[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 3 21:15:11 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7a2f8081 by Salvatore Bonaccorso at 2023-05-03T22:14:44+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1886,15 +1886,15 @@ CVE-2023-28724 (NGINX Management Suite default file permissions are set such tha
CVE-2023-28656 (NGINX Management Suite may allow an authenticated attacker to gain acc ...)
TODO: check
CVE-2023-28406 (A directory traversal vulnerability exists in an undisclosed page of t ...)
- TODO: check
+ NOT-FOR-US: F5 BIG-IP
CVE-2023-27378 (Multiple reflected cross-site scripting (XSS) vulnerabilities exist in ...)
- TODO: check
+ NOT-FOR-US: F5 BIG-IP
CVE-2023-24594 (When an SSL profile is configured on a Virtual Server, undisclosed tra ...)
TODO: check
CVE-2023-24461 (An improper certificate validationvulnerability exists in the BIG-IP E ...)
- TODO: check
+ NOT-FOR-US: F5 BIG-IP
CVE-2023-22372 (In the pre connection stage, an improper enforcement of message integr ...)
- TODO: check
+ NOT-FOR-US: F5 BIG-IP
CVE-2023-2089 (A vulnerability was found in SourceCodester Complaint Management Syste ...)
NOT-FOR-US: SourceCodester Complaint Management System
CVE-2023-2088
@@ -15678,7 +15678,7 @@ CVE-2023-26019
CVE-2023-26018
RESERVED
CVE-2023-26017 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Blue ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-26016
RESERVED
CVE-2023-26015
@@ -16248,7 +16248,7 @@ CVE-2023-25799
CVE-2023-25798 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability i ...)
TODO: check
CVE-2023-25797 (Auth. Stored Cross-Site Scripting (XSS) vulnerability in Mr.Vibe vSlid ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-25796 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Incl ...)
TODO: check
CVE-2023-25795 (Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in WP-master.I ...)
@@ -22487,7 +22487,7 @@ CVE-2023-23710 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability i
CVE-2023-23709
RESERVED
CVE-2023-23708 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-23707 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
NOT-FOR-US: WordPress plugin
CVE-2023-23706
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a2f808147febf72b81a27cd7354553b8b9bcbb8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a2f808147febf72b81a27cd7354553b8b9bcbb8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230503/ea255f4a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list