[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Mar 14 20:42:12 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
93b3c5d6 by Salvatore Bonaccorso at 2023-03-14T21:41:20+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -53,21 +53,21 @@ CVE-2023-1400
 CVE-2023-1399
 	RESERVED
 CVE-2023-1398 (A vulnerability classified as critical was found in XiaoBingBy TeaCMS  ...)
-	TODO: check
+	NOT-FOR-US: XiaoBingBy TeaCMS
 CVE-2023-1397 (A vulnerability classified as problematic has been found in SourceCode ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Student Management System
 CVE-2023-1396 (A vulnerability was found in SourceCodester Online Tours & Travels ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Tours & Travels Management System
 CVE-2023-1395 (A vulnerability was found in SourceCodester Yoga Class Registration Sy ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Yoga Class Registration System
 CVE-2023-1394 (A vulnerability was found in SourceCodester Online Graduate Tracer Sys ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Graduate Tracer System
 CVE-2023-1393
 	RESERVED
 CVE-2023-1392 (A vulnerability has been found in SourceCodester Online Pizza Ordering ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Pizza Ordering System
 CVE-2023-1391 (A vulnerability, which was classified as problematic, was found in Sou ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Tours & Travels Management System
 CVE-2023-1390
 	RESERVED
 CVE-2023-1389
@@ -2690,9 +2690,9 @@ CVE-2023-27465
 CVE-2023-27464
 	RESERVED
 CVE-2023-27463 (A vulnerability has been identified in RUGGEDCOM CROSSBOW (All version ...)
-	TODO: check
+	NOT-FOR-US: RUGGEDCOM CROSSBOW
 CVE-2023-27462 (A vulnerability has been identified in RUGGEDCOM CROSSBOW (All version ...)
-	TODO: check
+	NOT-FOR-US: RUGGEDCOM CROSSBOW
 CVE-2023-27461
 	RESERVED
 CVE-2023-27460
@@ -2804,23 +2804,23 @@ CVE-2023-27408
 CVE-2023-27407
 	RESERVED
 CVE-2023-27406 (A vulnerability has been identified in Tecnomatix Plant Simulation (Al ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-27405 (A vulnerability has been identified in Tecnomatix Plant Simulation (Al ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-27404 (A vulnerability has been identified in Tecnomatix Plant Simulation (Al ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-27403 (A vulnerability has been identified in Tecnomatix Plant Simulation (Al ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-27402 (A vulnerability has been identified in Tecnomatix Plant Simulation (Al ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-27401 (A vulnerability has been identified in Tecnomatix Plant Simulation (Al ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-27400 (A vulnerability has been identified in Tecnomatix Plant Simulation (Al ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-27399 (A vulnerability has been identified in Tecnomatix Plant Simulation (Al ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-27398 (A vulnerability has been identified in Tecnomatix Plant Simulation (Al ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-27383
 	RESERVED
 CVE-2023-27307
@@ -3095,9 +3095,9 @@ CVE-2023-27312
 CVE-2023-27311
 	RESERVED
 CVE-2023-27310 (A vulnerability has been identified in RUGGEDCOM CROSSBOW (All version ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-27309 (A vulnerability has been identified in RUGGEDCOM CROSSBOW (All version ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-23554 (Uncontrolled search path element vulnerability exists in pg_ivm versio ...)
 	NOT-FOR-US: pg_ivm
 CVE-2023-22847 (Information disclosure vulnerability exists in pg_ivm versions prior t ...)
@@ -3712,9 +3712,9 @@ CVE-2023-27076
 CVE-2023-27075
 	RESERVED
 CVE-2023-27074 (BP Monitoring Management System v1.0 was discovered to contain a SQL i ...)
-	TODO: check
+	NOT-FOR-US: BP Monitoring Management System
 CVE-2023-27073 (A Cross-Site Request Forgery (CSRF) in Online Food Ordering System v1. ...)
