[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Dec 8 08:18:12 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
68132591 by Salvatore Bonaccorso at 2023-12-08T09:17:45+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,49 +1,49 @@
 CVE-2023-6599 (Missing Standardized Error Handling Mechanism in GitHub repository mic ...)
-	TODO: check
+	NOT-FOR-US: microweber
 CVE-2023-6581 (A vulnerability has been found in D-Link DAR-7000 up to 20231126 and c ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2023-6580 (A vulnerability, which was classified as critical, was found in D-Link ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2023-6579 (A vulnerability, which was classified as critical, has been found in o ...)
-	TODO: check
+	NOT-FOR-US: osCommerce
 CVE-2023-6578 (A vulnerability classified as critical has been found in Software AG W ...)
-	TODO: check
+	NOT-FOR-US: Software AG WebMethods
 CVE-2023-6577 (A vulnerability was found in Beijing Baichuo PatrolFlow 2530Pro up to  ...)
-	TODO: check
+	NOT-FOR-US: Beijing Baichuo PatrolFlow 2530Pro
 CVE-2023-6576 (A vulnerability was found in Beijing Baichuo S210 up to 20231123. It h ...)
-	TODO: check
+	NOT-FOR-US: Beijing Baichuo S210
 CVE-2023-6061 (Multiple components of Iconics SCADA Suite are prone to a Phantom DLL  ...)
-	TODO: check
+	NOT-FOR-US: Iconics SCADA Suite
 CVE-2023-5058 (Improper Input Validation in the processing of user-supplied splash sc ...)
 	TODO: check
 CVE-2023-5008 (Student Information System v1.0 is vulnerable to an unauthenticated SQ ...)
-	TODO: check
+	NOT-FOR-US: Student Information System
 CVE-2023-4122 (Student Information System v1.0 is vulnerable to an Insecure File Uplo ...)
-	TODO: check
+	NOT-FOR-US: Student Information System
 CVE-2023-48929 (Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24. ...)
-	TODO: check
+	NOT-FOR-US: Franklin Fueling Systems System Sentinel AnyWare (SSA)
 CVE-2023-48928 (Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24. ...)
-	TODO: check
+	NOT-FOR-US: Franklin Fueling Systems System Sentinel AnyWare (SSA)
 CVE-2023-48122 (An issue in microweber v.2.0.1 and fixed in v.2.0.4 allows a remote at ...)
-	TODO: check
+	NOT-FOR-US: microweber
 CVE-2023-46693 (Cross Site Scripting (XSS) vulnerability in FormaLMS before 4.0.5 allo ...)
-	TODO: check
+	NOT-FOR-US: FormaLMS
 CVE-2023-43744 (An OS command injection vulnerability in Zultys MX-SE, MX-SE II, MX-E, ...)
-	TODO: check
+	NOT-FOR-US: Zultys products firmware
 CVE-2023-43743 (A SQL injection vulnerability in Zultys MX-SE, MX-SE II, MX-E, MX-Virt ...)
-	TODO: check
+	NOT-FOR-US: Zultys products firmware
 CVE-2023-43742 (An authentication bypass in Zultys MX-SE, MX-SE II, MX-E, MX-Virtual,  ...)
-	TODO: check
+	NOT-FOR-US: Zultys products firmware
 CVE-2023-43305 (An issue in studio kent mini-app on Line v13.6.1 allows attackers to s ...)
-	TODO: check
+	NOT-FOR-US: studio kent mini-app on Line
 CVE-2023-38174 (Microsoft Edge (Chromium-based) Information Disclosure Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-36880 (Microsoft Edge (Chromium-based) Information Disclosure Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-35618 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-32460 (Dell PowerEdge BIOS contains an improper privilege management security ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-45866 (Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral  ...)
 	- bluez <unfixed>
 	NOTE: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=25a471a83e02e1effb15d5a488b3f0085eaeb675



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68132591f090e720ca929c01d602198171008ef9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68132591f090e720ca929c01d602198171008ef9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231208/eaa92d28/attachment.htm>

More information about the debian-security-tracker-commits mailing list