[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Mar 18 08:12:01 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4d8ca9d5 by security tracker role at 2025-03-18T08:11:55+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,89 @@
+CVE-2025-2473 (A vulnerability was found in PHPGurukul Company Visitor Management Sys ...)
+ TODO: check
+CVE-2025-2472 (A vulnerability has been found in PHPGurukul Apartment Visitors Manage ...)
+ TODO: check
+CVE-2025-2471 (A vulnerability, which was classified as critical, was found in PHPGur ...)
+ TODO: check
+CVE-2025-2420 (A vulnerability classified as problematic was found in \u732b\u5b81i M ...)
+ TODO: check
+CVE-2025-2419 (A vulnerability classified as critical has been found in code-projects ...)
+ TODO: check
+CVE-2025-2398 (A vulnerability was found in China Mobile P22g-CIac, ZXWT-MIG-P4G4V, Z ...)
+ TODO: check
+CVE-2025-2397 (A vulnerability was found in China Mobile P22g-CIac, ZXWT-MIG-P4G4V, Z ...)
+ TODO: check
+CVE-2025-2393 (A vulnerability, which was classified as critical, was found in code-p ...)
+ TODO: check
+CVE-2025-2262 (The The Logo Slider \u2013 Logo Showcase, Logo Carousel, Logo Gallery ...)
+ TODO: check
+CVE-2025-29913 (CryptoLib provides a software-only solution using the CCSDS Space Data ...)
+ TODO: check
+CVE-2025-29912 (CryptoLib provides a software-only solution using the CCSDS Space Data ...)
+ TODO: check
+CVE-2025-29911 (CryptoLib provides a software-only solution using the CCSDS Space Data ...)
+ TODO: check
+CVE-2025-29910 (CryptoLib provides a software-only solution using the CCSDS Space Data ...)
+ TODO: check
+CVE-2025-29909 (CryptoLib provides a software-only solution using the CCSDS Space Data ...)
+ TODO: check
+CVE-2025-29781 (The Bare Metal Operator (BMO) implements a Kubernetes API for managing ...)
+ TODO: check
+CVE-2025-29426 (Code-projects Online Class and Exam Scheduling System V1.0 is vulnerab ...)
+ TODO: check
+CVE-2025-27768
+ REJECTED
+CVE-2025-27767
+ REJECTED
+CVE-2025-27766
+ REJECTED
+CVE-2025-27765
+ REJECTED
+CVE-2025-27764
+ REJECTED
+CVE-2025-27763
+ REJECTED
+CVE-2025-27762
+ REJECTED
+CVE-2025-27761
+ REJECTED
+CVE-2025-27760
+ REJECTED
+CVE-2024-56506
+ REJECTED
+CVE-2024-56505
+ REJECTED
+CVE-2024-56504
+ REJECTED
+CVE-2024-56503
+ REJECTED
+CVE-2024-56502
+ REJECTED
+CVE-2024-56501
+ REJECTED
+CVE-2024-56500
+ REJECTED
+CVE-2024-56499
+ REJECTED
+CVE-2024-56498
+ REJECTED
+CVE-2024-40635 (containerd is an open-source container runtime. A bug was found in con ...)
+ TODO: check
+CVE-2023-50185
+ REJECTED
+CVE-2023-50184
+ REJECTED
+CVE-2023-50183
+ REJECTED
+CVE-2023-50182
+ REJECTED
+CVE-2023-47535
+ REJECTED
+CVE-2023-46721
+ REJECTED
+CVE-2023-46719
+ REJECTED
+CVE-2023-45589
+ REJECTED
CVE-2025-30143 (Rule 3000216 (before version 2) in Akamai App & API Protector (with Ak ...)
NOT-FOR-US: Akamai
CVE-2025-2401 (Buffer overflow vulnerability in Immunity Debugger affecting version 1 ...)
@@ -188310,8 +188396,8 @@ CVE-2023-22514
REJECTED
CVE-2023-22513 (This High severity RCE (Remote Code Execution) vulnerability was intro ...)
