[Git][security-tracker-team/security-tracker][master] Unify TOTOLINK NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jul 23 08:12:45 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
922c75a6 by Salvatore Bonaccorso at 2025-07-23T09:12:13+02:00
Unify TOTOLINK NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1304,7 +1304,7 @@ CVE-2025-53638 (Solady is software that provides Solidity snippets with APIs. St
CVE-2025-52933
REJECTED
CVE-2025-52046 (Totolink A3300R V17.0.0cu.596_B20250515 was found to contain a command ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2025-51630 (TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a buf ...)
NOT-FOR-US: TOTOLINK
CVE-2025-51497 (An issue was discovered in AdGuard plugin before 1.11.22 for Safari on ...)
@@ -45442,11 +45442,11 @@ CVE-2025-26047 (Loggrove v1.0 is vulnerable to SQL Injection in the read.py file
CVE-2025-25916 (wuzhicms v4.1.0 has a Cross Site Scripting (XSS) vulnerability in del ...)
NOT-FOR-US: wuzhicms
CVE-2025-25635 (TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulne ...)
- NOT-FOR-US: TOTOlink
+ NOT-FOR-US: TOTOLINK
CVE-2025-25610 (TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulne ...)
- NOT-FOR-US: TOTOlink
+ NOT-FOR-US: TOTOLINK
CVE-2025-25609 (TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulne ...)
- NOT-FOR-US: TOTOlink
+ NOT-FOR-US: TOTOLINK
CVE-2025-25461 (A Stored Cross-Site Scripting (XSS) vulnerability exists in SeedDMS 6. ...)
NOT-FOR-US: SeedDMS
CVE-2025-25431 (Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (X ...)
@@ -50417,9 +50417,9 @@ CVE-2025-25766 (An arbitrary file upload vulnerability in the component /file/sa
CVE-2025-25765 (MRCMS v3.1.2 was discovered to contain an arbitrary file write vulnera ...)
NOT-FOR-US: MRCMS
CVE-2025-25605 (Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command inject ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2025-25604 (Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command inject ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2025-25510 (Tenda AC8 V16.03.34.06 is vulnerable to Buffer Overflow in the get_par ...)
NOT-FOR-US: Tenda
CVE-2025-25507 (There is a RCE vulnerability in Tenda AC6 15.03.05.16_multi. In the fo ...)
@@ -53108,7 +53108,7 @@ CVE-2025-25526 (Buffer overflow vulnerability in Mercury MIPC552W Camera v1.0 du
CVE-2025-25525 (Buffer overflow vulnerability in H3C FA3010L access points SWFA1B0V100 ...)
NOT-FOR-US: H3C FA3010L access points SWFA1B0V100R005
CVE-2025-25524 (Buffer overflow vulnerability in TOTOLink X6000R routers V9.4.0cu.652_ ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2025-25523 (Buffer overflow vulnerability in Trendnet TEG-40128 Web Smart Switch v ...)
NOT-FOR-US: Trendnet
CVE-2025-25522 (Buffer overflow vulnerability in Linksys WAP610N v1.0.05.002 due to th ...)
@@ -134815,7 +134815,7 @@ CVE-2023-51631 (D-Link DIR-X3260 prog.cgi SetUsersSettings Stack-based Buffer Ov
CVE-2024-33835 (Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the remo ...)
NOT-FOR-US: Tenda
CVE-2024-33820 (Totolink AC1200 Wireless Dual Band Gigabit Router A3002R_V4 Firmware V ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-33775 (An issue with the Autodiscover component in Nagios XI 2024R1.01 allows ...)
NOT-FOR-US: Nagios XI
CVE-2024-33518 (An unauthenticated Denial-of-Service (DoS) vulnerability exists in the ...)
@@ -149723,9 +149723,9 @@ CVE-2024-28862 (The Ruby One Time Password library (ROTP) is an open source libr
CVE-2024-28859 (Symfony1 is a community fork of symfony 1.4 with DIC, form enhancement ...)
