[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Feb 24 08:41:32 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0b8ac524 by Salvatore Bonaccorso at 2022-02-24T09:41:09+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -992,17 +992,17 @@ CVE-2022-25408
CVE-2022-25407
RESERVED
CVE-2022-25406 (Tongda2000 v11.10 was discovered to contain a SQL injection vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Tongda2000
CVE-2022-25405 (Tongda2000 v11.10 was discovered to contain a SQL injection vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Tongda2000
CVE-2022-25404 (Tongda2000 v11.10 was discovered to contain a SQL injection vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Tongda2000
CVE-2022-25403 (HMS v1.0 was discovered to contain a SQL injection vulnerability via t ...)
- TODO: check
+ NOT-FOR-US: HMS
CVE-2022-25402 (An incorrect access control issue in HMS v1.0 allows unauthenticated a ...)
- TODO: check
+ NOT-FOR-US: HMS
CVE-2022-25401 (The copy function of the file manager in Cuppa CMS v1.0 allows any fil ...)
- TODO: check
+ NOT-FOR-US: Cuppa CMS
CVE-2022-25400
RESERVED
CVE-2022-25399
@@ -1134,13 +1134,13 @@ CVE-2022-25365 (Docker Desktop before 4.5.1 on Windows allows attackers to move
CVE-2022-25364
RESERVED
CVE-2022-25363 (WatchGuard Firebox and XTM appliances allow an authenticated remote at ...)
- TODO: check
+ NOT-FOR-US: WatchGuard
CVE-2022-25362
RESERVED
CVE-2022-25361
RESERVED
CVE-2022-25360 (WatchGuard Firebox and XTM appliances allow an authenticated remote at ...)
- TODO: check
+ NOT-FOR-US: WatchGuard
CVE-2022-25359
RESERVED
CVE-2022-25358 (A ..%2F path traversal vulnerability exists in the path handler of awf ...)
@@ -1348,13 +1348,13 @@ CVE-2022-25295
CVE-2022-25294
RESERVED
CVE-2022-25293 (A systemd stack-based buffer overflow in WatchGuard Firebox and XTM ap ...)
- TODO: check
+ NOT-FOR-US: WatchGuard
CVE-2022-25292 (A wgagent stack-based buffer overflow in WatchGuard Firebox and XTM ap ...)
- TODO: check
+ NOT-FOR-US: WatchGuard
CVE-2022-25291 (An integer overflow in WatchGuard Firebox and XTM appliances allows an ...)
- TODO: check
+ NOT-FOR-US: WatchGuard
CVE-2022-25290 (WatchGuard Firebox and XTM appliances allow an authenticated remote at ...)
- TODO: check
+ NOT-FOR-US: WatchGuard
CVE-2022-25289
RESERVED
CVE-2022-25288
@@ -1982,19 +1982,19 @@ CVE-2022-25106
CVE-2022-25105
RESERVED
CVE-2022-25104 (HorizontCMS v1.0.0-beta.2 was discovered to contain an arbitrary file ...)
- TODO: check
+ NOT-FOR-US: HorizontCMS
CVE-2022-25103
RESERVED
CVE-2022-25102
RESERVED
CVE-2022-25101 (A vulnerability in the component /templates/install.php of WBCE CMS v1 ...)
- TODO: check
+ NOT-FOR-US: WBCE CMS
CVE-2022-25100
RESERVED
CVE-2022-25099 (A vulnerability in the component /languages/index.php of WBCE CMS v1.5 ...)
- TODO: check
+ NOT-FOR-US: WBCE CMS
CVE-2022-25098 (ECTouch v2 suffers from arbitrary file deletion due to insufficient fi ...)
- TODO: check
+ NOT-FOR-US: ECTouch
CVE-2022-25097
RESERVED
CVE-2022-25096
@@ -3629,7 +3629,7 @@ CVE-2022-24411
CVE-2022-24410
RESERVED
CVE-2022-24409 (Only customers with active BSAFE maintenance contracts can receive det ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2022-24380
RESERVED
CVE-2022-22147
@@ -6613,7 +6613,7 @@ CVE-2022-23657
CVE-2022-23656
RESERVED
CVE-2022-23655 (Octobercms is a self-hosted CMS platform based on the Laravel PHP Fram ...)
- TODO: check
+ NOT-FOR-US: October CMS
CVE-2022-23654 (Wiki.js is a wiki app built on Node.js. In affected versions an authen ...)
NOT-FOR-US: Wiki.js
CVE-2022-23653 (B2 Command Line Tool is the official command line tool for the backbla ...)
@@ -8339,7 +8339,7 @@ CVE-2022-23178 (An issue was discovered on Crestron HD-MD4X2-4K-E 1.0.0.2159 dev
CVE-2022-23177
RESERVED
CVE-2022-23176 (WatchGuard Firebox and XTM appliances allow a remote attacker with unp ...)
- TODO: check
+ NOT-FOR-US: WatchGuard
CVE-2022-23175
RESERVED
CVE-2022-23174
@@ -12440,7 +12440,7 @@ CVE-2021-45748
CVE-2021-45747
RESERVED
CVE-2021-45746 (A Directory Traversal vulnerability exists in WeBankPartners wecube-pl ...)
- TODO: check
+ NOT-FOR-US: WeBankPartners
CVE-2021-45745 (A Stored Cross Site Scripting (XSS) vulnerability exists in Bludit 3.1 ...)
NOT-FOR-US: Bludit
CVE-2021-45744 (A Stored Cross Site Scripting (XSS) vulnerability exists in bludit 3.1 ...)
@@ -16484,7 +16484,7 @@ CVE-2021-44612
CVE-2021-44611
RESERVED
CVE-2021-44610 (Multiple SQL Injection vulnerabilities exist in bloofoxCMS 0.5.2.1 - 0 ...)
- TODO: check
+ NOT-FOR-US: bloofoxCMS
CVE-2021-44609
RESERVED
CVE-2021-44608 (Multiple Cross Site Scripting (XSS) vulnerabilities exists in bloofoxC ...)
@@ -18867,7 +18867,7 @@ CVE-2021-43945
CVE-2021-43944
RESERVED
CVE-2021-43943 (Affected versions of Atlassian Jira Service Management Server and Data ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2021-43942 (Affected versions of Atlassian Jira Server and Data Center allow remot ...)
NOT-FOR-US: Atlassian
CVE-2021-43941 (Affected versions of Atlassian Jira Server and Data Center allow remot ...)
@@ -42413,7 +42413,7 @@ CVE-2021-35691
CVE-2021-35690
RESERVED
CVE-2021-35689 (A potential vulnerability in the Oracle Talent Acquisition Cloud - Tal ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2021-35688
RESERVED
CVE-2021-35687 (Vulnerability in the Oracle Financial Services Analytical Applications ...)
@@ -66751,7 +66751,7 @@ CVE-2021-26094
CVE-2021-26093
RESERVED
CVE-2021-26092 (Failure to sanitize input in the SSL VPN web portal of FortiOS 5.2.10 ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2021-26091
RESERVED
CVE-2021-26090 (A missing release of memory after its effective lifetime vulnerability ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b8ac524075619b9a1a96b36c12947066dce5bfb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b8ac524075619b9a1a96b36c12947066dce5bfb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220224/299db452/attachment.htm>
More information about the debian-security-tracker-commits
mailing list