NOT-FOR-US: Bitbucket Data Center and Server
-CVE-2023-22512
- REJECTED
+CVE-2023-22512 (This High severity DoS (Denial of Service) vulnerability was introduce ...)
+ TODO: check
CVE-2023-22511
RESERVED
CVE-2023-22510
@@ -192655,25 +192741,25 @@ CVE-2022-4502 (Cross-site Scripting (XSS) - Reflected in GitHub repository opene
CVE-2022-4501 (The Mega Addons plugin for WordPress is vulnerable to authorization by ...)
NOT-FOR-US: Mega Addons plugin for WordPress
CVE-2022-47405
- RESERVED
+ REJECTED
CVE-2022-47404
- RESERVED
+ REJECTED
CVE-2022-47403
- RESERVED
+ REJECTED
CVE-2022-47402
- RESERVED
+ REJECTED
CVE-2022-47401
- RESERVED
+ REJECTED
CVE-2022-47400
- RESERVED
+ REJECTED
CVE-2022-47399
- RESERVED
+ REJECTED
CVE-2022-47398
- RESERVED
+ REJECTED
CVE-2022-47397
- RESERVED
+ REJECTED
CVE-2022-47396
- RESERVED
+ REJECTED
CVE-2022-4500
RESERVED
CVE-2022-4499 (TP-Link routers, Archer C5 and WR710N-V1, using the latest software, t ...)
@@ -197613,11 +197699,11 @@ CVE-2022-4132 (A flaw was found in JSS. A memory leak in JSS requires non-standa
CVE-2021-46855
RESERVED
CVE-2022-45865
- RESERVED
+ REJECTED
CVE-2022-45864
- RESERVED
+ REJECTED
CVE-2022-45863
- RESERVED
+ REJECTED
CVE-2022-45862 (An insufficient session expiration vulnerability [CWE-613] vulnerabili ...)
NOT-FOR-US: FortiGuard
CVE-2022-45861 (An access of uninitialized pointer vulnerability [CWE-824] in the SSL ...)
@@ -274636,25 +274722,25 @@ CVE-2022-21148 (Improper access control in the Intel(R) Edge Insights for Indust
CVE-2022-21135
RESERVED
CVE-2021-44789
- RESERVED
+ REJECTED
CVE-2021-44788
- RESERVED
+ REJECTED
CVE-2021-44787
- RESERVED
+ REJECTED
CVE-2021-44786
- RESERVED
+ REJECTED
CVE-2021-44785
- RESERVED
+ REJECTED
CVE-2021-44784
- RESERVED
+ REJECTED
CVE-2021-44783
- RESERVED
+ REJECTED
CVE-2021-44782
- RESERVED
+ REJECTED
CVE-2021-44781
- RESERVED
+ REJECTED
CVE-2021-44780
- RESERVED
+ REJECTED
CVE-2021-44764
RESERVED
CVE-2021-4089 (snipe-it is vulnerable to Improper Access Control)
@@ -276632,11 +276718,11 @@ CVE-2021-44177 (AEM's Cloud Service offering, as well as version 6.5.10.0 (and b
CVE-2021-44176 (AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) ...)
NOT-FOR-US: Adobe
CVE-2021-44175
- RESERVED
+ REJECTED
CVE-2021-44174
- RESERVED
+ REJECTED
CVE-2021-44173
- RESERVED
+ REJECTED
CVE-2021-44172 (An exposure of sensitive information to an unauthorized actor vulnerab ...)
NOT-FOR-US: FortiGuard
CVE-2021-44171 (A improper neutralization of special elements used in an os command (' ...)
@@ -282021,9 +282107,9 @@ CVE-2021-43081 (An improper neutralization of input during web page generation v
CVE-2021-43080 (An improper neutralization of input during web page generation vulnera ...)
