[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Mon Feb 13 22:17:46 GMT 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bca26de5 by Salvatore Bonaccorso at 2023-02-13T23:14:24+01:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -67,11 +67,11 @@ CVE-2023-0812
 CVE-2023-0811
 	RESERVED
 CVE-2023-0810 (Cross-site Scripting (XSS) - Stored in GitHub repository btcpayserver/ ...)
-	TODO: check
+	NOT-FOR-US: btcpayserver
 CVE-2023-0809
 	RESERVED
 CVE-2023-0808 (A vulnerability was found in Deye/Revolt/Bosswerk Inverter MW3_15U_540 ...)
-	TODO: check
+	NOT-FOR-US: Deye/Revolt/Bosswerk Inverter
 CVE-2023-0807
 	RESERVED
 CVE-2023-0806
@@ -3256,7 +3256,7 @@ CVE-2023-24574 (Dell Enterprise SONiC OS, 3.5.3, 4.0.0, 4.0.1, 4.0.2, contains a
 CVE-2023-24573 (Dell Command | Monitor versions prior to 10.9 contain an arbitrary fol ...)
 	NOT-FOR-US: Dell
 CVE-2023-24572 (Dell Command | Integration Suite for System Center, versions before 6. ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-24571
 	RESERVED
 CVE-2023-24570
@@ -5602,7 +5602,7 @@ CVE-2023-XXXX [RUSTSEC-2022-0078]
 CVE-2023-23698 (Dell Command | Update, Dell Update, and Alienware Update versions befo ...)
 	NOT-FOR-US: Dell
 CVE-2023-23697 (Dell Command | Intel vPro Out of Band, versions before 4.4.0, contain  ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-23696 (Dell Command Intel vPro Out of Band, versions prior to 4.3.1, contain  ...)
 	NOT-FOR-US: Dell
 CVE-2023-23695
@@ -6176,11 +6176,11 @@ CVE-2023-23556
 CVE-2023-23555 (On BIG-IP Virtual Edition versions 15.1x beginning in 15.1.4 to before ...)
 	NOT-FOR-US: F5 BIG-IP
 CVE-2023-23553 (Control By Web X-400 devices are vulnerable to a cross-site scripting  ...)
-	TODO: check
+	NOT-FOR-US: Control By Web X-400 devices
 CVE-2023-23552 (On versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.0 bef ...)
 	NOT-FOR-US: F5 BIG-IP
 CVE-2023-23551 (Control By Web X-600M devices run Lua scripts and are vulnerable to co ...)
-	TODO: check
+	NOT-FOR-US: Control By Web X-600M devices
 CVE-2023-23543
 	RESERVED
 CVE-2023-23542
@@ -8217,7 +8217,7 @@ CVE-2007-10002 (A vulnerability, which was classified as critical, has been foun
 CVE-2023-22855
 	RESERVED
 CVE-2023-22854 (The ccmweb component of Mitel MiContact Center Business server 9.2.2.0 ...)
-	TODO: check
+	NOT-FOR-US: Mitel
 CVE-2023-22853 (Tiki before 24.1, when feature_create_webhelp is enabled, allows lib/s ...)
 	- tikiwiki <removed>
 CVE-2023-22852 (Tiki through 25.0 allows CSRF attacks that are related to tiki-importe ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bca26de5bff35f8c580c482bed11e78aeed55272

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bca26de5bff35f8c580c482bed11e78aeed55272
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230213/829c3202/attachment-0001.htm>
