[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c2fa453a by Moritz Muehlenhoff at 2023-06-22T11:12:58+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -32807,7 +32807,7 @@ CVE-2023-22314
 CVE-2023-22277
 	RESERVED
 CVE-2023-0026 (An Improper Input Validation vulnerability in the Routing Protocol Dae ...)
-	TODO: check
+	NOT-FOR-US: Juniper
 CVE-2022-47968 (Heimdall Application Dashboard through 2.5.4 allows reflected and stor ...)
 	NOT-FOR-US: Heimdall Application Dashboard
 CVE-2022-47967 (A vulnerability has been identified in Solid Edge (All versions < V202 ...)
@@ -34151,7 +34151,7 @@ CVE-2022-47588
 CVE-2022-47587 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Corn ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-47586 (Unauth. SQL Injection (SQLi) vulnerability in Themefic Ultimate Addons ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-47585
 	RESERVED
 CVE-2022-47584
@@ -37665,7 +37665,7 @@ CVE-2022-46852 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability i
 CVE-2022-46851 (Cross-Site Request Forgery (CSRF) vulnerability in Brainstorm Force St ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-46850 (Auth. (author+) Broken Access Control vulnerability leading to Arbitra ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-46849
 	RESERVED
 CVE-2022-46848 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability i ...)
@@ -42558,7 +42558,7 @@ CVE-2022-45289
 CVE-2022-45288
 	RESERVED
 CVE-2022-45287 (An access control issue in Registration.aspx of Temenos CWX 8.5.6 allo ...)
-	TODO: check
+	NOT-FOR-US: Temenos CWX
 CVE-2022-45286
 	RESERVED
 CVE-2022-45285 (Vsourz Digital Advanced Contact form 7 DB Versions 1.7.2 and 1.9.1 is  ...)
@@ -45561,7 +45561,7 @@ CVE-2023-20887 (Aria Operations for Networks contains a command injection vulner
 CVE-2023-20886
 	RESERVED
 CVE-2023-20885 (Vulnerability in Cloud Foundry Notifications, Cloud Foundry SMB-volume ...)
-	TODO: check
+	NOT-FOR-US: Cloud foundry
 CVE-2023-20884 (VMware Workspace ONE Access and VMware Identity Manager contain an ins ...)
 	NOT-FOR-US: VMware
 CVE-2023-20883 (In Spring Boot versions 3.0.0 - 3.0.6, 2.7.0 - 2.7.11, 2.6.0 - 2.6.14, ...)
@@ -54943,7 +54943,7 @@ CVE-2022-3373 (Out of bounds write in V8 in Google Chrome prior to 106.0.5249.91
 	- chromium 106.0.5249.91-1
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2022-3372 (There is a CSRF vulnerability on Netman-204 version 02.05. An attacker ...)
-	TODO: check
+	NOT-FOR-US: Netman-204
 CVE-2022-3371 (Allocation of Resources Without Limits or Throttling in GitHub reposit ...)
 	- rdiffweb <itp> (bug #969974)
 CVE-2022-3370 (Use after free in Custom Elements in Google Chrome prior to 106.0.5249 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2fa453ab17efb5a5d7bb59d44678552fe39bdf9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2fa453ab17efb5a5d7bb59d44678552fe39bdf9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230622/ff0ef727/attachment.htm>