NOT-FOR-US: Symfony1 (community fork of symfony 1.4 with some enhancements)
CVE-2024-28640 (Buffer Overflow vulnerability in TOTOLink X5000R V9.1.0u.6118-B2020110 ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2024-28639 (Buffer Overflow vulnerability in TOTOLink X5000R V9.1.0u.6118-B2020110 ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2024-28070 (A vulnerability in the legacy chat component of Mitel MiContact Center ...)
NOT-FOR-US: Mitel
CVE-2024-28069 (A vulnerability in the legacy chat component of Mitel MiContact Center ...)
@@ -151406,7 +151406,7 @@ CVE-2024-2355 (A vulnerability has been found in keerti1924 Secret-Coder-PHP-Pro
CVE-2024-2354 (A vulnerability, which was classified as problematic, was found in Dre ...)
NOT-FOR-US: Dreamer CMS
CVE-2024-2353 (A vulnerability, which was classified as critical, has been found in T ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-2352 (A vulnerability, which was classified as critical, has been found in 1 ...)
NOT-FOR-US: 1Panel
CVE-2024-2351 (A vulnerability classified as critical was found in CodeAstro Ecommerc ...)
@@ -155927,9 +155927,9 @@ CVE-2024-1786 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classi
CVE-2024-1784 (A vulnerability classified as problematic was found in Limbas 5.2.14. ...)
NOT-FOR-US: Limbas
CVE-2024-1783 (A vulnerability classified as critical has been found in Totolink LR12 ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-1781 (A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.852_202307 ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-1779 (The Admin side data storage for Contact Form 7 plugin for WordPress is ...)
NOT-FOR-US: WordPress plugin
CVE-2024-1778 (The Admin side data storage for Contact Form 7 plugin for WordPress is ...)
@@ -156697,7 +156697,7 @@ CVE-2024-21682 (This High severity Injection vulnerability was introduced in Ass
CVE-2024-21678 (This High severity Stored XSS vulnerability was introduced in version ...)
NOT-FOR-US: Atlassian
CVE-2024-1661 (A vulnerability classified as problematic was found in Totolink X6000R ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-1608 (In OPPO Usercenter Credit SDK, there's a possible escalation of privil ...)
NOT-FOR-US: OPPO
CVE-2024-1586 (The Schema & Structured Data for WP & AMP plugin for WordPress is vuln ...)
@@ -161319,21 +161319,21 @@ CVE-2024-1006 (A vulnerability was found in Shanxi Diankeyun Technology NODERP u
CVE-2024-1005 (A vulnerability has been found in Shanxi Diankeyun Technology NODERP u ...)
NOT-FOR-US: Shanxi Diankeyun Technology NODERP
CVE-2024-1004 (A vulnerability, which was classified as critical, was found in Totoli ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-1003 (A vulnerability, which was classified as critical, has been found in T ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-1002 (A vulnerability classified as critical was found in Totolink N200RE 9. ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-1001 (A vulnerability classified as critical has been found in Totolink N200 ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-1000 (A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216. It ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0999 (A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216. It ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0998 (A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216. It ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0997 (A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216 and ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0788 (SUPERAntiSpyware Pro X v10.0.1260 is vulnerable to kernel-level API pa ...)
NOT-FOR-US: SUPERAntiSpyware Pro X
CVE-2024-0212 (The Cloudflare Wordpress plugin was found to be vulnerable to improper ...)
@@ -161651,11 +161651,11 @@ CVE-2024-20263 (A vulnerability with the access control list (ACL) management wi
CVE-2024-20253 (A vulnerability in multiple Cisco Unified Communications and Contact C ...)
NOT-FOR-US: Cisco
CVE-2024-0944 (A vulnerability was found in Totolink T8 4.1.5cu.833_20220905. It has ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0943 (A vulnerability was found in Totolink N350RT 9.3.5u.6255. It has been ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0942 (A vulnerability was found in Totolink N200RE V5 9.3.5u.6255_B20211224. ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0941 (A vulnerability was found in Novel-Plus 4.3.0-RC1 and classified as cr ...)
NOT-FOR-US: Novel-Plus
CVE-2024-0939 (A vulnerability has been found in Byzoro Smart S210 Management Platfor ...)
