[Git][security-tracker-team/security-tracker][master] Process some NFUs

Thu Jun 23 21:31:54 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
37f8fc19 by Salvatore Bonaccorso at 2022-06-23T22:31:21+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -95,7 +95,7 @@ CVE-2022-2182
 CVE-2022-2181
 	RESERVED
 CVE-2021-46824 (Cross Site Scripting (XSS) vulnerability in sourcecodester School File ...)
-	TODO: check
+	NOT-FOR-US: sourcecodester School File Management System
 CVE-2022-34327
 	RESERVED
 CVE-2022-34326
@@ -874,11 +874,11 @@ CVE-2022-34015
 CVE-2022-34014
 	RESERVED
 CVE-2022-34013 (OneBlog v2.3.4 was discovered to contain a Server-Side Request Forgery ...)
-	TODO: check
+	NOT-FOR-US: OneBlog
 CVE-2022-34012 (Insecure permissions in OneBlog v2.3.4 allows low-level administrators ...)
-	TODO: check
+	NOT-FOR-US: OneBlog
 CVE-2022-34011 (OneBlog v2.3.4 was discovered to contain a Server-Side Request Forgery ...)
-	TODO: check
+	NOT-FOR-US: OneBlog
 CVE-2022-34010
 	RESERVED
 CVE-2022-34009
@@ -2983,9 +2983,9 @@ CVE-2022-33116
 CVE-2022-33115
 	RESERVED
 CVE-2022-33114 (Jfinal CMS v5.1.0 was discovered to contain a SQL injection vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: Jfinal CMS
 CVE-2022-33113 (Jfinal CMS v5.1.0 allows attackers to execute arbitrary web scripts or ...)
-	TODO: check
+	NOT-FOR-US: Jfinal CMS
 CVE-2022-33112
 	RESERVED
 CVE-2022-33111
@@ -4357,11 +4357,11 @@ CVE-2017-20047 (A vulnerability classified as problematic was found in AXIS P120
 CVE-2017-20046 (A vulnerability classified as problematic has been found in AXIS P1204 ...)
 	NOT-FOR-US: AXIS
 CVE-2022-32536 (The user access rights validation in the web server of the Bosch Ether ...)
-	TODO: check
+	NOT-FOR-US: Bosch
 CVE-2022-32535 (The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 run ...)
-	TODO: check
+	NOT-FOR-US: Bosch
 CVE-2022-32534 (The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 and ...)
-	TODO: check
+	NOT-FOR-US: Bosch
 CVE-2022-32533
 	RESERVED
 CVE-2022-32532
@@ -5541,21 +5541,21 @@ CVE-2022-32133
 CVE-2022-32132
 	RESERVED
 CVE-2022-32131 (74cmsSE v3.5.1 was discovered to contain a reflective cross-site scrip ...)
-	TODO: check
+	NOT-FOR-US: 74cmsSE
 CVE-2022-32130 (74cmsSE v3.5.1 was discovered to contain a reflective cross-site scrip ...)
-	TODO: check
+	NOT-FOR-US: 74cmsSE
 CVE-2022-32129 (74cmsSE v3.5.1 was discovered to contain a reflective cross-site scrip ...)
-	TODO: check
+	NOT-FOR-US: 74cmsSE
 CVE-2022-32128 (74cmsSE v3.5.1 was discovered to contain a reflective cross-site scrip ...)
-	TODO: check
+	NOT-FOR-US: 74cmsSE
 CVE-2022-32127 (74cmsSE v3.5.1 was discovered to contain a reflective cross-site scrip ...)
-	TODO: check
+	NOT-FOR-US: 74cmsSE
 CVE-2022-32126 (74cmsSE v3.5.1 was discovered to contain a reflective cross-site scrip ...)
-	TODO: check
+	NOT-FOR-US: 74cmsSE
 CVE-2022-32125 (74cmsSE v3.5.1 was discovered to contain a reflective cross-site scrip ...)
-	TODO: check
+	NOT-FOR-US: 74cmsSE
 CVE-2022-32124 (74cmsSE v3.5.1 was discovered to contain a reflective cross-site scrip ...)
-	TODO: check
+	NOT-FOR-US: 74cmsSE
 CVE-2022-32123
 	RESERVED
 CVE-2022-32122



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/37f8fc1950f120ed09d946bd37f2a243f4edd8a7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/37f8fc1950f120ed09d946bd37f2a243f4edd8a7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220623/11c9de29/attachment-0001.htm>