-	TODO: check
+	NOT-FOR-US: Online Food Ordering System
 CVE-2023-27072
 	RESERVED
 CVE-2023-27071
@@ -6490,7 +6490,7 @@ CVE-2023-25959
 CVE-2023-25958
 	RESERVED
 CVE-2023-25957 (A vulnerability has been identified in Mendix SAML (Mendix 7 compatibl ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-25956 (Generation of Error Message Containing Sensitive Information vulnerabi ...)
 	NOT-FOR-US: Apache Airflow AWS Provider
 CVE-2023-25077 (Cross-site scripting vulnerability in Authentication Key Settings of E ...)
@@ -7819,21 +7819,21 @@ CVE-2023-25598
 CVE-2023-25597
 	RESERVED
 CVE-2023-25596 (A vulnerability exists in ClearPass Policy Manager that allows for an  ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2023-25595 (A vulnerability exists in the ClearPass OnGuard Ubuntu agent that allo ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2023-25594 (A vulnerability in the web-based management interface of ClearPass Pol ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2023-25593 (Vulnerabilities within the web-based management interface of ClearPass ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2023-25592 (Vulnerabilities within the web-based management interface of ClearPass ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2023-25591 (A vulnerability in the web-based management interface of ClearPass Pol ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2023-25590 (A vulnerability in the ClearPass OnGuard Linux agent could allow malic ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2023-25589 (A vulnerability in the web-based management interface of ClearPass Pol ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2023-0744 (Improper Access Control in GitHub repository answerdev/answer prior to ...)
 	NOT-FOR-US: Answer
 CVE-2023-0743 (Cross-site Scripting (XSS) - Generic in GitHub repository answerdev/an ...)
@@ -8777,7 +8777,7 @@ CVE-2023-25208
 CVE-2023-25207 (PrestaShop dpdfrance <6.1.3 is vulnerable to SQL Injection via dpdf ...)
 	NOT-FOR-US: PrestaShop
 CVE-2023-25206 (PrestaShop ws_productreviews < 3.6.2 is vulnerable to SQL Injection ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2023-25205
 	RESERVED
 CVE-2023-25204
@@ -9573,7 +9573,7 @@ CVE-2023-24932
 CVE-2023-24931
 	RESERVED
 CVE-2023-24930 (Microsoft OneDrive for MacOS Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24929
 	RESERVED
 CVE-2023-24928
@@ -9587,15 +9587,15 @@ CVE-2023-24925
 CVE-2023-24924
 	RESERVED
 CVE-2023-24923 (Microsoft OneDrive for Android Information Disclosure Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24922 (Microsoft Dynamics 365 Information Disclosure Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24921 (Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24920 (Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24919 (Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24918
 	RESERVED
 CVE-2023-24917
@@ -9607,21 +9607,21 @@ CVE-2023-24915
 CVE-2023-24914
 	RESERVED
 CVE-2023-24913 (Microsoft PostScript and PCL6 Class Printer Driver Remote Code Executi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24912
 	RESERVED
 CVE-2023-24911 (Microsoft PostScript and PCL6 Class Printer Driver Information Disclos ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24910 (Windows Graphics Component Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24909 (Microsoft PostScript and PCL6 Class Printer Driver Remote Code Executi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24908 (Remote Procedure Call Runtime Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24907 (Microsoft PostScript and PCL6 Class Printer Driver Remote Code Executi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24906 (Microsoft PostScript and PCL6 Class Printer Driver Information Disclos ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24905
 	RESERVED
 CVE-2023-24904
@@ -9649,11 +9649,11 @@ CVE-2023-24894
 CVE-2023-24893
 	RESERVED
 CVE-2023-24892 (Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24891 (Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24890 (Microsoft OneDrive for iOS Security Feature Bypass Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24889
 	RESERVED
 CVE-2023-24888
@@ -9669,19 +9669,19 @@ CVE-2023-24884
 CVE-2023-24883
 	RESERVED
 CVE-2023-24882 (Microsoft OneDrive for Android Information Disclosure Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24881
 	RESERVED
 CVE-2023-24880 (Windows SmartScreen Security Feature Bypass Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24879 (Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24878
 	RESERVED
 CVE-2023-24877
 	RESERVED
 CVE-2023-24876 (Microsoft PostScript and PCL6 Class Printer Driver Remote Code Executi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24875
 	RESERVED
 CVE-2023-24874
@@ -9689,39 +9689,39 @@ CVE-2023-24874
 CVE-2023-24873
 	RESERVED
