Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 0b8ac524 by Salvatore Bonaccorso at 2022-02-24T09:41:09+01:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -992,17 +992,17 @@ CVE-2022-25408 CVE-2022-25407 RESERVED CVE-2022-25406 (Tongda2000 v11.10 was discovered to contain a SQL injection vulnerabil ...) - TODO: check + NOT-FOR-US: Tongda2000 CVE-2022-25405 (Tongda2000 v11.10 was discovered to contain a SQL injection vulnerabil ...) - TODO: check + NOT-FOR-US: Tongda2000 CVE-2022-25404 (Tongda2000 v11.10 was discovered to contain a SQL injection vulnerabil ...) - TODO: check + NOT-FOR-US: Tongda2000 CVE-2022-25403 (HMS v1.0 was discovered to contain a SQL injection vulnerability via t ...) - TODO: check + NOT-FOR-US: HMS CVE-2022-25402 (An incorrect access control issue in HMS v1.0 allows unauthenticated a ...) - TODO: check + NOT-FOR-US: HMS CVE-2022-25401 (The copy function of the file manager in Cuppa CMS v1.0 allows any fil ...) - TODO: check + NOT-FOR-US: Cuppa CMS CVE-2022-25400 RESERVED CVE-2022-25399 @@ -1134,13 +1134,13 @@ CVE-2022-25365 (Docker Desktop before 4.5.1 on Windows allows attackers to move CVE-2022-25364 RESERVED CVE-2022-25363 (WatchGuard Firebox and XTM appliances allow an authenticated remote at ...) - TODO: check + NOT-FOR-US: WatchGuard CVE-2022-25362 RESERVED CVE-2022-25361 RESERVED CVE-2022-25360 (WatchGuard Firebox and XTM appliances allow an authenticated remote at ...) - TODO: check + NOT-FOR-US: WatchGuard CVE-2022-25359 RESERVED CVE-2022-25358 (A ..%2F path traversal vulnerability exists in the path handler of awf ...) @@ -1348,13 +1348,13 @@ CVE-2022-25295 CVE-2022-25294 RESERVED CVE-2022-25293 (A systemd stack-based buffer overflow in WatchGuard Firebox and XTM ap ...) - TODO: check + NOT-FOR-US: WatchGuard CVE-2022-25292 (A wgagent stack-based buffer overflow in WatchGuard Firebox and XTM ap ...) - TODO: check + NOT-FOR-US: WatchGuard CVE-2022-25291 (An integer overflow in WatchGuard Firebox and XTM appliances allows an ...) - TODO: check + NOT-FOR-US: WatchGuard CVE-2022-25290 (WatchGuard Firebox and XTM appliances allow an authenticated remote at ...) - TODO: check + NOT-FOR-US: WatchGuard CVE-2022-25289 RESERVED CVE-2022-25288 @@ -1982,19 +1982,19 @@ CVE-2022-25106 CVE-2022-25105 RESERVED CVE-2022-25104 (HorizontCMS v1.0.0-beta.2 was discovered to contain an arbitrary file ...) - TODO: check + NOT-FOR-US: HorizontCMS CVE-2022-25103 RESERVED CVE-2022-25102 RESERVED CVE-2022-25101 (A vulnerability in the component /templates/install.php of WBCE CMS v1 ...) - TODO: check + NOT-FOR-US: WBCE CMS CVE-2022-25100 RESERVED CVE-2022-25099 (A vulnerability in the component /languages/index.php of WBCE CMS v1.5 ...) - TODO: check + NOT-FOR-US: WBCE CMS CVE-2022-25098 (ECTouch v2 suffers from arbitrary file deletion due to insufficient fi ...) - TODO: check + NOT-FOR-US: ECTouch CVE-2022-25097 RESERVED CVE-2022-25096 @@ -3629,7 +3629,7 @@ CVE-2022-24411 CVE-2022-24410 RESERVED CVE-2022-24409 (Only customers with active BSAFE maintenance contracts can receive det ...) - TODO: check + NOT-FOR-US: Dell CVE-2022-24380 RESERVED CVE-2022-22147 @@ -6613,7 +6613,7 @@ CVE-2022-23657 CVE-2022-23656 RESERVED CVE-2022-23655 (Octobercms is a self-hosted CMS platform based on the Laravel PHP Fram ...) - TODO: check + NOT-FOR-US: October CMS CVE-2022-23654 (Wiki.js is a wiki app built on Node.js. In affected versions an authen ...) NOT-FOR-US: Wiki.js CVE-2022-23653 (B2 Command Line Tool is the official command line tool for the backbla ...) @@ -8339,7 +8339,7 @@ CVE-2022-23178 (An issue was discovered on Crestron HD-MD4X2-4K-E 1.0.0.2159 dev CVE-2022-23177 RESERVED CVE-2022-23176 (WatchGuard Firebox and XTM appliances allow a remote attacker with unp ...) - TODO: check + NOT-FOR-US: WatchGuard CVE-2022-23175 RESERVED CVE-2022-23174 @@ -12440,7 +12440,7 @@ CVE-2021-45748 CVE-2021-45747 RESERVED CVE-2021-45746 (A Directory Traversal vulnerability exists in WeBankPartners wecube-pl ...) - TODO: check + NOT-FOR-US: WeBankPartners CVE-2021-45745 (A Stored Cross Site Scripting (XSS) vulnerability exists in Bludit 3.1 ...) NOT-FOR-US: Bludit CVE-2021-45744 (A Stored Cross Site Scripting (XSS) vulnerability exists in bludit 3.1 ...) @@ -16484,7 +16484,7 @@ CVE-2021-44612 CVE-2021-44611 RESERVED CVE-2021-44610 (Multiple SQL Injection vulnerabilities exist in bloofoxCMS 0.5.2.1 - 0 ...) - TODO: check + NOT-FOR-US: bloofoxCMS CVE-2021-44609 RESERVED CVE-2021-44608 (Multiple Cross Site Scripting (XSS) vulnerabilities exists in bloofoxC ...) @@ -18867,7 +18867,7 @@ CVE-2021-43945 CVE-2021-43944 RESERVED CVE-2021-43943 (Affected versions of Atlassian Jira Service Management Server and Data ...) - TODO: check + NOT-FOR-US: Atlassian CVE-2021-43942 (Affected versions of Atlassian Jira Server and Data Center allow remot ...) NOT-FOR-US: Atlassian CVE-2021-43941 (Affected versions of Atlassian Jira Server and Data Center allow remot ...) @@ -42413,7 +42413,7 @@ CVE-2021-35691 CVE-2021-35690 RESERVED CVE-2021-35689 (A potential vulnerability in the Oracle Talent Acquisition Cloud - Tal ...) - TODO: check + NOT-FOR-US: Oracle CVE-2021-35688 RESERVED CVE-2021-35687 (Vulnerability in the Oracle Financial Services Analytical Applications ...) @@ -66751,7 +66751,7 @@ CVE-2021-26094 CVE-2021-26093 RESERVED CVE-2021-26092 (Failure to sanitize input in the SSL VPN web portal of FortiOS 5.2.10 ...) - TODO: check + NOT-FOR-US: FortiGuard CVE-2021-26091 RESERVED CVE-2021-26090 (A missing release of memory after its effective lifetime vulnerability ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b8ac524075619b9a1a96b36c12947066dce5bfb -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b8ac524075619b9a1a96b36c12947066dce5bfb You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits