[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2e49235d by Salvatore Bonaccorso at 2023-06-19T22:16:36+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2023-3318 (A vulnerability was found in SourceCodester Resort Management System 1 ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Resort Management System
 CVE-2023-3316 (A NULL pointer dereference in TIFFClose() is caused by a failure to op ...)
 	TODO: check
 CVE-2023-3312 (A vulnerability was found in drivers/cpufreq/qcom-cpufreq-hw.c in cpuf ...)
@@ -7,39 +7,39 @@ CVE-2023-3312 (A vulnerability was found in drivers/cpufreq/qcom-cpufreq-hw.c in
 CVE-2023-35843 (NocoDB through 0.106.0 (or 0.109.1) has a path traversal vulnerability ...)
 	TODO: check
 CVE-2023-35779 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Seed ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-35776 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-35775 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WP Backu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-35772 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Alain Go ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-34461 (PyBB is an open source bulletin board. A manual code review of the PyB ...)
-	TODO: check
+	NOT-FOR-US: PyBB
 CVE-2023-34373 (Cross-Site Request Forgery (CSRF) vulnerability in Dylan James Zephyr  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-34167 (Vulnerability of spoofing trustlists of Huawei desktop.Successful expl ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-34166 (Vulnerability of system restart triggered by abnormal callbacks passed ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-34163 (Permission control vulnerability in the window management module.Succe ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-34162 (Version update determination vulnerability in the user profile module. ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-34161 (nappropriate authorization vulnerability in the SettingsProvider modul ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-34160 (Vulnerability of spoofing trustlists of Huawei desktop.Successful expl ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-34159 (Improper permission control vulnerability in the Notepad app.Successfu ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-34158 (Vulnerability of spoofing trustlists of Huawei desktop.Successful expl ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-34156 (Vulnerability of services denied by early fingerprint APIs on HarmonyO ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-34155 (Vulnerability of unauthorized calling on HUAWEI phones and tablets.Suc ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-33213 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in gVec ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-31411 (A remote unprivileged attacker can modify and access configuration set ...)
 	TODO: check
 CVE-2023-31410 (A remote unprivileged attacker can intercept the communication via e.g ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2e49235d20bdb6d87dc29ecba845c50574113f2b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2e49235d20bdb6d87dc29ecba845c50574113f2b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230619/cfa768ed/attachment.htm>