[Git][security-tracker-team/security-tracker][master] Process NFUs

Neil Williams (@codehelp) codehelp at debian.org
Thu Mar 24 15:14:14 GMT 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
deec8ac6 by Neil Williams at 2022-03-24T15:13:58+00:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9425,11 +9425,11 @@ CVE-2022-0471
 CVE-2022-24294
 	RESERVED
 CVE-2022-24293 (Certain HP Print devices may be vulnerable to potential information di ...)
-	TODO: check
+	NOT-FOR-US: HP
 CVE-2022-24292 (Certain HP Print devices may be vulnerable to potential information di ...)
-	TODO: check
+	NOT-FOR-US: HP
 CVE-2022-24291 (Certain HP Print devices may be vulnerable to potential information di ...)
-	TODO: check
+	NOT-FOR-US: HP
 CVE-2022-24290
 	RESERVED
 CVE-2022-24289 (Hessian serialization is a network protocol that supports object-based ...)
@@ -11079,7 +11079,7 @@ CVE-2022-23883
 CVE-2022-23882
 	RESERVED
 CVE-2022-23881 (ZZZCMS zzzphp v2.1.0 was discovered to contain a remote command execut ...)
-	TODO: check
+	NOT-FOR-US: zzzcms
 CVE-2022-23880 (An arbitrary file upload vulnerability in the File Management function ...)
 	TODO: check
 CVE-2022-23879
@@ -17659,11 +17659,11 @@ CVE-2021-45880
 CVE-2021-45879
 	RESERVED
 CVE-2021-45878 (Multiple versions of GARO Wallbox GLB/GTB/GTC are affected by incorrec ...)
-	TODO: check
+	NOT-FOR-US: GARO Wallbox
 CVE-2021-45877 (Multiple versions of GARO Wallbox GLB/GTB/GTC are affected by hard cod ...)
-	TODO: check
+	NOT-FOR-US: GARO Wallbox
 CVE-2021-45876 (Multiple versions of GARO Wallbox GLB/GTB/GTC are affected by unauthen ...)
-	TODO: check
+	NOT-FOR-US: GARO Wallbox
 CVE-2021-45875
 	RESERVED
 CVE-2021-45874
@@ -17824,9 +17824,9 @@ CVE-2021-45812 (NUUO Network Video Recorder NVRsolo 3.9.1 is affected by a Cross
 CVE-2021-45811
 	RESERVED
 CVE-2021-45810 (Multiple versions of GlobalProtect-openconnect are affected by incorre ...)
-	TODO: check
+	NOT-FOR-US: GlobalProtect-openconnect
 CVE-2021-45809 (Multiple versions of GlobalProtect-openconnect are affected by incorre ...)
-	TODO: check
+	NOT-FOR-US: GlobalProtect-openconnect
 CVE-2021-45808 (jpress v4.2.0 allows users to register an account by default. With the ...)
 	NOT-FOR-US: jpress
 CVE-2021-45807 (jpress v4.2.0 is vulnerable to command execution via io.jpress.web.adm ...)
@@ -17940,9 +17940,9 @@ CVE-2021-45759
 CVE-2021-45758
 	RESERVED
 CVE-2021-45757 (ASUS AC68U <=3.0.0.4.385.20852 is affected by a buffer overflow in  ...)
-	TODO: check
+	NOT-FOR-US: ASUS RT-AC68U
 CVE-2021-45756 (Asus RT-AC68U <3.0.0.4.385.20633 and RT-AC5300 <3.0.0.4.384.8207 ...)
-	TODO: check
+	NOT-FOR-US: ASUS RT-AC68U
 CVE-2021-45755
 	RESERVED
 CVE-2021-45754
@@ -25811,13 +25811,13 @@ CVE-2021-43740
 CVE-2021-43739
 	RESERVED
 CVE-2021-43738 (An issue was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF v ...)
-	TODO: check
+	NOT-FOR-US: xiaohuanxiong CMS
 CVE-2021-43737 (An issus was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF v ...)
-	TODO: check
+	NOT-FOR-US: xiaohuanxiong CMS
 CVE-2021-43736 (CmsWing CMS 1.3.7 is affected by a Remote Code Execution (RCE) vulnera ...)
-	TODO: check
+	NOT-FOR-US: CmsWing
 CVE-2021-43735 (CmsWing 1.3.7 is affected by a SQLi vulnerability via parameter: behav ...)
-	TODO: check
+	NOT-FOR-US: CmsWing
 CVE-2021-43734 (kkFileview v4.0.0 has arbitrary file read through a directory traversa ...)
 	NOT-FOR-US: kkFileview
 CVE-2021-43733
@@ -35711,7 +35711,7 @@ CVE-2021-40664
 CVE-2021-40663
 	RESERVED
 CVE-2021-40662 (A Cross-Site Request Forgery (CSRF) in Chamilo LMS 1.11.14 allows atta ...)
-	TODO: check
+	NOT-FOR-US: Chamilo LMS
 CVE-2021-40661
 	RESERVED
 CVE-2021-40660



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/deec8ac683fdec5240775fbfddcd1a9f320e4f07

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/deec8ac683fdec5240775fbfddcd1a9f320e4f07
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220324/d7597356/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list