 CVE-2023-24872 (Microsoft PostScript and PCL6 Class Printer Driver Remote Code Executi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24871 (Windows Bluetooth Service Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24870 (Microsoft PostScript and PCL6 Class Printer Driver Information Disclos ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24869 (Remote Procedure Call Runtime Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24868 (Microsoft PostScript and PCL6 Class Printer Driver Remote Code Executi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24867 (Microsoft PostScript and PCL6 Class Printer Driver Remote Code Executi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24866 (Microsoft PostScript and PCL6 Class Printer Driver Information Disclos ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24865 (Microsoft PostScript and PCL6 Class Printer Driver Information Disclos ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24864 (Microsoft PostScript and PCL6 Class Printer Driver Elevation of Privil ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24863 (Microsoft PostScript and PCL6 Class Printer Driver Information Disclos ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24862 (Windows Secure Channel Denial of Service Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24861 (Windows Graphics Component Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24860
 	RESERVED
 CVE-2023-24859 (Windows Internet Key Exchange (IKE) Extension Denial of Service Vulner ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24858 (Microsoft PostScript and PCL6 Class Printer Driver Information Disclos ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24857 (Microsoft PostScript and PCL6 Class Printer Driver Information Disclos ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24856 (Microsoft PostScript and PCL6 Class Printer Driver Information Disclos ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-24016
 	RESERVED
 CVE-2023-23910
@@ -14028,87 +14028,87 @@ CVE-2023-23425
 CVE-2023-23424
 	RESERVED
 CVE-2023-23423 (Windows Kernel Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23422 (Windows Kernel Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23421 (Windows Kernel Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23420 (Windows Kernel Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23419 (Windows Resilient File System (ReFS) Elevation of Privilege Vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23418 (Windows Resilient File System (ReFS) Elevation of Privilege Vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23417 (Windows Partition Management Driver Elevation of Privilege Vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23416 (Windows Cryptographic Services Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23415 (Internet Control Message Protocol (ICMP) Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23414 (Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Exec ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23413 (Microsoft PostScript and PCL6 Class Printer Driver Remote Code Executi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23412 (Windows Accounts Picture Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23411 (Windows Hyper-V Denial of Service Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23410 (Windows HTTP.sys Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23409 (Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulner ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23408 (Azure Apache Ambari Spoofing Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23407 (Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Exec ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23406 (Microsoft PostScript and PCL6 Class Printer Driver Remote Code Executi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23405 (Remote Procedure Call Runtime Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23404 (Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulner ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23403 (Microsoft PostScript and PCL6 Class Printer Driver Remote Code Executi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23402 (Windows Media Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23401 (Windows Media Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23400 (Windows DNS Server Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23399 (Microsoft Excel Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23398 (Microsoft Excel Spoofing Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23397 (Microsoft Outlook Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23396 (Microsoft Excel Denial of Service Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23395 (Microsoft SharePoint Server Spoofing Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23394 (Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulner ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23393 (Windows BrokerInfrastructure Service Elevation of Privilege Vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23392 (HTTP Protocol Stack Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23391 (Office for Android Spoofing Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23390 (3D Builder Remote Code Execution Vulnerability ...)