@@ -163678,27 +163678,27 @@ CVE-2024-0582 (A memory leak flaw was found in the Linux kernel\u2019s io_uring
CVE-2024-0581 (An Uncontrolled Resource Consumption vulnerability has been found on S ...)
NOT-FOR-US: Sandsprite
CVE-2024-0579 (A vulnerability classified as critical was found in Totolink X2000R 1. ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0578 (A vulnerability classified as critical has been found in Totolink LR12 ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0577 (A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130. ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0576 (A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130. ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0575 (A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130. ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0574 (A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130 a ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0573 (A vulnerability has been found in Totolink LR1200GB 9.1.0u.6619_B20230 ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0572 (A vulnerability, which was classified as critical, was found in Totoli ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0571 (A vulnerability, which was classified as critical, has been found in T ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0570 (A vulnerability classified as critical was found in Totolink N350RT 9. ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0569 (A vulnerability classified as problematic has been found in Totolink T ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0567 (A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTL ...)
- gnutls28 3.8.3-1 (bug #1061045)
[bookworm] - gnutls28 3.7.9-2+deb12u2
@@ -163811,7 +163811,7 @@ CVE-2023-52099 (Vulnerability of foreground service restrictions being bypassed
CVE-2023-52098 (Denial of Service (DoS) vulnerability in the DMS module. Successful ex ...)
NOT-FOR-US: Huawei
CVE-2023-52041 (An issue discovered in TOTOLINK X6000R V9.4.0cu.852_B20230719 allows a ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-51381
REJECTED
CVE-2023-4969 (A GPU kernel can read sensitive data from another GPU kernel (even fro ...)
@@ -164407,7 +164407,7 @@ CVE-2023-6683 (A flaw was found in the QEMU built-in VNC server while processing
NOTE: Introduced by: https://gitlab.com/qemu-project/qemu/-/commit/660e8d0f0be4e87da937ce797973874bb282d498 (v6.1.0-rc0)
NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/405484b29f6548c7b86549b0f961b906337aa68a
CVE-2023-52026 (TOTOlink EX1800T V9.1.0cu.2112_B20220316 was discovered to contain a r ...)
- NOT-FOR-US: TOTOlink
+ NOT-FOR-US: TOTOLINK
CVE-2023-51978 (In PHPGurukul Art Gallery Management System v1.1, "Update Artist Image ...)
NOT-FOR-US: PHPGurukul Art Gallery Management System
CVE-2023-51949 (Verydows v2.0 was discovered to contain a Cross-Site Request Forgery ( ...)
@@ -164767,17 +164767,17 @@ CVE-2023-5504 (The BackWPup plugin for WordPress is vulnerable to Directory Trav
CVE-2023-5118 (The application is vulnerable to Stored Cross-Site Scripting (XSS) in ...)
NOT-FOR-US: Kofax
CVE-2023-52032 (TOTOlink EX1200T V4.1.2cu.5232_B20210713 was discovered to contain a r ...)
- NOT-FOR-US: TOTOlink
+ NOT-FOR-US: TOTOLINK
CVE-2023-52031 (TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a rem ...)
- NOT-FOR-US: TOTOlink
+ NOT-FOR-US: TOTOLINK
CVE-2023-52030 (TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a rem ...)
- NOT-FOR-US: TOTOlink
+ NOT-FOR-US: TOTOLINK
CVE-2023-52029 (TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a rem ...)
- NOT-FOR-US: TOTOlink
+ NOT-FOR-US: TOTOLINK
CVE-2023-52028 (TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a rem ...)
- NOT-FOR-US: TOTOlink
+ NOT-FOR-US: TOTOLINK
CVE-2023-52027 (TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a rem ...)
- NOT-FOR-US: TOTOlink
+ NOT-FOR-US: TOTOLINK
CVE-2023-51989
REJECTED
CVE-2023-51987 (D-Link DIR-822+ V1.0.2 contains a login bypass in the HNAP1 interface, ...)
@@ -165465,11 +165465,11 @@ CVE-2024-0057 (NET, .NET Framework, and Visual Studio Security Feature Bypass Vu
CVE-2024-0056 (Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider S ...)
