[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jun 10 09:35:11 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7d4c2ea1 by Salvatore Bonaccorso at 2023-06-10T10:34:44+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2023-3188 (Server-Side Request Forgery (SSRF) in GitHub repository owncast/owncas ...)
-	TODO: check
+	NOT-FOR-US: Owncast
 CVE-2023-3187 (A vulnerability, which was classified as critical, has been found in P ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul Teachers Record Management System
 CVE-2023-3184 (A vulnerability was found in SourceCodester Sales Tracker Management S ...)
 	NOT-FOR-US: SourceCodester Sales Tracker Management System
 CVE-2023-3183 (A vulnerability was found in SourceCodester Performance Indicator Syst ...)
@@ -3752,7 +3752,7 @@ CVE-2023-2288 (The Otter WordPress plugin before 2.2.6 does not sanitize some us
 CVE-2023-2287 (The Orbit Fox by ThemeIsle WordPress plugin before 2.10.24 does not li ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-2286 (The WP Activity Log for WordPress is vulnerable to Cross-Site Request  ...)
-	TODO: check
+	NOT-FOR-US: WP Activity Log for WordPress
 CVE-2023-2285 (The WP Activity Log Premium plugin for WordPress is vulnerable to Cros ...)
 	NOT-FOR-US: WP Activity Log Premium plugin for WordPress
 CVE-2023-2284 (The WP Activity Log Premium plugin for WordPress is vulnerable to unau ...)
@@ -5117,7 +5117,7 @@ CVE-2023-2123
 CVE-2023-2122
 	RESERVED
 CVE-2023-2121 (Vault and Vault Enterprise's (Vault) key-value v2 (kv-v2) diff viewer  ...)
-	TODO: check
+	NOT-FOR-US: HashiCorp Vault
 CVE-2023-2120 (The Thumbnail carousel slider plugin for WordPress is vulnerable to Re ...)
 	NOT-FOR-US: Thumbnail carousel slider plugin for WordPress
 CVE-2023-2119 (The Responsive Filterable Portfolio plugin for WordPress is vulnerable ...)
@@ -6710,7 +6710,7 @@ CVE-2023-30264 (CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with D
 CVE-2023-30263
 	RESERVED
 CVE-2023-30262 (An issue found in MIM software Inc MIM License Server and MIMpacs serv ...)
-	TODO: check
+	NOT-FOR-US: MIM software Inc MIM License Server and MIMpacs services
 CVE-2023-30261
 	RESERVED
 CVE-2023-30260
@@ -7749,9 +7749,9 @@ CVE-2023-29769
 CVE-2023-29768
 	RESERVED
 CVE-2023-29767 (An issue found in CrossX v.1.15.3 for Android allows a local attacker  ...)
-	TODO: check
+	NOT-FOR-US: CrossX
 CVE-2023-29766 (An issue found in CrossX v.1.15.3 for Android allows a local attacker  ...)
-	TODO: check
+	NOT-FOR-US: CrossX
 CVE-2023-29765
 	RESERVED
 CVE-2023-29764
@@ -7761,31 +7761,31 @@ CVE-2023-29763
 CVE-2023-29762
 	RESERVED
 CVE-2023-29761 (An issue found in Sleep v.20230303 for Android allows unauthorized app ...)
-	TODO: check
+	NOT-FOR-US: Sleep
 CVE-2023-29760
 	RESERVED
 CVE-2023-29759 (An issue found in FlightAware v.5.8.0 for Android allows unauthorized  ...)
-	TODO: check
+	NOT-FOR-US: FlightAware
 CVE-2023-29758 (An issue found in Blue Light Filter v.1.5.5 for Android allows unautho ...)
-	TODO: check
+	NOT-FOR-US: Blue Light Filter
 CVE-2023-29757 (An issue found in Blue Light Filter v.1.5.5 for Android allows unautho ...)
-	TODO: check
+	NOT-FOR-US: Blue Light Filter
 CVE-2023-29756 (An issue found in Twilight v.13.3 for Android allows unauthorized apps ...)
-	TODO: check
+	NOT-FOR-US: Twilight
 CVE-2023-29755 (An issue found in Twilight v.13.3 for Android allows unauthorized apps ...)
-	TODO: check
+	NOT-FOR-US: Twilight
 CVE-2023-29754
 	RESERVED
 CVE-2023-29753 (An issue found in Facemoji Emoji Keyboard v.2.9.1.2 for Android allows ...)
-	TODO: check
+	NOT-FOR-US: Facemoji Emoji Keyboard
 CVE-2023-29752 (An issue found in Facemoji Emoji Keyboard v.2.9.1.2 for Android allows ...)
-	TODO: check
+	NOT-FOR-US: Facemoji Emoji Keyboard
 CVE-2023-29751 (An issue found in Yandex Navigator v.6.60 for Android allows unauthori ...)
-	TODO: check
+	NOT-FOR-US: Yandex Navigator
 CVE-2023-29750
 	RESERVED
 CVE-2023-29749 (An issue found in Yandex Navigator v.6.60 for Android allows unauthori ...)
-	TODO: check
+	NOT-FOR-US: Yandex Navigator
 CVE-2023-29748 (Story Saver for Instragram - Video Downloader 1.0.6 for Android has an ...)
 	NOT-FOR-US: Story Saver for Instragram
 CVE-2023-29747 (Story Saver for Instragram - Video Downloader 1.0.6 for Android exists ...)
@@ -7855,11 +7855,11 @@ CVE-2023-29716
 CVE-2023-29715
 	RESERVED
 CVE-2023-29714 (Cross Site Scripting vulnerability found in Vade Secure Gateway allows ...)
-	TODO: check
+	NOT-FOR-US: Vade Secure Gateway
 CVE-2023-29713 (Cross Site Scripting vulnerability found in Vade Secure Gateway allows ...)
-	TODO: check
+	NOT-FOR-US: Vade Secure Gateway
 CVE-2023-29712 (Cross Site Scripting vulnerability found in Vade Secure Gateway allows ...)
-	TODO: check
+	NOT-FOR-US: Vade Secure Gateway
 CVE-2023-29711
 	RESERVED
 CVE-2023-29710



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7d4c2ea163042b081ee63ee829a54567228d1006

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7d4c2ea163042b081ee63ee829a54567228d1006
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230610/99a8c79c/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list