[Git][security-tracker-team/security-tracker][master] Process NFUs

Neil Williams (@codehelp) codehelp at debian.org
Fri May 6 14:52:57 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9a8e2b95 by Neil Williams at 2022-05-06T14:52:32+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12184,7 +12184,7 @@ CVE-2022-25840
 CVE-2022-25839 (The package url-js before 2.1.0 are vulnerable to Improper Input Valid ...)
 	NOT-FOR-US: Node url-js
 CVE-2022-25767 (All versions of package com.bstek.ureport:ureport2-console are vulnera ...)
-	TODO: check
+	NOT-FOR-US: youseries/ureport
 CVE-2022-25766 (The package ungit before 1.5.20 are vulnerable to Remote Code Executio ...)
 	NOT-FOR-US: NodeJS ungit
 CVE-2022-25765
@@ -12562,25 +12562,25 @@ CVE-2022-25789 (A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCA
 CVE-2022-25788 (A maliciously crafted JT file in Autodesk AutoCAD 2022 may be used to  ...)
 	NOT-FOR-US: Autodesk
 CVE-2022-25787 (Information Exposure Through Query Strings in GET Request vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Secomea
 CVE-2022-25786 (Unprotected Alternate Channel vulnerability in debug console of GateMa ...)
-	TODO: check
+	NOT-FOR-US: Secomea
 CVE-2022-25785 (Stack-based Buffer Overflow vulnerability in SiteManager allows logged ...)
-	TODO: check
+	NOT-FOR-US: Secomea
 CVE-2022-25784 (Cross-site Scripting (XSS) vulnerability in Web GUI of SiteManager all ...)
-	TODO: check
+	NOT-FOR-US: Secomea
 CVE-2022-25783 (Insufficient Logging vulnerability in web server of Secomea GateManage ...)
-	TODO: check
+	NOT-FOR-US: Secomea
 CVE-2022-25782 (Improper Handling of Insufficient Privileges vulnerability in Web UI o ...)
-	TODO: check
+	NOT-FOR-US: Secomea
 CVE-2022-25781 (Cross-site Scripting (XSS) vulnerability in Web UI of Secomea GateMana ...)
-	TODO: check
+	NOT-FOR-US: Secomea
 CVE-2022-25780 (Information Exposure vulnerability in web UI of Secomea GateManager al ...)
-	TODO: check
+	NOT-FOR-US: Secomea
 CVE-2022-25779 (Logging of Excessive Data vulnerability in audit log of Secomea GateMa ...)
-	TODO: check
+	NOT-FOR-US: Secomea
 CVE-2022-25778 (Cross-Site Request Forgery (CSRF) vulnerability in Web UI of Secomea G ...)
-	TODO: check
+	NOT-FOR-US: Secomea
 CVE-2022-25777
 	RESERVED
 CVE-2022-25776



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9a8e2b9590820b623fe62835ec21d119a7b9921e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9a8e2b9590820b623fe62835ec21d119a7b9921e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220506/dc17d765/attachment.htm>

More information about the debian-security-tracker-commits mailing list