 	NOT-FOR-US: Microsoft
 CVE-2023-23389 (Microsoft Defender Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23388 (Windows Bluetooth Driver Elevation of Privilege Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23387
 	RESERVED
 CVE-2023-23386
 	RESERVED
 CVE-2023-23385 (Windows Point-to-Point Protocol over Ethernet (PPPoE) Elevation of Pri ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23384
 	RESERVED
 CVE-2023-23383 (Service Fabric Explorer Spoofing Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-23382 (Azure Machine Learning Compute Instance Information Disclosure Vulnera ...)
 	NOT-FOR-US: Microsoft
 CVE-2023-23381 (Visual Studio Remote Code Execution Vulnerability ...)
@@ -21039,7 +21039,7 @@ CVE-2022-47445
 CVE-2022-47444
 	RESERVED
 CVE-2022-47443 (Cross-Site Request Forgery (CSRF) vulnerability in Daniel Powney Multi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-47442
 	RESERVED
 CVE-2022-47441
@@ -21081,7 +21081,7 @@ CVE-2022-47424
 CVE-2022-47423
 	RESERVED
 CVE-2022-47422 (Cross-Site Request Forgery (CSRF) vulnerability in HM Plugin Accept St ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-47421
 	RESERVED
 CVE-2022-47420
@@ -21408,7 +21408,7 @@ CVE-2023-21710 (Microsoft Exchange Server Remote Code Execution Vulnerability ..
 CVE-2023-21709
 	RESERVED
 CVE-2023-21708 (Remote Procedure Call Runtime Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-21707 (Microsoft Exchange Server Remote Code Execution Vulnerability ...)
 	NOT-FOR-US: Microsoft
 CVE-2023-21706 (Microsoft Exchange Server Remote Code Execution Vulnerability ...)
@@ -21999,7 +21999,7 @@ CVE-2022-47156
 CVE-2022-47155 (Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Slider by ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-47154 (Cross-Site Request Forgery (CSRF) vulnerability in Pi Websolution CSS  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-47153
 	RESERVED
 CVE-2022-47152
@@ -22013,7 +22013,7 @@ CVE-2022-47149
 CVE-2022-47148 (Cross-Site Request Forgery (CSRF) vulnerability in WP Overnight PDF In ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-47147 (Cross-Site Request Forgery (CSRF) vulnerability in Kesz1 Technologies  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-47146
 	RESERVED
 CVE-2022-47145
@@ -22021,11 +22021,11 @@ CVE-2022-47145
 CVE-2022-47144
 	RESERVED
 CVE-2022-47143 (Cross-Site Request Forgery (CSRF) vulnerability in Themeisle Multiple  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-47142
 	RESERVED
 CVE-2022-47141 (Cross-Site Request Forgery (CSRF) vulnerability in Seerox WP Dynamic K ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-47140
 	RESERVED
 CVE-2022-47139
@@ -34784,11 +34784,11 @@ CVE-2022-41807 (Missing authorization vulnerability exists in Kyocera Document S
 CVE-2022-41798 (Session information easily guessable vulnerability exists in Kyocera D ...)
 	NOT-FOR-US: Kyocera Document Solutions
 CVE-2022-3680 (This CVE ID has been rejected or withdrawn by its CVE Numbering Author ...)
-	TODO: check
+	NOT-FOR-US: REJECTED CVE not correctly downconverted for feed
 CVE-2022-3679 (The Starter Templates by Kadence WP WordPress plugin before 1.2.17 uns ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-3678 (This CVE ID has been rejected or withdrawn by its CVE Numbering Author ...)
-	TODO: check
+	NOT-FOR-US: REJECTED CVE not correctly downconverted for feed
 CVE-2022-3677 (The Advanced Import WordPress plugin before 1.3.8 does not have CSRF c ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-3676 (In Eclipse Openj9 before version 0.35.0, interface calls can be inline ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93b3c5d60a2a6fa622265d07b637c3927325a4f0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93b3c5d60a2a6fa622265d07b637c3927325a4f0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230314/760a9ad8/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list