Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ebd52e54 by Salvatore Bonaccorso at 2023-11-15T10:27:17+01:00
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -85,11 +85,11 @@ CVE-2023-47125 (TYPO3 is an open source PHP based web
content management system
CVE-2023-46672 (An issue was identified by Elastic whereby sensitive
information is re ...)
TODO: check
CVE-2023-46582 (SQL injection vulnerability in Inventory Management v.1.0
allows a loc ...)
- TODO: check
+ NOT-FOR-US: Inventory Management
CVE-2023-46581 (SQL injection vulnerability in Inventory Management v.1.0
allows a loc ...)
- TODO: check
+ NOT-FOR-US: Inventory Management
CVE-2023-46580 (Cross-Site Scripting (XSS) vulnerability in Inventory
Management V1.0 ...)
- TODO: check
+ NOT-FOR-US: Inventory Management
CVE-2023-46132 (Hyperledger Fabric is an open source permissioned distributed
ledger f ...)
TODO: check
CVE-2023-46121 (yt-dlp is a youtube-dl fork with additional features and
fixes. The Ge ...)
@@ -98,61 +98,61 @@ CVE-2023-46121 (yt-dlp is a youtube-dl fork with additional
features and fixes.
NOTE:
https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-3ch3-jhc6-5r8x
NOTE:
https://github.com/yt-dlp/yt-dlp/commit/f04b5bedad7b281bee9814686bba1762bae092eb
CVE-2023-46026 (Cross Site Scripting (XSS) vulnerability in profile.php in
phpgurukul ...)
- TODO: check
+ NOT-FOR-US: phpgurukul
CVE-2023-46025 (SQL Injection vulnerability in teacher-info.php in phpgurukul
Teacher ...)
- TODO: check
+ NOT-FOR-US: phpgurukul
CVE-2023-46024 (SQL Injection vulnerability in index.php in phpgurukul Teacher
Subject ...)
- TODO: check
+ NOT-FOR-US: phpgurukul
CVE-2023-46023 (SQL injection vulnerability in addTask.php in Code-Projects
Simple Tas ...)
- TODO: check
+ NOT-FOR-US: Code-Projects Simple Task List
CVE-2023-46022 (SQL Injection vulnerability in delete.php in Code-Projects
Blood Bank ...)
- TODO: check
+ NOT-FOR-US: Code-Projects Blood Bank
CVE-2023-45627 (An authenticated Denial-of-Service (DoS) vulnerability exists
in the C ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45626 (An authenticated vulnerability has been identified allowing an
attacke ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45625 (Multiple authenticated command injection vulnerabilities exist
in the ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45624 (An unauthenticated Denial-of-Service (DoS) vulnerability
exists in the ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45623 (Unauthenticated Denial-of-Service (DoS) vulnerabilities exist
in the W ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45622 (Unauthenticated Denial-of-Service (DoS) vulnerabilities exist
in the B ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45621 (Unauthenticated Denial-of-Service (DoS) vulnerabilities exist
in the C ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45620 (Unauthenticated Denial-of-Service (DoS) vulnerabilities exist
in the C ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45619 (There is an arbitrary file deletion vulnerability in the RSSI
service ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45618 (There are arbitrary file deletion vulnerabilities in the
AirWave clien ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45617 (There are arbitrary file deletion vulnerabilities in the CLI
service a ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45616 (There is a buffer overflow vulnerability in the underlying
AirWave cli ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45615 (There are buffer overflow vulnerabilities in the underlying
CLI servic ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-45614 (There are buffer overflow vulnerabilities in the underlying
CLI servic ...)
- TODO: check
+ NOT-FOR-US: Aruba
CVE-2023-43979 (ETS Soft ybc_blog before v4.4.0 was discovered to contain a
SQL inject ...)
TODO: check
CVE-2023-43591 (Improper privilege management in Zoom Rooms for macOS before
version ...)
- TODO: check
+ NOT-FOR-US: Zoom
CVE-2023-43590 (Link following in Zoom Rooms for macOS before version 5.16.0
may allo ...)
- TODO: check
+ NOT-FOR-US: Zoom
CVE-2023-43588 (Insufficient control flow management in some Zoom clients may
allow an ...)
- TODO: check
+ NOT-FOR-US: Zoom
CVE-2023-43582 (Improper authorization in some Zoom clients may allow an
authorized us ...)
- TODO: check
+ NOT-FOR-US: Zoom
CVE-2023-41718 (When a particular process flow is initiated, an attacker may
be able t ...)
- TODO: check
+ NOT-FOR-US: Ivanti
CVE-2023-41597 (EyouCms v1.6.2 was discovered to contain a reflected
cross-site script ...)
TODO: check
CVE-2023-41570 (MikroTik RouterOS v7.1 to 7.11 was discovered to contain
incorrect acc ...)
- TODO: check
+ NOT-FOR-US: MikroTik
CVE-2023-40923 (MyPrestaModules ordersexport before v5.0 was discovered to
contain mul ...)
- TODO: check
+ NOT-FOR-US: MyPrestaModules ordersexport
CVE-2023-39537 (AMI AptioV contains a vulnerability in BIOS where an Attacker
may use ...)
TODO: check
CVE-2023-39536 (AMI AptioV contains a vulnerability in BIOS where an Attacker
may use ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ebd52e54372af0589b1fc0e0f8ed2bcb6929add8
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ebd52e54372af0589b1fc0e0f8ed2bcb6929add8
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
