[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jun 2 21:27:10 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4c5b16a6 by Salvatore Bonaccorso at 2023-06-02T22:26:42+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,69 +1,69 @@
 CVE-2023-3075 (Cross-Site Request Forgery (CSRF) in GitHub repository tsolucio/corebo ...)
-	TODO: check
+	NOT-FOR-US: Corebos
 CVE-2023-3074 (Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/core ...)
-	TODO: check
+	NOT-FOR-US: Corebos
 CVE-2023-3073 (Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/core ...)
-	TODO: check
+	NOT-FOR-US: Corebos
 CVE-2023-3071 (Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/core ...)
-	TODO: check
+	NOT-FOR-US: Corebos
 CVE-2023-3070 (Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/core ...)
-	TODO: check
+	NOT-FOR-US: Corebos
 CVE-2023-3069 (Unverified Password Change in GitHub repository tsolucio/corebos prior ...)
-	TODO: check
+	NOT-FOR-US: Corebos
 CVE-2023-3068 (A vulnerability classified as critical has been found in Campcodes Ret ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Retro Cellphone Online Store
 CVE-2023-3067 (Cross-site Scripting (XSS) - Stored in GitHub repository zadam/trilium ...)
 	TODO: check
 CVE-2023-3062 (A vulnerability was found in code-projects Agro-School Management Syst ...)
-	TODO: check
+	NOT-FOR-US: Agro-School Management System
 CVE-2023-3061 (A vulnerability was found in code-projects Agro-School Management Syst ...)
-	TODO: check
+	NOT-FOR-US: Agro-School Management System
 CVE-2023-3060 (A vulnerability has been found in code-projects Agro-School Management ...)
-	TODO: check
+	NOT-FOR-US: Agro-School Management System
 CVE-2023-3059 (A vulnerability, which was classified as critical, was found in Source ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Exam Form Submission
 CVE-2023-3058 (A vulnerability was found in 07FLY CRM up to 1.2.0. It has been declar ...)
-	TODO: check
+	NOT-FOR-US: 07FLY CRM
 CVE-2023-3057 (A vulnerability was found in YFCMF up to 3.0.4. It has been rated as p ...)
-	TODO: check
+	NOT-FOR-US: YFCMF
 CVE-2023-3056 (A vulnerability was found in YFCMF up to 3.0.4. It has been declared a ...)
-	TODO: check
+	NOT-FOR-US: YFCMF
 CVE-2023-3033 (Incorrect Authorization vulnerability in Mobatime web application allo ...)
-	TODO: check
+	NOT-FOR-US: Mobatime web application
 CVE-2023-3032 (Unrestricted Upload of File with Dangerous Type vulnerability in Mobat ...)
-	TODO: check
+	NOT-FOR-US: Mobatime web application
 CVE-2023-3031 (Improper Limitation of a Pathname leads to a Path Traversal vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: Prestashop
 CVE-2023-34362 (In Progress MOVEit Transfer before 2021.0.6 (13.0.6), 2021.1.4 (13.1.4 ...)
-	TODO: check
+	NOT-FOR-US: Progress MOVEit Transfer
 CVE-2023-34094 (ChuanhuChatGPT is a graphical user interface for ChatGPT and many larg ...)
-	TODO: check
+	NOT-FOR-US: ChuanhuChatGPT
 CVE-2023-33763 (eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to cont ...)
-	TODO: check
+	NOT-FOR-US: eMedia Consulting simpleRedak
 CVE-2023-33762 (eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to cont ...)
-	TODO: check
+	NOT-FOR-US: eMedia Consulting simpleRedak
 CVE-2023-33761 (eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to cont ...)
-	TODO: check
+	NOT-FOR-US: eMedia Consulting simpleRedak
 CVE-2023-33731 (Reflected Cross Site Scripting (XSS) in the view dashboard detail feat ...)
-	TODO: check
+	NOT-FOR-US: Microworld Technologies eScan management console
 CVE-2023-33717 (mp4v2 v2.1.3 was discovered to contain a memory leak when a method cal ...)
 	TODO: check
 CVE-2023-33675 (Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2023-33673 (Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2023-33672 (Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2023-33671 (Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2023-33670 (Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2023-33669 (Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2023-33476 (ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable t ...)
 	TODO: check
 CVE-2023-2687 (Buffer overflow in Platform CLI component in Silicon Labs Gecko SDK v4 ...)
-	TODO: check
+	NOT-FOR-US: Silicon Labs Gecko SDK
 CVE-2023-3000 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
 	NOT-FOR-US: Erikoglu Technology ErMon
 CVE-2023-2835 (The WP Directory Kit plugin for WordPress is vulnerable to Reflected C ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c5b16a64a3710994f68fd4c7241f20cd778a408

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c5b16a64a3710994f68fd4c7241f20cd778a408
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230602/0412e258/attachment.htm>

More information about the debian-security-tracker-commits mailing list