NOT-FOR-US: Microsoft
CVE-2023-7223 (A vulnerability classified as problematic has been found in Totolink T ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-7222 (A vulnerability was found in Totolink X2000R 1.0.0-B20221212.1452. It ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-7221 (A vulnerability was found in Totolink T6 4.1.9cu.5241_B20210923. It ha ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-7032 (A CWE-502: Deserialization of untrusted data vulnerability exists that ...)
NOT-FOR-US: Schneider-Electric
CVE-2023-6149 (Qualys Jenkins Plugin for WAS prior to version and including 2.0.11 wa ...)
@@ -165575,11 +165575,11 @@ CVE-2024-21646 (Azure uAMQP is a general purpose C library for AMQP 1.0. The UAM
NOTE: https://github.com/Azure/azure-uamqp-python/issues/372
NOTE: https://github.com/Azure/azure-uamqp-python/commit/c85efcd12c249999eb8a1064b7d4fd8c7715c780 (v1.6.7)
CVE-2023-7220 (A vulnerability was found in Totolink NR1800X 9.1.0u.6279_B20210910 an ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-7219 (A vulnerability has been found in Totolink N350RT 9.3.5u.6139_B202012 ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-7218 (A vulnerability, which was classified as critical, was found in Totoli ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-6842 (The Formidable Forms \u2013 Contact Form, Survey, Quiz, Payment, Calcu ...)
NOT-FOR-US: WordPress plugin
CVE-2023-6830 (The Formidable Forms plugin for WordPress is vulnerable to HTML inject ...)
@@ -166106,23 +166106,23 @@ CVE-2024-0301 (A vulnerability classified as critical was found in fhs-opensourc
CVE-2024-0300 (A vulnerability was found in Byzoro Smart S150 Management Platform up ...)
NOT-FOR-US: Beijing Baichuo Smart S150 Management Platform
CVE-2024-0299 (A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216. It ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0298 (A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216. It ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0297 (A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216 and ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0296 (A vulnerability has been found in Totolink N200RE 9.3.5u.6139_B2020121 ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0295 (A vulnerability, which was classified as critical, was found in Totoli ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0294 (A vulnerability, which was classified as critical, has been found in T ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0293 (A vulnerability classified as critical was found in Totolink LR1200GB ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0292 (A vulnerability classified as critical has been found in Totolink LR12 ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0291 (A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130. ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2024-0290 (A vulnerability, which was classified as critical, has been found in K ...)
NOT-FOR-US: Kashipara Food Management System
CVE-2024-0289 (A vulnerability classified as critical was found in Kashipara Food Man ...)
@@ -166168,9 +166168,9 @@ CVE-2024-0272 (A vulnerability was found in Kashipara Food Management System up
CVE-2024-0271 (A vulnerability has been found in Kashipara Food Management System up ...)
NOT-FOR-US: Kashipara Food Management System
CVE-2023-7214 (A vulnerability, which was classified as critical, has been found in T ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-7213 (A vulnerability classified as critical was found in Totolink N350RT 9. ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-7212 (A vulnerability classified as critical has been found in DeDeCMS up to ...)
NOT-FOR-US: DeDeCMS
CVE-2023-7211 (A vulnerability was found in Uniway Router 2.0. It has been declared a ...)
@@ -166202,7 +166202,7 @@ CVE-2024-0261 (A vulnerability has been found in Sentex FTPDMIN 0.96 and classif
CVE-2024-0260 (A vulnerability, which was classified as problematic, was found in Sou ...)
NOT-FOR-US: SourceCodester Engineers Online Portal
CVE-2023-7208 (A vulnerability classified as critical was found in Totolink X2000R_V2 ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-6801 (The RSS Aggregator by Feedzy \u2013 Feed to Post, Autoblogging, News & ...)
NOT-FOR-US: WordPress plugin
CVE-2023-6798 (The RSS Aggregator by Feedzy \u2013 Feed to Post, Autoblogging, News & ...)
@@ -166956,7 +166956,7 @@ CVE-2023-7189 (A vulnerability classified as critical was found in S-CMS up to 2
CVE-2023-7188 (A vulnerability classified as critical has been found in Shipping 100 ...)
