[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Dec 13 08:53:25 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
86372bdd by Salvatore Bonaccorso at 2022-12-13T09:53:01+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19452,35 +19452,35 @@ CVE-2022-41277
 CVE-2022-41276
 	RESERVED
 CVE-2022-41275 (In SAP Solution Manager (Enterprise Search) - versions 740, and 750, a ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41274 (SAP Disclosure Management - version 10.1, allows an authenticated atta ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41273 (Due to improper input sanitization in SAP Sourcing and SAP Contract Li ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41272 (An unauthenticated attacker over the network can attach to an open int ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41271 (An unauthenticated user can attach to an open interface exposed throug ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41270
 	RESERVED
 CVE-2022-41269
 	RESERVED
 CVE-2022-41268 (In some SAP standard roles in SAP Business Planning and Consolidation  ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41267 (SAP Business Objects Platform - versions 420, and 430, allows an attac ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41266 (Due to a lack of proper input validation, SAP Commerce Webservices 2.0 ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41265
 	RESERVED
 CVE-2022-41264 (Due to the unrestricted scope of the RFC function module, SAP BASIS -  ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41263 (Due to a missing authentication check, SAP Business Objects Business I ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41262 (Due to insufficient input validation, SAP NetWeaver AS Java (HTTP Prov ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41261 (SAP Solution Manager (Diagnostic Agent) - version 7.20, allows an auth ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2022-41260 (SAP Financial Consolidation - version 1010, does not sufficiently enco ...)
 	NOT-FOR-US: SAP
 CVE-2022-41259 (SAP SQL Anywhere - version 17.0, allows an authenticated attacker to p ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/86372bdd9f1092eccffdc1f020bfa528b30b6488

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/86372bdd9f1092eccffdc1f020bfa528b30b6488
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221213/8362197e/attachment.htm>

More information about the debian-security-tracker-commits mailing list