[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Neil Williams (@codehelp)]

Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cbaceb03 by Neil Williams at 2022-06-01T10:40:12+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4455,9 +4455,9 @@ CVE-2022-1662
 	RESERVED
 	NOT-FOR-US: Red Hat convert2rhel
 CVE-2022-1661 (The affected products are vulnerable to directory traversal, which may ...)
-	TODO: check
+	NOT-FOR-US: Keysight N6854A and N6841A
 CVE-2022-1660 (The affected products are vulnerable of untrusted data due to deserial ...)
-	TODO: check
+	NOT-FOR-US: Keysight N6854A and N6841A
 CVE-2022-1659
 	RESERVED
 CVE-2022-1658
@@ -5110,9 +5110,9 @@ CVE-2022-30298
 CVE-2022-29509
 	RESERVED
 CVE-2022-29483 (Incorrect Default Permissions vulnerability in ABB e-Design allows att ...)
-	TODO: check
+	NOT-FOR-US: ABB e-Design
 CVE-2022-28702 (Incorrect Default Permissions vulnerability in ABB e-Design allows att ...)
-	TODO: check
+	NOT-FOR-US: ABB e-Design
 CVE-2022-1615
 	RESERVED
 CVE-2022-1614
@@ -9108,7 +9108,7 @@ CVE-2022-28947
 CVE-2022-28946 (An issue in the component ast/parser.go of Open Policy Agent v0.39.0 c ...)
 	NOT-FOR-US: Open Policy Agent
 CVE-2022-28945 (An issue in Webbank WeCube v3.2.2 allows attackers to execute a direct ...)
-	TODO: check
+	NOT-FOR-US: Webbank WeCube
 CVE-2022-28944 (Certain EMCO Software products are affected by: CWE-494: Download of C ...)
 	NOT-FOR-US: EMCO
 CVE-2022-28943
@@ -9436,7 +9436,7 @@ CVE-2022-28801
 CVE-2022-28800
 	RESERVED
 CVE-2022-28799 (The TikTok application before 23.8.4 for Android allows account takeov ...)
-	TODO: check
+	NOT-FOR-US: TikTok Android app
 CVE-2022-28798
 	RESERVED
 CVE-2022-28797
@@ -10047,7 +10047,7 @@ CVE-2022-28607
 CVE-2022-28606 (An arbitrary file upload vulnerability exists in Wenzhou Huoyin Inform ...)
 	NOT-FOR-US: BossCMS
 CVE-2022-28605 (LinkPlay Sound Bar v1.0 allows attackers to escalate privileges via a  ...)
-	TODO: check
+	NOT-FOR-US: LinkPlay Sound Bar
 CVE-2022-28604
 	RESERVED
 CVE-2022-28603
@@ -21707,7 +21707,7 @@ CVE-2022-24583
 CVE-2022-24582 (Accounting Journal Management 1.0 is vulnerable to XSS-PHPSESSID-Hijac ...)
 	NOT-FOR-US: Accounting Journal Management
 CVE-2022-24581 (ACEweb Online Portal 3.5.065 allows unauthenticated SMB hash capture v ...)
-	TODO: check
+	NOT-FOR-US: ACEweb Online Portal
 CVE-2022-24580
 	RESERVED
 CVE-2022-24579
@@ -27207,7 +27207,7 @@ CVE-2022-23084
 CVE-2022-23083 (NetMaster 12.2 Network Management for TCP/IP and NetMaster File Transf ...)
 	NOT-FOR-US: NetMaster
 CVE-2022-23082 (In CureKit versions v1.0.1 through v1.1.3 are vulnerable to path trave ...)
-	TODO: check
+	NOT-FOR-US: WhiteSource CureKit
 CVE-2022-23081
 	RESERVED
 CVE-2022-23080



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cbaceb033033ce5a5a43593cf29a05ecb948bbfd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cbaceb033033ce5a5a43593cf29a05ecb948bbfd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220601/7fd2a5db/attachment-0001.htm>