[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jun 3 09:38:45 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3da94f98 by Salvatore Bonaccorso at 2022-06-03T10:38:02+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -716,17 +716,17 @@ CVE-2022-31973 (Online Fire Reporting System v1.0 is vulnerable to Delete any fi
 CVE-2022-31972
 	RESERVED
 CVE-2022-31971 (ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /s ...)
-	TODO: check
+	NOT-FOR-US: ChatBot App with Suggestion
 CVE-2022-31970 (ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /s ...)
-	TODO: check
+	NOT-FOR-US: ChatBot App with Suggestion
 CVE-2022-31969 (ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /s ...)
-	TODO: check
+	NOT-FOR-US: ChatBot App with Suggestion
 CVE-2022-31968
 	RESERVED
 CVE-2022-31967
 	RESERVED
 CVE-2022-31966 (ChatBot App with Suggestion v1.0 is vulnerable to Delete any file via  ...)
-	TODO: check
+	NOT-FOR-US: ChatBot App with Suggestion
 CVE-2022-31965 (Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection  ...)
 	NOT-FOR-US: Rescue Dispatch Management System
 CVE-2022-31964 (Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection  ...)
@@ -2280,15 +2280,15 @@ CVE-2022-31465
 CVE-2022-31464
 	RESERVED
 CVE-2022-31463 (Owl Labs Meeting Owl 5.2.0.15 does not require a password for Bluetoot ...)
-	TODO: check
+	NOT-FOR-US: Owl Labs Meeting Owl
 CVE-2022-31462 (Owl Labs Meeting Owl 5.2.0.15 allows attackers to control the device v ...)
-	TODO: check
+	NOT-FOR-US: Owl Labs Meeting Owl
 CVE-2022-31461 (Owl Labs Meeting Owl 5.2.0.15 allows attackers to deactivate the passc ...)
-	TODO: check
+	NOT-FOR-US: Owl Labs Meeting Owl
 CVE-2022-31460 (Owl Labs Meeting Owl 5.2.0.15 allows attackers to activate Tethering M ...)
-	TODO: check
+	NOT-FOR-US: Owl Labs Meeting Owl
 CVE-2022-31459 (Owl Labs Meeting Owl 5.2.0.15 allows attackers to retrieve the passcod ...)
-	TODO: check
+	NOT-FOR-US: Owl Labs Meeting Owl
 CVE-2022-31458
 	RESERVED
 CVE-2022-31457
@@ -4887,7 +4887,7 @@ CVE-2022-30520
 CVE-2022-30519
 	RESERVED
 CVE-2022-30518 (ChatBot Application with a Suggestion Feature 1.0 was discovered to co ...)
-	TODO: check
+	NOT-FOR-US: ChatBot Application with a Suggestion Feature
 CVE-2022-30517
 	RESERVED
 CVE-2022-30516 (In Hospital-Management-System v1.0, the editid parameter in the doctor ...)
@@ -5065,7 +5065,7 @@ CVE-2022-30431
 CVE-2022-30430
 	RESERVED
 CVE-2022-30429 (Multiple cross-site scripting (XSS) vulnerabilities in Neos CMS allow  ...)
-	TODO: check
+	NOT-FOR-US: Neos CMS
 CVE-2022-30428 (In ginadmin through 05-10-2022, the incoming path value is not filtere ...)
 	NOT-FOR-US: ginadmin
 CVE-2022-30427 (In ginadmin through 05-10-2022 the incoming path value is not filtered ...)
@@ -7246,7 +7246,7 @@ CVE-2022-29706
 CVE-2022-29705
 	RESERVED
 CVE-2022-29704 (BrowsBox CMS v4.0 was discovered to contain a SQL injection vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: BrowsBox CMS
 CVE-2022-29703
 	RESERVED
 CVE-2022-29702
@@ -7506,7 +7506,7 @@ CVE-2022-1442 (The Metform WordPress plugin is vulnerable to sensitive informati
 CVE-2022-29598 (Solutions Atlantic Regulatory Reporting System (RRS) v500 is vulnerabl ...)
 	NOT-FOR-US: Solutions Atlantic Regulatory Reporting System (RRS
 CVE-2022-29597 (Solutions Atlantic Regulatory Reporting System (RRS) v500 is vulnerabl ...)
-	TODO: check
+	NOT-FOR-US: Solutions Atlantic Regulatory Reporting System (RRS)
 CVE-2022-29596 (MicroStrategy Enterprise Manager 2022 allows authentication bypass by  ...)
 	NOT-FOR-US: MicroStrategy Enterprise Manager
 CVE-2022-29595
@@ -42804,11 +42804,11 @@ CVE-2021-42879
 CVE-2021-42878
 	RESERVED
 CVE-2021-42877 (TOTOLINK EX1200T V4.1.2cu.5215 contains a denial of service vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2021-42876
 	RESERVED
 CVE-2021-42875 (TOTOLINK EX1200T V4.1.2cu.5215 contains a remote command injection vul ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2021-42874
 	RESERVED
 CVE-2021-42873



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3da94f989b7a57b9795e55e1e901af46463a2253

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3da94f989b7a57b9795e55e1e901af46463a2253
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220603/1c06259e/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list