NOT-FOR-US: Shipping 100 Fahuo100
CVE-2023-7187 (A vulnerability was found in Totolink N350RT 9.3.5u.6139_B20201216. It ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-7186 (A vulnerability was found in 7-card Fakabao up to 1.0_build20230805. I ...)
NOT-FOR-US: 7-card Fakabao
CVE-2023-7185 (A vulnerability was found in 7-card Fakabao up to 1.0_build20230805. I ...)
@@ -167808,7 +167808,7 @@ CVE-2023-7097 (A vulnerability classified as critical has been found in code-pro
CVE-2023-7096 (A vulnerability was found in code-projects Faculty Management System 1 ...)
NOT-FOR-US: code-projects Faculty Management System
CVE-2023-7095 (A vulnerability, which was classified as critical, has been found in T ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-7094 (A vulnerability classified as problematic was found in Netentsec NS-AS ...)
NOT-FOR-US: Netentsec NS-ASG Application Security Gateway
CVE-2023-7093 (A vulnerability classified as critical has been found in KylinSoft kyl ...)
@@ -169326,7 +169326,7 @@ CVE-2023-6908 (A vulnerability, which was classified as problematic, was found i
CVE-2023-6907 (A vulnerability has been found in codelyfe Stupid Simple CMS up to 1.2 ...)
NOT-FOR-US: codelyfe Stupid Simple CMS
CVE-2023-6906 (A vulnerability, which was classified as critical, was found in Totoli ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-6905 (A vulnerability, which was classified as problematic, has been found i ...)
NOT-FOR-US: Jahastech NxFilter
CVE-2023-6904 (A vulnerability classified as problematic was found in Jahastech NxFil ...)
@@ -171219,9 +171219,9 @@ CVE-2023-5749 (The EmbedPress WordPress plugin before 3.9.2 does not sanitise an
CVE-2023-49795 (MindsDB connects artificial intelligence models to real time data. Ver ...)
NOT-FOR-US: MindsDB
CVE-2023-49418 (TOTOLink A7000R V9.1.0u.6115_B20201022has a stack overflow vulnerabili ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2023-49417 (TOTOLink A7000R V9.1.0u.6115_B20201022 has a stack overflow vulnerabil ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2023-48715 (Tuleap is an open source suite to improve management of software devel ...)
NOT-FOR-US: Tuleap
CVE-2023-6185 (Improper Input Validation vulnerability in GStreamer integration of Th ...)
@@ -171369,7 +171369,7 @@ CVE-2023-6614 (A vulnerability classified as problematic was found in Typecho 1.
CVE-2023-6613 (A vulnerability classified as problematic has been found in Typecho 1. ...)
NOT-FOR-US: Typecho
CVE-2023-6612 (A vulnerability was found in Totolink X5000R 9.1.0cu.2300_B20230112. I ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2023-6611 (A vulnerability was found in Tongda OA 2017 up to 11.9. It has been de ...)
NOT-FOR-US: Tongda OA
CVE-2023-6610 (An out-of-bounds read vulnerability was found in smb2_dump_detail in f ...)
@@ -174434,7 +174434,7 @@ CVE-2023-4149 (A vulnerability in the web-based management allows an unauthentic
CVE-2023-48310 (TestingPlatform is a testing platform for Internet Security Standards. ...)
NOT-FOR-US: TestingPlatform
CVE-2023-48192 (An issue in TOTOlink A3700R v.9.1.2u.6134_B20201202 allows a local att ...)
- NOT-FOR-US: TOTOlink
+ NOT-FOR-US: TOTOLINK
CVE-2023-48176 (An Insecure Permissions issue in WebsiteGuide v.0.2 allows a remote at ...)
NOT-FOR-US: WebsiteGuide
CVE-2023-48051 (An issue in /upydev/keygen.py in upydev v0.4.3 allows attackers to dec ...)
@@ -238811,7 +238811,7 @@ CVE-2022-46027
CVE-2022-46026
RESERVED
CVE-2022-46025 (Totolink N200RE_V5 V9.3.5u.6255_B20211224 is vulnerable to Incorrect A ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2022-46024
RESERVED
CVE-2022-46023
@@ -263273,7 +263273,7 @@ CVE-2022-38310 (Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered t
CVE-2022-38309 (Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to cont ...)