NOT-FOR-US: FortiGuard
CVE-2021-43079
- RESERVED
+ REJECTED
CVE-2021-43078
- RESERVED
+ REJECTED
CVE-2021-43077 (A improper neutralization of special elements used in an sql command ( ...)
NOT-FOR-US: FortiGuard
CVE-2021-43076 (An improper privilege management vulnerability [CWE-269] in FortiADC v ...)
@@ -407423,7 +407509,7 @@ CVE-2020-6647 (An improper neutralization of input vulnerability in the dashboar
CVE-2020-6646 (An improper neutralization of input vulnerability in FortiWeb allows a ...)
NOT-FOR-US: Fortiguard
CVE-2020-6645
- RESERVED
+ REJECTED
CVE-2020-6644 (An insufficient session expiration vulnerability in FortiDeceptor 3.0. ...)
NOT-FOR-US: Fortiguard
CVE-2020-6643 (An improper neutralization of input vulnerability in the URL Descripti ...)
@@ -509616,23 +509702,23 @@ CVE-2018-9206 (Unauthenticated arbitrary file upload vulnerability in Blueimp jQ
CVE-2018-9205 (Vulnerability in avatar_uploader v7.x-1.0-beta8 , The code in view.php ...)
NOT-FOR-US: avatar_uploader
CVE-2018-9204
- RESERVED
+ REJECTED
CVE-2018-9203
- RESERVED
+ REJECTED
CVE-2018-9202
- RESERVED
+ REJECTED
CVE-2018-9201
- RESERVED
+ REJECTED
CVE-2018-9200
- RESERVED
+ REJECTED
CVE-2018-9199
- RESERVED
+ REJECTED
CVE-2018-9198
- RESERVED
+ REJECTED
CVE-2018-9197
- RESERVED
+ REJECTED
CVE-2018-9196
- RESERVED
+ REJECTED
CVE-2018-9195 (Use of a hardcoded cryptographic key in the FortiGuard services commun ...)
NOT-FOR-US: FortiGuard
CVE-2018-9194 (A plaintext recovery of encrypted messages or a Man-in-the-middle (MiT ...)
@@ -532027,7 +532113,7 @@ CVE-2018-1360 (A cleartext transmission of sensitive information vulnerability i
CVE-2018-1359
RESERVED
CVE-2018-1358
- RESERVED
+ REJECTED
CVE-2018-1357
RESERVED
CVE-2018-1356 (A reflected Cross-Site-Scripting (XSS) vulnerability in Fortinet Forti ...)
@@ -532049,19 +532135,19 @@ CVE-2017-17550 (ZyXEL ZyWALL USG 2.12 AQQ.2 and 3.30 AQQ.7 devices are affected
CVE-2017-17549 (Citrix NetScaler Application Delivery Controller (ADC) and NetScaler G ...)
NOT-FOR-US: Citrix NetScaler Application Delivery Controller
CVE-2017-17548
- RESERVED
+ REJECTED
CVE-2017-17547
- RESERVED
+ REJECTED
CVE-2017-17546
- RESERVED
+ REJECTED
CVE-2017-17545
- RESERVED
+ REJECTED
CVE-2017-17544 (A privilege escalation vulnerability in Fortinet FortiOS 6.0.0 to 6.0. ...)
NOT-FOR-US: Fortinet FortiOS
CVE-2017-17543 (Users' VPN authentication credentials are unsafely encrypted in Fortin ...)
NOT-FOR-US: Fortinet FortiClient
CVE-2017-17542
- RESERVED
+ REJECTED
CVE-2017-17541 (A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6. ...)
NOT-FOR-US: Fortinet
CVE-2017-17540 (The presence of a hardcoded account in Fortinet FortiWLC 8.3.3 allows ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d8ca9d57dc96c5bce220a347cde420885a7d94c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d8ca9d57dc96c5bce220a347cde420885a7d94c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250318/e8fe54dd/attachment.htm>
More information about the debian-security-tracker-commits
mailing list