[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Apr 12 10:07:46 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d8281ce4 by Salvatore Bonaccorso at 2022-04-12T11:07:31+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3442,9 +3442,9 @@ CVE-2022-27847
CVE-2022-27846
RESERVED
CVE-2022-27845 (Authenticated (admin or higher user role) Stored Cross-Site Scripting ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-27844 (Arbitrary File Read vulnerability in WPvivid Team Migration, Backup, S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-1066
RESERVED
CVE-2022-1065
@@ -9256,9 +9256,9 @@ CVE-2022-25617
CVE-2022-25616
RESERVED
CVE-2022-25615 (Cross-Site Request Forgery (CSRF) in StylemixThemes eRoom – Zoom ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-25614 (Cross-Site Request Forgery (CSRF) in StylemixThemes eRoom – Zoom ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-25613 (Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in F ...)
NOT-FOR-US: WordPress plugin
CVE-2022-25612 (Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabi ...)
@@ -43509,7 +43509,7 @@ CVE-2021-39070 (IBM Security Verify Access 10.0.0.0, 10.0.1.0 and 10.0.2.0 with
CVE-2021-39069
RESERVED
CVE-2021-39068 (IBM Curam Social Program Management 8.0.1 and 7.0.11 is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2021-39067
RESERVED
CVE-2021-39066 (IBM Financial Transaction Manager 3.2.4 does not invalidate session an ...)
@@ -43785,9 +43785,9 @@ CVE-2021-38932
CVE-2021-38931 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 ...)
NOT-FOR-US: IBM
CVE-2021-38930 (IBM System Storage DS8000 Management Console (HMC) R8.5 88.5x.x.x, R9. ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2021-38929 (IBM System Storage DS8000 Management Console (HMC) R8.5 88.5x.x.x, R9. ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2021-38928
RESERVED
CVE-2021-38927
@@ -45856,7 +45856,7 @@ CVE-2021-38127 (Potential vulnerabilities have been identified in Micro Focus Ar
CVE-2021-38126 (Potential vulnerabilities have been identified in Micro Focus ArcSight ...)
NOT-FOR-US: Micro Focus
CVE-2021-38125 (Unauthenticated remote code execution in Micro Focus Operations Bridge ...)
- TODO: check
+ NOT-FOR-US: Micro Focus
CVE-2021-38124 (Remote Code Execution vulnerability in Micro Focus ArcSight Enterprise ...)
NOT-FOR-US: Micro Focus
CVE-2021-38123 (Open Redirect vulnerability in Micro Focus Network Automation, affecti ...)
@@ -48888,7 +48888,7 @@ CVE-2021-36912
CVE-2021-36911 (Stored Cross-Site Scripting (XSS) vulnerability discovered in WordPres ...)
NOT-FOR-US: WordPress plugin
CVE-2021-36910 (Authenticated (admin user role) Stored Cross-Site Scripting (XSS) in W ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36909 (Authenticated Database Reset vulnerability in WordPress WP Reset PRO P ...)
NOT-FOR-US: WordPress plugin
CVE-2021-36908 (Cross-Site Request Forgery (CSRF) vulnerability leading to Database Re ...)
@@ -48916,13 +48916,13 @@ CVE-2021-36898
CVE-2021-36897
RESERVED
CVE-2021-36896 (Authenticated (author or higher user role) Stored Cross-Site Scripting ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36895
RESERVED
CVE-2021-36894
RESERVED
CVE-2021-36893 (Authenticated (author or higher user role) Stored Cross-Site Scripting ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36892
RESERVED
CVE-2021-36891
@@ -49012,11 +49012,11 @@ CVE-2021-36850 (Cross-Site Request Forgery (CSRF) vulnerability in WordPress Med
CVE-2021-36849
RESERVED
CVE-2021-36848 (Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36847
RESERVED
CVE-2021-36846 (Authenticated (admin or higher user role) Stored Cross-Site Scripting ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36845 (Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabiliti ...)
NOT-FOR-US: WordPress plugin
CVE-2021-36844
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8281ce4d2dfa491cbc7d6ec15fe248930ee474f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8281ce4d2dfa491cbc7d6ec15fe248930ee474f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220412/cdbaf425/attachment.htm>
More information about the debian-security-tracker-commits
mailing list