NOT-FOR-US: Tenda
CVE-2022-38308 (TOTOLink A700RU V7.4cu.2313_B20191024 was discovered to contain a comm ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-38307 (LIEF commit 5d1d643 was discovered to contain a segmentation violation ...)
NOT-FOR-US: LIEF
CVE-2022-38306 (LIEF commit 5d1d643 was discovered to contain a heap-buffer overflow i ...)
@@ -272217,7 +272217,7 @@ CVE-2022-34995
CVE-2022-34994
RESERVED
CVE-2022-34993 (Totolink A3600R_Firmware V4.1.2cu.5182_B20201102 contains a hard code ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2022-34992 (Luadec v0.9.9 was discovered to contain a heap-buffer overflow via the ...)
NOT-FOR-US: viruscamp/luadec
CVE-2022-34991 (Paymoney v3.3 was discovered to contain multiple reflected cross-site ...)
@@ -289792,7 +289792,7 @@ CVE-2022-28937 (FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue
CVE-2022-28936 (FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where ...)
NOT-FOR-US: FISCO-BCOS
CVE-2022-28935 (Totolink A830R V5.9c.4729_B20191112, Totolink A3100R V4.1.2cu.5050_B20 ...)
- NOT-FOR-US: Totolink
+ NOT-FOR-US: TOTOLINK
CVE-2022-28934
RESERVED
CVE-2022-28933
@@ -289842,23 +289842,23 @@ CVE-2022-28915 (D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a command
CVE-2022-28914
RESERVED
CVE-2022-28913 (TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a comman ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-28912 (TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a comman ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-28911 (TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a comman ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-28910 (TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a comman ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-28909 (TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a comman ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-28908 (TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a comman ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-28907 (TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a comman ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-28906 (TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a comman ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-28905 (TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a comman ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-28904
RESERVED
CVE-2022-28903
@@ -301154,25 +301154,25 @@ CVE-2022-25086
CVE-2022-25085
RESERVED
CVE-2022-25084 (TOTOLink T6 V5.9c.4085_B20190428 was discovered to contain a command i ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-25083 (TOTOLink A860R V4.1.2cu.5182_B20201027 was discovered to contain a com ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-25082 (TOTOLink A950RG V5.9c.4050_B20190424 and V4.1.2cu.5204_B20210112 were ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-25081 (TOTOLink T10 V5.9c.5061_B20200511 was discovered to contain a command ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-25080 (TOTOLink A830R V5.9c.4729_B20191112 was discovered to contain a comman ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-25079 (TOTOLink A810R V4.1.2cu.5182_B20201026 was discovered to contain a com ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-25078 (TOTOLink A3600R V4.1.2cu.5182_B20201102 was discovered to contain a co ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-25077 (TOTOLink A3100R V4.1.2cu.5050_B20200504 was discovered to contain a co ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-25076 (TOTOLink A800R V4.1.2cu.5137_B20200730 was discovered to contain a com ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-25075 (TOTOLink A3000RU V5.9c.2280_B20180512 was discovered to contain a comm ...)
- NOT-FOR-US: TOTOLink
+ NOT-FOR-US: TOTOLINK
CVE-2022-25074 (TP-Link TL-WR902AC(US)_V3_191209 routers were discovered to contain a ...)
NOT-FOR-US: TP-Link
CVE-2022-25073 (TL-WR841Nv14_US_0.9.1_4.18 routers were discovered to contain a stack ...)
@@ -320980,13 +320980,13 @@ CVE-2021-43666 (A Denial of Service vulnerability exists in mbed TLS 3.0.0 and e
CVE-2021-43665
RESERVED
CVE-2021-43664 (totolink EX300_v2 V4.0.3c.140_B20210429 was discovered to contain a co ...)
- NOT-FOR-US: totolink EX300_v2
+ NOT-FOR-US: TOTOLINK
CVE-2021-43663 (totolink EX300_v2 V4.0.3c.140_B20210429 was discovered to contain a co ...)
