[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Feb 14 20:15:32 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7fbf80f5 by Salvatore Bonaccorso at 2023-02-14T21:14:56+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1958,7 +1958,7 @@ CVE-2023-25067
 CVE-2023-25066 (Cross-Site Request Forgery (CSRF) vulnerability in FolioVision FV Flow ...)
 	NOT-FOR-US: FolioVision
 CVE-2023-25065 (Cross-Site Request Forgery (CSRF) vulnerability in ShapedPlugin WP Tab ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25064
 	RESERVED
 CVE-2023-25063
@@ -4377,11 +4377,11 @@ CVE-2023-24163 (SQL Inection vulnerability in Dromara hutool v5.8.11 allows atta
 CVE-2023-24162 (Deserialization vulnerability in Dromara Hutool v5.8.11 allows attacke ...)
 	NOT-FOR-US: Dromara hutool
 CVE-2023-24161 (TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injec ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2023-24160 (TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injec ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2023-24159 (TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injec ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2023-24158
 	RESERVED
 CVE-2023-24157 (A command injection vulnerability in the serverIp parameter in the fun ...)
@@ -15373,7 +15373,7 @@ CVE-2022-46864
 CVE-2022-46863
 	RESERVED
 CVE-2022-46862 (Cross-Site Request Forgery (CSRF) vulnerability in ExpressTech Quiz An ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-46861
 	RESERVED
 CVE-2022-46860
@@ -88576,7 +88576,7 @@ CVE-2022-22566 (Select Dell Client Commercial and Consumer platforms contain a p
 CVE-2022-22565 (Dell PowerScale OneFS, versions 9.0.0-9.3.0, contain an improper autho ...)
 	NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22564 (Dell EMC Unity versions before 5.2.0.0.5.173 , use(es) broken cryptogr ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2022-22563 (Dell EMC Powerscale OneFS 8.2.x - 9.2.x omit security-relevant informa ...)
 	NOT-FOR-US: EMC
 CVE-2022-22562 (Dell PowerScale OneFS, versions 8.2.0-9.3.0, contain a improper handli ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7fbf80f56083766d508b9d681eae6c3721ecb7b2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7fbf80f56083766d508b9d681eae6c3721ecb7b2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230214/b60869b5/attachment.htm>

More information about the debian-security-tracker-commits mailing list