[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Mar 17 21:51:06 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7443fd2a by Salvatore Bonaccorso at 2022-03-17T22:50:36+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3723,7 +3723,7 @@ CVE-2022-0751
 CVE-2022-0750
 	RESERVED
 CVE-2022-0749 (This affects all versions of package SinGooCMS.Utility. The socket cli ...)
-	TODO: check
+	NOT-FOR-US: SinGooCMS
 CVE-2022-0748 (The package post-loader from 0.0.0 are vulnerable to Arbitrary Code Ex ...)
 	TODO: check
 CVE-2022-0747
@@ -16409,13 +16409,13 @@ CVE-2021-45796
 CVE-2021-45795
 	RESERVED
 CVE-2021-45794 (Slims9 Bulian 9.4.2 is affected by SQL injection in /admin/modules/sys ...)
-	TODO: check
+	NOT-FOR-US: Slims9 Bulian
 CVE-2021-45793 (Slims9 Bulian 9.4.2 is affected by SQL injection in lib/comment.inc.ph ...)
-	TODO: check
+	NOT-FOR-US: Slims9 Bulian
 CVE-2021-45792 (Slims9 Bulian 9.4.2 is affected by Cross Site Scripting (XSS) in /admi ...)
-	TODO: check
+	NOT-FOR-US: Slims9 Bulian
 CVE-2021-45791 (Slims8 Akasia 8.3.1 is affected by SQL injection in /admin/modules/bib ...)
-	TODO: check
+	NOT-FOR-US: Slims8 Akasia
 CVE-2021-45790 (An arbitrary file upload vulnerability was found in Metersphere v1.15. ...)
 	NOT-FOR-US: Metersphere
 CVE-2021-45789 (An arbitrary file read vulnerability was found in Metersphere v1.15.4, ...)
@@ -21573,13 +21573,13 @@ CVE-2021-44264
 CVE-2021-44263 (Gurock TestRail before 7.2.4 mishandles HTML escaping. ...)
 	NOT-FOR-US: Gurock TestRail
 CVE-2021-44262 (A vulnerability is in the 'MNU_top.htm' page of the Netgear W104, vers ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2021-44261 (A vulnerability is in the 'BRS_top.html' page of the Netgear W104, ver ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2021-44260 (A vulnerability is in the 'live_mfg.html' page of the WAVLINK AC1200,  ...)
-	TODO: check
+	NOT-FOR-US: WAVLINK
 CVE-2021-44259 (A vulnerability is in the 'wx.html' page of the WAVLINK AC1200, versio ...)
-	TODO: check
+	NOT-FOR-US: WAVLINK
 CVE-2021-44258
 	RESERVED
 CVE-2021-44257



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7443fd2a7ab29a614a5fe468f4eaa21f0f179a47

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7443fd2a7ab29a614a5fe468f4eaa21f0f179a47
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220317/a3b9f9e0/attachment.htm>

More information about the debian-security-tracker-commits mailing list