access Service (RRAS) Remote Code Execution ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43604 (Outlook for Android Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43603 (Visual Studio Collector Service Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43601 (Visual Studio Code for Linux Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43599 (Remote Desktop Client Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43593 (Windows Routing and Remote Access Service (RRAS) Remote Code Execution ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43592 (Windows Routing and Remote Access Service (RRAS) Remote Code Execution ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43591 (Azure Command Line Integration (CLI) Elevation of Privilege Vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43590 (Visual C++ Redistributable Installer Elevation of Privilege Vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43589 (Windows Routing and Remote Access Service (RRAS) Remote Code Execution ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43585 (Code Integrity Guard Security Feature Bypass Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43584 (Windows Scripting Engine Security Feature Bypass Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43583 (Winlogon Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43582 (Remote Desktop Protocol Server Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43581 (Microsoft OpenSSH for Windows Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43576 (Microsoft Office Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43575 (Windows Hyper-V Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43574 (Microsoft Speech Application Programming Interface (SAPI) Remote Code ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43573 (Windows MSHTML Platform Spoofing Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43572 (Microsoft Management Console Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43571 (Sudo for Windows Spoofing Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43570 (Windows Kernel Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43567 (Windows Hyper-V Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43565 (Windows Network Address Translation (NAT) Denial of Service Vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43564 (Windows Routing and Remote Access Service (RRAS) Remote Code Execution ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43563 (Windows Ancillary Function Driver for WinSock Elevation of Privilege V ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43562 (Windows Network Address Translation (NAT) Denial of Service Vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43561 (Windows Mobile Broadband Driver Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43560 (Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43559 (Windows Mobile Broadband Driver Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43558 (Windows Mobile Broadband Driver Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43557 (Windows Mobile Broadband Driver Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43556 (Windows Graphics Component Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43555 (Windows Mobile Broadband Driver Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43554 (Windows Kernel-Mode Driver Information Disclosure Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43553 (NT OS Kernel Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43552 (Windows Shell Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43551 (Windows Storage Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43550 (Windows Secure Channel Spoofing Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43549 (Windows Routing and Remote Access Service (RRAS) Remote Code Execution ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43547 (Windows Kerberos Information Disclosure Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43546 (Windows Cryptographic Information Disclosure Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43545 (Windows Online Certificate Status Protocol (OCSP) Server Denial of Ser ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43544 (Microsoft Simple Certificate Enrollment Protocol Denial of Service Vul ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43543 (Windows Mobile Broadband Driver Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43542 (Windows Mobile Broadband Driver Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43541 (Microsoft Simple Certificate Enrollment Protocol Denial of Service Vul ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43540 (Windows Mobile Broadband Driver Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43538 (Windows Mobile Broadband Driver Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43537 (Windows Mobile Broadband Driver Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43536 (Windows Mobile Broadband Driver Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43535 (Windows Kernel-Mode Driver Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43534 (Windows Graphics Component Information Disclosure Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43533 (Remote Desktop Client Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43532 (Remote Registry Service Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43529 (Windows Print Spooler Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43528 (Windows Secure Kernel Mode Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43527 (Windows Kernel Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43526 (Windows Mobile Broadband Driver Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43525 (Windows Mobile Broadband Driver Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43524 (Windows Mobile Broadband Driver Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43523 (Windows Mobile Broadband Driver Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43522 (Windows Local Security Authority (LSA) Elevation of Privilege Vulnerab ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43521 (Windows Hyper-V Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43520 (Windows Kernel Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43519 (Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vu ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43518 (Windows Telephony Server Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43517 (Microsoft ActiveX Data Objects Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43516 (Windows Secure Kernel Mode Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43515 (Internet Small Computer Systems Interface (iSCSI) Denial of Service Vu ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43514 (Windows Resilient File System (ReFS) Elevation of Privilege Vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43513 (BitLocker Security Feature Bypass Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43512 (Windows Standards-Based Storage Management Service Denial of Service V ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43511 (Windows Kernel Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43509 (Windows Graphics Component Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43508 (Windows Graphics Component Information Disclosure Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43506 (BranchCache Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43505 (Microsoft Office Visio Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43504 (Microsoft Excel Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43503 (Microsoft SharePoint Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43502 (Windows Kernel Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43501 (Windows Common Log File System Driver Elevation of Privilege Vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43500 (Windows Resilient File System (ReFS) Information Disclosure Vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43497 (DeepSpeed Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43488 (Missing authentication for critical function in Visual Studio Code ext ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43485 (.NET and Visual Studio Denial of Service Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43484 (.NET, .NET Framework, and Visual Studio Denial of Service Vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43483 (.NET, .NET Framework, and Visual Studio Denial of Service Vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43481 (Power BI Report Server Spoofing Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43480 (Azure Service Fabric for Linux Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43468 (Microsoft Configuration Manager Remote Code Execution Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43456 (Windows Remote Desktop ServicesTampering Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-43453 (Windows Routing and Remote Access Service (RRAS) Remote Code Execution ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2024-42988 (Lack of access control in ChallengeSolves (/api/v1/challenges/<challen ...)
- TODO: check
+ NOT-FOR-US: ChallengeSolves
CVE-2024-41981 (A vulnerability has been identified in Simcenter Nastran 2306 (All ver ...)
TODO: check
CVE-2024-41902 (A vulnerability has been identified in JT2Go (All versions < V2406.000 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/055e2cade2c97e6cc19cf2f3935e7cb473d0ac22
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/055e2cade2c97e6cc19cf2f3935e7cb473d0ac22
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241010/71ae68f3/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list