[Git][security-tracker-team/security-tracker][master] NFUs

Tue, 30 Apr 2024 01:44:23 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
e21e522e by Moritz Muehlenhoff at 2024-04-30T10:43:40+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,59 +5,59 @@ CVE-2024-4226 (It was identified that in certain versions of 
Octopus Server, tha
 CVE-2024-4225 (Multiple security vulnerabilities has been discovered in web 
interface ...)
        NOT-FOR-US: NetGuardian DIN Remote Telemetry Unit (RTU)
 CVE-2024-34050 (Open Networking Foundation SD-RAN Rimedo rimedo-ts 0.1.1 has a 
slice b ...)
-       TODO: check
+       NOT-FOR-US: Open Networking Foundation SD-RAN Rimedo rimedo-ts
 CVE-2024-34049 (Open Networking Foundation SD-RAN Rimedo rimedo-ts 0.1.1 has a 
slice b ...)
-       TODO: check
+       NOT-FOR-US: Open Networking Foundation SD-RAN Rimedo rimedo-ts
 CVE-2024-34048 (O-RAN RIC I-Release e2mgr lacks array size checks in 
E2nodeConfigUpdat ...)
        NOT-FOR-US: O-RAN RIC I-Release e2mgr
 CVE-2024-34047 (O-RAN RIC I-Release e2mgr lacks array size checks in 
RicServiceUpdateH ...)
        NOT-FOR-US: O-RAN RIC I-Release e2mgr
 CVE-2024-34046 (The O-RAN E2T I-Release Prometheus metric Increment function 
can crash ...)
-       TODO: check
+       NOT-FOR-US: O-RAN
 CVE-2024-34045 (The O-RAN E2T I-Release Prometheus metric Increment function 
can crash ...)
-       TODO: check
+       NOT-FOR-US: O-RAN
 CVE-2024-34044 (The O-RAN E2T I-Release buildPrometheusList function can have 
a NULL p ...)
-       TODO: check
+       NOT-FOR-US: O-RAN
 CVE-2024-34043 (O-RAN RICAPP kpimon-go I-Release has a segmentation violation 
via a ce ...)
-       TODO: check
+       NOT-FOR-US: O-RAN
 CVE-2024-33522 (In vulnerable versions of Calico (v3.27.2 and below), Calico 
Enterpris ...)
        TODO: check
 CVE-2024-33401 (Cross Site Scripting vulnerability in DedeCMS v.5.7.113 allows 
a remot ...)
-       TODO: check
+       NOT-FOR-US: DedeCMS
 CVE-2024-33350 (Directory Traversal vulnerability in TaoCMS v.3.0.2 allows a 
remote at ...)
-       TODO: check
+       NOT-FOR-US: TaoCMS
 CVE-2024-31837 (DMitry (Deepmagic Information Gathering Tool) 1.3a has a 
format-string ...)
        TODO: check
 CVE-2024-28294 (Limbas up to v5.2.14 was discovered to contain a SQL injection 
vulnera ...)
-       TODO: check
+       NOT-FOR-US: Limbas
 CVE-2024-27518 (An issue in SUPERAntiSyware Professional X 10.0.1262 and 
10.0.1264 all ...)
-       TODO: check
+       NOT-FOR-US: SUPERAntiSyware Professional X
 CVE-2024-1371 (The LeadConnector plugin for WordPress is vulnerable to 
unauthorized m ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-0216 (The Google Doc Embedder plugin for WordPress is vulnerable to 
Server S ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2023-52728 (Open Networking Foundation SD-RAN ONOS onos-lib-go 0.10.25 
allows an i ...)
-       TODO: check
+       NOT-FOR-US: onos-lib-go
 CVE-2023-52727 (Open Networking Foundation SD-RAN ONOS onos-lib-go 0.10.25 
allows an i ...)
-       TODO: check
+       NOT-FOR-US: onos-lib-go
 CVE-2023-52726 (Open Networking Foundation SD-RAN ONOS onos-ric-sdk-go 0.8.12 
allows i ...)
-       TODO: check
+       NOT-FOR-US: onos-ric-sdk-go
 CVE-2023-52725 (Open Networking Foundation SD-RAN ONOS onos-kpimon 0.4.7 
allows blocki ...)
-       TODO: check
+       NOT-FOR-US: onos-kpimon
 CVE-2023-52724 (Open Networking Foundation SD-RAN onos-kpimon 0.4.7 allows 
out-of-boun ...)
-       TODO: check
+       NOT-FOR-US: onos-kpimon
 CVE-2023-50434 (emdns_resolve_raw in emdns.c in emdns through fbd1eef calls 
strlen wit ...)
-       TODO: check
+       NOT-FOR-US: emdns
 CVE-2023-50433 (marshall in dhcp_packet.c in simple-dhcp-server through 
ec976d2 allows ...)
-       TODO: check
+       NOT-FOR-US: simple-dhcp-server
 CVE-2023-50432 (simple-dhcp-server through ec976d2 allows remote attackers to 
cause a  ...)
-       TODO: check
+       NOT-FOR-US: simple-dhcp-server
 CVE-2023-46960 (Buffer Overflow vulnerability in PyPXE v.1.8.4 allows a remote 
attacke ...)
        TODO: check
 CVE-2023-46566 (Buffer Overflow vulnerability in msoulier tftpy commit 
467017b844bf6e3 ...)
        TODO: check
 CVE-2023-31889 (An issue discovered in httpd in ASUS RT-AC51U with firmware 
version up ...)
-       TODO: check
+       NOT-FOR-US: ASUS
 CVE-2024-4310 (Cross-site Scripting (XSS) vulnerability in HubBank affecting 
version  ...)
        NOT-FOR-US: HubBank
 CVE-2024-4309 (SQL injection vulnerability in HubBank affecting version 1.0.2. 
This v ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e21e522e802fe281b76ffd02aec9554b9339bba4

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e21e522e802fe281b76ffd02aec9554b9339bba4
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to