[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Jan 9 19:08:31 GMT 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5065751e by Moritz Muehlenhoff at 2025-01-09T20:08:13+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -41,119 +41,119 @@ CVE-2024-6324 (An issue was discovered in GitLab CE/EE affecting all versions st
CVE-2024-5610
REJECTED
CVE-2024-54010 (A vulnerability in the firewall component of HPE Aruba Networking CX 1 ...)
- TODO: check
+ NOT-FOR-US: HPE
CVE-2024-53995 (SickChill is an automatic video library manager for TV shows. A user-c ...)
- TODO: check
+ NOT-FOR-US: SickChill
CVE-2024-53706 (A vulnerability in the Gen7 SonicOS Cloud platform NSv, allows a remot ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-53705 (A Server-Side Request Forgery vulnerability in the SonicOS SSH managem ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-53704 (An Improper Authentication vulnerability in the SSLVPN authentication ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-52869 (Certain Teradata account-handling code through 2024-11-04, used with S ...)
TODO: check
CVE-2024-43663 (There are many buffer overflow vulnerabilities present in several CGI ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43662 (The <redacted>.exe or <redacted>.exe CGI binary can be used to upload ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43661 (The <redacted>.so library, which is used by <redacted>, is vulnerable ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43660 (The CGI script <redacted>.sh can be used to download any file on the f ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43659 (After gaining access to the firmware of a charging station, a file at ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43658 (Patch traversal, External Control of File Name or Path vulnerability i ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43657 (Improper Neutralization of Special Elements used in a Command ('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43656 (Improper Neutralization of Special Elements used in a Command ('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43655 (Improper Neutralization of Special Elements used in a Command ('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43654 (Improper Neutralization of Special Elements used in a Command ('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43653 (Improper Neutralization of Special Elements used in a Command ('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43652 (Improper Neutralization of Special Elements used in a Command ('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43651 (Improper Neutralization of Special Elements used in a Command ('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43650 (Improper Neutralization of Special Elements used in a Command ('Comman ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43649 (Authenticated command injection in the filename of a <redacted>.exe re ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-43648 (Command injection in the <redacted> parameter of a <redacted>.exe requ ...)
- TODO: check
+ NOT-FOR-US: Iocharger
CVE-2024-40765 (An Integer-based buffer overflow vulnerability in the SonicOS via IPSe ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-40762 (Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-13213 (A vulnerability classified as problematic was found in SingMR HouseRen ...)
- TODO: check
+ NOT-FOR-US: SingMR HouseRent
CVE-2024-13212 (A vulnerability classified as critical has been found in SingMR HouseR ...)
- TODO: check
+ NOT-FOR-US: SingMR HouseRent
CVE-2024-13211 (A vulnerability was found in SingMR HouseRent 1.0. It has been rated a ...)
- TODO: check
+ NOT-FOR-US: SingMR HouseRent
CVE-2024-13210 (A vulnerability was found in donglight bookstore\u7535\u5546\u4e66\u57 ...)
- TODO: check
+ NOT-FOR-US: donglight bookstore
CVE-2024-13209 (A vulnerability was found in Redaxo CMS 5.18.1. It has been classified ...)
- TODO: check
+ NOT-FOR-US: Redaxo CMS
CVE-2024-13206 (A vulnerability classified as critical has been found in REVE Antiviru ...)
- TODO: check
+ NOT-FOR-US: REVE Antivirus
CVE-2024-13205 (A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has ...)
- TODO: check
+ NOT-FOR-US: E-Commerce-PHP
CVE-2024-13204 (A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has ...)
- TODO: check
+ NOT-FOR-US: E-Commerce-PHP
CVE-2024-13203 (A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has ...)
- TODO: check
+ NOT-FOR-US: E-Commerce-PHP
CVE-2024-13202 (A vulnerability was found in wander-chu SpringBoot-Blog 1.0 and classi ...)
- TODO: check
+ NOT-FOR-US: SpringBoot-Blog
CVE-2024-13201 (A vulnerability has been found in wander-chu SpringBoot-Blog 1.0 and c ...)
- TODO: check
+ NOT-FOR-US: SpringBoot-Blog
CVE-2024-13200 (A vulnerability, which was classified as critical, was found in wander ...)
- TODO: check
+ NOT-FOR-US: SpringBoot-Blog
CVE-2024-13199 (A vulnerability classified as problematic was found in langhsu Mblog B ...)
- TODO: check
+ NOT-FOR-US: langhsu Mblog
CVE-2024-13198 (A vulnerability classified as problematic has been found in langhsu Mb ...)
- TODO: check
+ NOT-FOR-US: langhsu Mblog
CVE-2024-13197 (A vulnerability was found in donglight bookstore\u7535\u5546\u4e66\u57 ...)
- TODO: check
+ NOT-FOR-US: donglight bookstore
CVE-2024-13196 (A vulnerability was found in donglight bookstore\u7535\u5546\u4e66\u57 ...)
- TODO: check
+ NOT-FOR-US: donglight bookstore
CVE-2024-13195 (A vulnerability was found in donglight bookstore\u7535\u5546\u4e66\u57 ...)
- TODO: check
+ NOT-FOR-US: donglight bookstore
CVE-2024-13194 (A vulnerability was found in Sucms 1.0 and classified as critical. Aff ...)
- TODO: check
+ NOT-FOR-US: Sucms
CVE-2024-13193 (A vulnerability has been found in SEMCMS up to 4.8 and classified as c ...)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2024-13192 (A vulnerability, which was classified as problematic, was found in Zer ...)
- TODO: check
+ NOT-FOR-US: ZeroWdd myblog
CVE-2024-13191 (A vulnerability, which was classified as critical, has been found in Z ...)
- TODO: check
+ NOT-FOR-US: ZeroWdd myblog
CVE-2024-13190 (A vulnerability classified as critical was found in ZeroWdd myblog 1.0 ...)
- TODO: check
+ NOT-FOR-US: ZeroWdd myblog
CVE-2024-13041 (An issue was discovered in GitLab CE/EE affecting all versions startin ...)
- gitlab <unfixed>
CVE-2024-12806 (A post-authentication absolute path traversal vulnerability in SonicOS ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-12805 (A post-authentication format string vulnerability in SonicOS managemen ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-12803 (A post-authentication stack-based buffer overflow vulnerability in Son ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-12736 (The BU Section Editing WordPress plugin through 0.9.9 does not sanitis ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12731 (The Aklamator INfeed WordPress plugin through 2.0.0 does not sanitise ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12717 (The Aklamator INfeed WordPress plugin through 2.0.0 does not sanitise ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12715 (The Asgard Security Scanner WordPress plugin through 0.7 does not sani ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12714 (The Backlink Monitoring Manager WordPress plugin through 0.1.3 does no ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12431 (An issue was discovered in GitLab CE/EE affecting all versions startin ...)
- gitlab <unfixed>
CVE-2024-10815 (The PostLists WordPress plugin through 2.0.2 does not escape the $_SER ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-22143 (WeGIA is a web manager for charitable institutions. A Reflected Cross- ...)
NOT-FOR-US: WeGIA
CVE-2025-22141 (WeGIA is a web manager for charitable institutions. A SQL Injection vu ...)
@@ -187,7 +187,7 @@ CVE-2025-0194 (An issue was discovered in GitLab CE/EE affecting all versions st
CVE-2024-9939 (The WordPress File Upload plugin for WordPress is vulnerable to Path T ...)
NOT-FOR-US: WordPress plugin
CVE-2024-6350 (A malformed 802.15.4 packet causes a buffer overflow to occur leading ...)
- TODO: check
+ NOT-FOR-US: Silabs
CVE-2024-55656 (RedisBloom adds a set of probabilistic data structures to Redis. There ...)
NOT-FOR-US: RedisBloom
CVE-2024-55517 (An issue was discovered in the Interllect Core Search in Polaris FT In ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5065751e49cc51ad11d89744d125d1f98e5c234c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5065751e49cc51ad11d89744d125d1f98e5c234c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250109/8fd264d4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list