[Git][security-tracker-team/security-tracker][master] Process some NFUs

Thu Dec 1 15:19:09 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e5f2fc2b by Salvatore Bonaccorso at 2022-12-01T16:18:45+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -580,7 +580,7 @@ CVE-2022-46164
 CVE-2022-46163
 	RESERVED
 CVE-2022-46162 (discourse-bbcode is the official BBCode plugin for Discourse. Prior to ...)
-	TODO: check
+	NOT-FOR-US: BBCode plugin for Discourse
 CVE-2022-46161
 	RESERVED
 CVE-2022-46160
@@ -1352,7 +1352,7 @@ CVE-2022-45844
 CVE-2022-45843
 	RESERVED
 CVE-2022-45842 (Unauth. Race Condition vulnerability in WP ULike Plugin <= 4.6.4 on ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-45841
 	RESERVED
 CVE-2022-45840
@@ -3846,7 +3846,7 @@ CVE-2022-3892
 CVE-2022-3891
 	RESERVED
 CVE-2022-45045 (Multiple Xiongmai NVR devices, including MBD6304T V4.02.R11.00000117.1 ...)
-	TODO: check
+	NOT-FOR-US: Xiongmai
 CVE-2022-3890 (Heap buffer overflow in Crashpad in Google Chrome on Android prior to  ...)
 	{DSA-5275-1}
 	- chromium 107.0.5304.110-1
@@ -4648,7 +4648,7 @@ CVE-2022-3861 (The Betheme theme for WordPress is vulnerable to PHP Object Injec
 CVE-2022-3860
 	RESERVED
 CVE-2022-3859 (An uncontrolled search path vulnerability exists in Trellix Agent (TA) ...)
-	TODO: check
+	NOT-FOR-US: Trellix
 CVE-2022-3858
 	RESERVED
 CVE-2022-3857 [Null pointer dereference leads to segmentation fault]
@@ -6287,9 +6287,9 @@ CVE-2022-44535
 CVE-2022-44534
 	RESERVED
 CVE-2022-44533 (A vulnerability in the Aruba EdgeConnect Enterprise web management int ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2022-44532 (An authenticated path traversal vulnerability exists in the Aruba Edge ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2022-3785 (A vulnerability, which was classified as critical, has been found in A ...)
 	NOT-FOR-US: Bento4
 CVE-2022-3784 (A vulnerability classified as critical was found in Axiomatic Bento4 5 ...)
@@ -6829,11 +6829,11 @@ CVE-2022-44298
 CVE-2022-44297
 	RESERVED
 CVE-2022-44296 (Sanitization Management System v1.0 is vulnerable to SQL Injection via ...)
-	TODO: check
+	NOT-FOR-US: Sanitization Management System
 CVE-2022-44295 (Sanitization Management System v1.0 is vulnerable to SQL Injection via ...)
-	TODO: check
+	NOT-FOR-US: Sanitization Management System
 CVE-2022-44294 (Sanitization Management System v1.0 is vulnerable to SQL Injection via ...)
-	TODO: check
+	NOT-FOR-US: Sanitization Management System
 CVE-2022-44293
 	RESERVED
 CVE-2022-44292
@@ -7119,7 +7119,7 @@ CVE-2022-44153
 CVE-2022-44152
 	RESERVED
 CVE-2022-44151 (Simple Inventory Management System v1.0 is vulnerable to SQL Injection ...)
-	TODO: check
+	NOT-FOR-US: Simple Inventory Management System
 CVE-2022-44150
 	RESERVED
 CVE-2022-44149
@@ -7149,7 +7149,7 @@ CVE-2022-44138
 CVE-2022-44137
 	RESERVED
 CVE-2022-44136 (Zenario CMS 9.3.57186 is vulnerable to Remote Code Excution (RCE). ...)
-	TODO: check
+	NOT-FOR-US: Zenario CMS
 CVE-2022-44135
 	RESERVED
 CVE-2022-44134
@@ -10375,9 +10375,9 @@ CVE-2022-43546 (A vulnerability has been identified in POWER METER SICAM Q100 (A
 CVE-2022-43545 (A vulnerability has been identified in POWER METER SICAM Q100 (All ver ...)
 	NOT-FOR-US: Siemens
 CVE-2022-43542 (Vulnerabilities in the Aruba EdgeConnect Enterprise command line inter ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2022-43541 (Vulnerabilities in the Aruba EdgeConnect Enterprise command line inter ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2022-43540
 	RESERVED
 CVE-2022-43539
@@ -10423,7 +10423,7 @@ CVE-2022-43520
 CVE-2022-43519
 	RESERVED
 CVE-2022-43518 (An authenticated path traversal vulnerability exists in the Aruba Edge ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2022-43517
 	RESERVED
 CVE-2022-43516



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5f2fc2ba07c835f4c8411b3722dd16661c85db0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5f2fc2ba07c835f4c8411b3722dd16661c85db0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221201/08b7c3e2/attachment.htm>