- NOT-FOR-US: totolink EX300_v2
+ NOT-FOR-US: TOTOLINK
CVE-2021-43662 (totolink EX300_v2, ver V4.0.3c.140_B20210429 and A720R ,ver V4.1.5cu.4 ...)
- NOT-FOR-US: totolink EX300_v2
+ NOT-FOR-US: TOTOLINK
CVE-2021-43661 (totolink EX300_v2 V4.0.3c.140_B20210429 was discovered to contain a re ...)
- NOT-FOR-US: totolink EX300_v2
+ NOT-FOR-US: TOTOLINK
CVE-2021-43660
RESERVED
CVE-2021-43659 (In halo 1.4.14, the function point of uploading the avatar, any file c ...)
@@ -344763,13 +344763,13 @@ CVE-2021-35329
CVE-2021-35328
RESERVED
CVE-2021-35327 (A vulnerability in TOTOLINK A720R A720R_Firmware v4.1.5cu.470_B2020091 ...)
- NOT-FOR-US: TOTOLINK A720R A720R_Firmware
+ NOT-FOR-US: TOTOLINK
CVE-2021-35326 (A vulnerability in TOTOLINK A720R router with firmware v4.1.5cu.470_B2 ...)
- NOT-FOR-US: TOTOLINK A720R router firmware
+ NOT-FOR-US: TOTOLINK
CVE-2021-35325 (A stack overflow in the checkLoginUser function of TOTOLINK A720R A720 ...)
- NOT-FOR-US: TOTOLINK A720R A720R_Firmware
+ NOT-FOR-US: TOTOLINK
CVE-2021-35324 (A vulnerability in the Form_Login function of TOTOLINK A720R A720R_Fir ...)
- NOT-FOR-US: TOTOLINK A720R A720R_Firmware
+ NOT-FOR-US: TOTOLINK
CVE-2021-35323 (Cross Site Scripting (XSS) vulnerability exists in bludit 3-13-1 via t ...)
NOT-FOR-US: bludit
CVE-2021-35322
@@ -364692,11 +364692,11 @@ CVE-2021-27712
CVE-2021-27711
RESERVED
CVE-2021-27710 (Command Injection in TOTOLINK X5000R router with firmware v9.1.0u.6118 ...)
- NOT-FOR-US: TOTOLINK X5000R router
+ NOT-FOR-US: TOTOLINK
CVE-2021-27709
RESERVED
CVE-2021-27708 (Command Injection in TOTOLINK X5000R router with firmware v9.1.0u.6118 ...)
- NOT-FOR-US: TOTOLINK X5000R router
+ NOT-FOR-US: TOTOLINK
CVE-2021-27707 (Buffer Overflow in Tenda G1 and G3 routers with firmware v15.11.0.17(9 ...)
NOT-FOR-US: Tenda routers
CVE-2021-27706 (Buffer Overflow in Tenda G1 and G3 routers with firmware version V15.1 ...)
@@ -457702,9 +457702,9 @@ CVE-2019-19827
CVE-2019-19826 (The Views Dynamic Fields module through 7.x-1.0-alpha4 for Drupal make ...)
NOT-FOR-US: Views Dynamic Fields module for Drupal
CVE-2019-19825 (On certain TOTOLINK Realtek SDK based routers, the CAPTCHA text can be ...)
- NOT-FOR-US: TOTOLINK Realtek SDK based routers
+ NOT-FOR-US: TOTOLINK
CVE-2019-19824 (On certain TOTOLINK Realtek SDK based routers, an authenticated attack ...)
- NOT-FOR-US: TOTOLINK Realtek SDK based routers
+ NOT-FOR-US: TOTOLINK
CVE-2019-19823 (A certain router administration interface (that includes Realtek APMIB ...)
NOT-FOR-US: Realtek
CVE-2019-19822 (A certain router administration interface (that includes Realtek APMIB ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/922c75a64ae26d5624e8293c1929a289168a3b4f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/922c75a64ae26d5624e8293c1929a289168a3b4f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250723/0a54d4a4/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list