[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue May 3 20:52:18 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3d6fe78f by Salvatore Bonaccorso at 2022-05-03T21:47:02+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4131,7 +4131,7 @@ CVE-2022-28615
CVE-2022-28614
RESERVED
CVE-2022-28613 (A vulnerability in the HCI Modbus TCP COMPONENT of Hitachi Energy RTU5 ...)
- TODO: check
+ NOT-FOR-US: HCI Modbus TCP COMPONENT of Hitachi Energy RTU500 series CMU Firmware
CVE-2022-28610
RESERVED
CVE-2022-26838
@@ -5735,7 +5735,7 @@ CVE-2022-28120
CVE-2022-28119
RESERVED
CVE-2022-28118 (SiteServer CMS v7.x allows attackers to execute arbitrary code via a c ...)
- TODO: check
+ NOT-FOR-US: SiteServer CMS
CVE-2022-28117 (A Server-Side Request Forgery (SSRF) in feed_parser class of Navigate ...)
NOT-FOR-US: Navigate CMS
CVE-2022-28116 (Online Banking System v1.0 was discovered to contain a SQL injection v ...)
@@ -5862,11 +5862,11 @@ CVE-2022-28058 (Verydows v2.0 was discovered to contain an arbitrary file deleti
CVE-2022-28057
RESERVED
CVE-2022-28056 (ShopXO v2.2.5 and below was discovered to contain a system re-install ...)
- TODO: check
+ NOT-FOR-US: ShopXO
CVE-2022-28055
RESERVED
CVE-2022-28054 (Improper sanitization of trigger action scripts in VanDyke Software VS ...)
- TODO: check
+ NOT-FOR-US: VanDyke Software VShell
CVE-2022-28053 (Typemill v1.5.3 was discovered to contain an arbitrary file upload vul ...)
NOT-FOR-US: Typemill
CVE-2022-28052 (Directory Traversal vulnerability in file cn/roothub/store/FileSystemS ...)
@@ -6021,9 +6021,9 @@ CVE-2022-27985 (CuppaCMS v1.0 was discovered to contain a SQL injection vulnerab
CVE-2022-27984 (CuppaCMS v1.0 was discovered to contain a SQL injection vulnerability ...)
NOT-FOR-US: CuppaCMS
CVE-2022-27983 (RG-NBR-E Enterprise Gateway RG-NBR2100G-E was discovered to contain an ...)
- TODO: check
+ NOT-FOR-US: RG-NBR-E Enterprise Gateway RG-NBR2100G-E
CVE-2022-27982 (RG-NBR-E Enterprise Gateway RG-NBR2100G-E was discovered to contain a ...)
- TODO: check
+ NOT-FOR-US: RG-NBR-E Enterprise Gateway RG-NBR2100G-E
CVE-2022-27981
RESERVED
CVE-2022-27980
@@ -7308,7 +7308,7 @@ CVE-2022-27468 (Monstaftp v2.10.3 was discovered to contain an arbitrary file up
CVE-2022-27467
RESERVED
CVE-2022-27466 (MCMS v5.2.27 was discovered to contain a SQL injection vulnerability i ...)
- TODO: check
+ NOT-FOR-US: MCMS
CVE-2022-27465
RESERVED
CVE-2022-27464
@@ -10607,9 +10607,9 @@ CVE-2022-26328
CVE-2022-26327
RESERVED
CVE-2022-26326 (Potential open redirection vulnerability when URL is crafted in specif ...)
- TODO: check
+ NOT-FOR-US: NetIQ Access Manager
CVE-2022-26325 (Reflected Cross Site Scripting (XSS) vulnerability in NetIQ Access Man ...)
- TODO: check
+ NOT-FOR-US: NetIQ Access Manager
CVE-2022-26324
RESERVED
CVE-2022-26323
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3d6fe78f59d275165c1b7a4e0c167151944f63b7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3d6fe78f59d275165c1b7a4e0c167151944f63b7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220503/15a69bba/attachment.htm>
More information about the debian-security-tracker-commits
mailing list