[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jan 12 09:37:47 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d150300e by Salvatore Bonaccorso at 2023-01-12T10:37:24+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2493,9 +2493,9 @@ CVE-2023-0044
 	RESERVED
 	NOT-FOR-US: Quarkus
 CVE-2022-4874 (Authentication bypass in Netcomm router models NF20MESH, NF20, and NL1 ...)
-	TODO: check
+	NOT-FOR-US: Netcomm
 CVE-2022-4873 (On Netcomm router models NF20MESH, NF20, and NL1902 a stack based buff ...)
-	TODO: check
+	NOT-FOR-US: Netcomm
 CVE-2022-4872
 	RESERVED
 CVE-2022-48217 (** DISPUTED ** The tf_remapper_node component 1.1.1 for Robot Operatin ...)
@@ -2955,7 +2955,7 @@ CVE-2023-22494
 CVE-2023-22493
 	RESERVED
 CVE-2023-22492 (ZITADEL is a combination of Auth0 and Keycloak. RefreshTokens is an OA ...)
-	TODO: check
+	NOT-FOR-US: ZITADEL
 CVE-2023-22491
 	RESERVED
 CVE-2023-22490
@@ -3870,7 +3870,7 @@ CVE-2023-0026
 CVE-2022-47968 (Heimdall Application Dashboard through 2.5.4 allows reflected and stor ...)
 	NOT-FOR-US: Heimdall Application Dashboard
 CVE-2022-47967 (A vulnerability has been identified in Solid Edge (All versions < V ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2022-4767 (Denial of Service in GitHub repository usememos/memos prior to 0.9.1. ...)
 	NOT-FOR-US: usememos
 CVE-2022-4766 (A vulnerability was found in dolibarr_project_timesheet up to 4.5.5. I ...)
@@ -4113,7 +4113,7 @@ CVE-2022-47937
 CVE-2022-47936
 	RESERVED
 CVE-2022-47935 (A vulnerability has been identified in JT Open (All versions < V11. ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2022-4710 (The Royal Elementor Addons plugin for WordPress is vulnerable to Refle ...)
 	NOT-FOR-US: Royal Elementor Addons plugin for WordPress
 CVE-2022-4709 (The Royal Elementor Addons plugin for WordPress is vulnerable to insuf ...)
@@ -4364,7 +4364,7 @@ CVE-2022-4638 (A vulnerability classified as problematic was found in collective
 CVE-2022-4637 (A vulnerability classified as problematic has been found in ep3-bs up  ...)
 	NOT-FOR-US: ep3-bs
 CVE-2022-4636 (Black Box KVM Firmware version 3.4.31307 on models ACR1000A-R-R2, ACR1 ...)
-	TODO: check
+	NOT-FOR-US: Black Box KVM Firmware
 CVE-2022-4635
 	RESERVED
 CVE-2021-4275 (A vulnerability, which was classified as problematic, was found in kat ...)
@@ -4564,21 +4564,21 @@ CVE-2022-47868
 CVE-2022-47867
 	RESERVED
 CVE-2022-47866 (Lead management system v1.0 is vulnerable to SQL Injection via the id  ...)
-	TODO: check
+	NOT-FOR-US: Lead management system
 CVE-2022-47865 (Lead Management System v1.0 is vulnerable to SQL Injection via the id  ...)
-	TODO: check
+	NOT-FOR-US: Lead management system
 CVE-2022-47864 (Lead Management System v1.0 is vulnerable to SQL Injection via the id  ...)
-	TODO: check
+	NOT-FOR-US: Lead management system
 CVE-2022-47863
 	RESERVED
 CVE-2022-47862 (Lead Management System v1.0 is vulnerable to SQL Injection via the cus ...)
-	TODO: check
+	NOT-FOR-US: Lead management system
 CVE-2022-47861 (Lead Management System v1.0 is vulnerable to SQL Injection via the id  ...)
-	TODO: check
+	NOT-FOR-US: Lead management system
 CVE-2022-47860 (Lead Management System v1.0 is vulnerable to SQL Injection via the id  ...)
-	TODO: check
+	NOT-FOR-US: Lead management system
 CVE-2022-47859 (Lead Management System v1.0 is vulnerable to SQL Injection via the use ...)
-	TODO: check
+	NOT-FOR-US: Lead management system
 CVE-2022-47858
 	RESERVED
 CVE-2022-47857
@@ -4716,7 +4716,7 @@ CVE-2022-47792
 CVE-2022-47791
 	RESERVED
 CVE-2022-47790 (Sourcecodester Dynamic Transaction Queuing System v1.0 is vulnerable t ...)
-	TODO: check
+	NOT-FOR-US: Sourcecodester Dynamic Transaction Queuing System
 CVE-2022-47789
 	RESERVED
 CVE-2022-47788



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d150300e2656414db2a21c8ce46a3698795d76be

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d150300e2656414db2a21c8ce46a3698795d76be
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230112/b098a90e/attachment.htm>


More information about the debian-security-tracker-commits mailing list