[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jun 28 21:19:14 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9887f6a9 by Salvatore Bonaccorso at 2022-06-28T22:18:48+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -730,25 +730,25 @@ CVE-2022-2204
 CVE-2017-20108
 	RESERVED
 CVE-2017-20107 (A vulnerability, which was classified as problematic, was found in Sha ...)
-	TODO: check
+	NOT-FOR-US: ShadeYouVPN.com Client
 CVE-2017-20106 (A vulnerability, which was classified as critical, has been found in L ...)
-	TODO: check
+	NOT-FOR-US: Lithium Forum
 CVE-2017-20105 (A vulnerability was found in Simplessus 3.7.7. It has been rated as cr ...)
-	TODO: check
+	NOT-FOR-US: Simplessus
 CVE-2017-20104 (A vulnerability was found in Simplessus 3.7.7. It has been declared as ...)
-	TODO: check
+	NOT-FOR-US: Simplessus
 CVE-2017-20103 (A vulnerability classified as critical has been found in Kama Click Co ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2017-20102 (A vulnerability was found in Album Lock 4.0 and classified as critical ...)
-	TODO: check
+	NOT-FOR-US: Album Lock
 CVE-2017-20101 (A vulnerability, which was classified as problematic, was found in Pro ...)
 	TODO: check
 CVE-2017-20100 (A vulnerability was found in Air Transfer 1.0.14/1.2.1. It has been ra ...)
-	TODO: check
+	NOT-FOR-US: Air Transfer
 CVE-2017-20099 (A vulnerability was found in Analytics Stats Counter Statistics Plugin ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2017-20098 (A vulnerability was found in Admin Custom Login Plugin 2.4.5.2. It has ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-34150
 	RESERVED
 CVE-2022-33944
@@ -1640,7 +1640,7 @@ CVE-2022-2147 (Cloudflare Warp for Windows from version 2022.2.95.0 contained an
 CVE-2022-2146
 	RESERVED
 CVE-2022-2145 (Cloudflare WARP client for Windows (up to v. 2022.5.309.0) allowed cre ...)
-	TODO: check
+	NOT-FOR-US: Cloudflare WARP client for Windows
 CVE-2022-2144
 	RESERVED
 CVE-2022-34167
@@ -1670,7 +1670,7 @@ CVE-2022-2142
 CVE-2022-2141
 	RESERVED
 CVE-2022-2140 (Elcomplus SmartICS v2.3.4.0 does not neutralize user-controllable inpu ...)
-	TODO: check
+	NOT-FOR-US: Elcomplus SmartICS
 CVE-2022-2139
 	RESERVED
 CVE-2022-2138
@@ -1721,11 +1721,11 @@ CVE-2022-34136
 CVE-2022-34135
 	RESERVED
 CVE-2022-34134 (Benjamin BALET Jorani v1.0 was discovered to contain a Cross-Site Requ ...)
-	TODO: check
+	NOT-FOR-US: Benjamin BALET Jorani
 CVE-2022-34133 (Benjamin BALET Jorani v1.0 was discovered to contain a cross-site scri ...)
-	TODO: check
+	NOT-FOR-US: Benjamin BALET Jorani
 CVE-2022-34132 (Benjamin BALET Jorani v1.0 was discovered to contain a SQL injection v ...)
-	TODO: check
+	NOT-FOR-US: Benjamin BALET Jorani
 CVE-2022-34131
 	RESERVED
 CVE-2022-34130
@@ -2474,7 +2474,7 @@ CVE-2022-2108
 CVE-2022-2107
 	RESERVED
 CVE-2022-2106 (Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficient ...)
-	TODO: check
+	NOT-FOR-US: Elcomplus SmartICS
 CVE-2022-2105 (Client-side JavaScript controls may be bypassed to change user credent ...)
 	NOT-FOR-US: Secheron
 CVE-2022-2104 (The www-data (Apache web server) account is configured to run sudo wit ...)
@@ -2809,7 +2809,7 @@ CVE-2022-33736
 CVE-2022-33202 (Authentication bypass vulnerability in the setup screen of L2Blocker(o ...)
 	NOT-FOR-US: L2Blocker
 CVE-2022-2088 (An authenticated user with admin privileges may be able to terminate a ...)
-	TODO: check
+	NOT-FOR-US: Elcomplus SmartICS
 CVE-2022-2087 (A vulnerability, which was classified as problematic, was found in Sou ...)
 	NOT-FOR-US: SourceCodester Bank Management System
 CVE-2022-2086 (A vulnerability, which was classified as critical, has been found in S ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9887f6a907cb674b3aa04326a8004331a1e94443

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9887f6a907cb674b3aa04326a8004331a1e94443
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220628/9eee41e3/attachment.htm>

More information about the debian-security-tracker-commits mailing list