[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Mar 2 20:24:24 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1f233de8 by Salvatore Bonaccorso at 2023-03-02T21:23:56+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5416,7 +5416,7 @@ CVE-2023-25538
 CVE-2023-25537
 	RESERVED
 CVE-2023-25536 (Dell PowerScale OneFS 9.4.0.x contains exposure of sensitive informati ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-25535
 	RESERVED
 CVE-2023-22660
@@ -9143,41 +9143,41 @@ CVE-2023-24136
 CVE-2023-24135
 	RESERVED
 CVE-2023-24134 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24133 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24132 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24131 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24130 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24129 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24128 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24127 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24126 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24125 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24124 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24123 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24122 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24121 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24120 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24119 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24118 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24117 (Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to c ...)
-	TODO: check
+	NOT-FOR-US: Jensen of Scandinavia Eagle 1200AC
 CVE-2023-24116
 	RESERVED
 CVE-2023-24115
@@ -9509,7 +9509,7 @@ CVE-2023-23986
 CVE-2023-23985
 	RESERVED
 CVE-2023-23984 (Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Bubble  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-23983 (Cross-Site Request Forgery (CSRF) vulnerability in wpdevart Responsive ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-23982
@@ -9529,9 +9529,9 @@ CVE-2023-23976
 CVE-2023-23975
 	RESERVED
 CVE-2023-23974 (Cross-Site Request Forgery (CSRF) vulnerability in Fullworks Quick Eve ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-23973 (Cross-Site Request Forgery (CSRF) vulnerability in a3rev Software Cont ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-23972
 	RESERVED
 CVE-2023-23971
@@ -11577,7 +11577,7 @@ CVE-2023-23349
 CVE-2023-0229 (A flaw was found in github.com/openshift/apiserver-library-go, used in ...)
 	NOT-FOR-US: OpenShift
 CVE-2023-0228 (Improper Authentication vulnerability in ABB Symphony Plus S+ Operatio ...)
-	TODO: check
+	NOT-FOR-US: ABB
 CVE-2023-0227 (Insufficient Session Expiration in GitHub repository pyload/pyload pri ...)
 	- pyload <itp> (bug #1001980)
 CVE-2023-0226
@@ -11661,7 +11661,7 @@ CVE-2023-23317
 CVE-2023-23316
 	RESERVED
 CVE-2023-23315 (The PrestaShop e-commerce platform module stripejs contains a Blind SQ ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2023-23314 (An arbitrary file upload vulnerability in the /api/upload component of ...)
 	NOT-FOR-US: Zdir
 CVE-2023-23313
@@ -13971,7 +13971,7 @@ CVE-2023-0054 (Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.114
 	NOTE: https://huntr.dev/bounties/b289ee0f-fd16-4147-bd01-c6289c45e49d
 	NOTE: https://github.com/vim/vim/commit/3ac1d97a1d9353490493d30088256360435f7731 (v9.0.1145)
 CVE-2023-0053 (SAUTER Controls Nova 200–220 Series with firmware version 3.3-00 ...)
-	TODO: check
+	NOT-FOR-US: SAUTER Controls Nova
 CVE-2023-0052 (SAUTER Controls Nova 200–220 Series with firmware version 3.3-00 ...)
 	NOT-FOR-US: SAUTER
 CVE-2023-0051 (Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ...)
@@ -19382,7 +19382,7 @@ CVE-2022-47150
 CVE-2022-47149
 	RESERVED
 CVE-2022-47148 (Cross-Site Request Forgery (CSRF) vulnerability in WP Overnight PDF In ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-47147
 	RESERVED
 CVE-2022-47146
@@ -20345,9 +20345,9 @@ CVE-2022-46808
 CVE-2022-46807
 	RESERVED
 CVE-2022-46806 (Cross-Site Request Forgery (CSRF) vulnerability in VillaTheme Cart All ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-46805 (Cross-Site Request Forgery (CSRF) vulnerability in Lauri Karisola / WP ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-46804
 	RESERVED
 CVE-2022-46803
@@ -20361,9 +20361,9 @@ CVE-2022-46800
 CVE-2022-46799
 	RESERVED
 CVE-2022-46798 (Cross-Site Request Forgery (CSRF) vulnerability in HasThemes ShopLento ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-46797 (Cross-Site Request Forgery (CSRF) vulnerability in Conversios All-in-o ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-46796
 	RESERVED
 CVE-2022-46795
@@ -23389,7 +23389,7 @@ CVE-2022-45806
 CVE-2022-45805
 	RESERVED
 CVE-2022-45804 (Cross-Site Request Forgery (CSRF) vulnerability in RoboSoft Photo Gall ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-45803
 	RESERVED
 CVE-2022-45802



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f233de8a396e703795d21fec5968c7e599a074a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f233de8a396e703795d21fec5968c7e599a074a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230302/f898e07d/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list