[Git][security-tracker-team/security-tracker][master] Process NFUs

Sat May 20 09:49:56 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
654c9fb0 by Salvatore Bonaccorso at 2023-05-20T10:49:24+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2023-32677 (Zulip is an open-source team collaboration tool with unique topic-base ...)
-	TODO: check
+	NOT-FOR-US: Zulip
 CVE-2023-2824 (A vulnerability was found in SourceCodester Dental Clinic Appointment  ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Dental Clinic Appointment Reservation System
 CVE-2023-2823 (A vulnerability was found in SourceCodester Class Scheduling System 1. ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Class Scheduling System
 CVE-2023-2822 (A vulnerability was found in Ellucian Ethos Identity up to 5.10.5. It  ...)
 	TODO: check
 CVE-2023-2736 (The Groundhogg plugin for WordPress is vulnerable to Cross-Site Reques ...)
@@ -3844,7 +3844,7 @@ CVE-2023-1999
 CVE-2023-1997
 	RESERVED
 CVE-2023-1996 (A reflected Cross-site Scripting (XSS) vulnerability in 3DEXPERIENCE R ...)
-	TODO: check
+	NOT-FOR-US: 3ds
 CVE-2023-30532 (A missing permission check in Jenkins TurboScript Plugin 1.3 and earli ...)
 	NOT-FOR-US: Jenkins plugin
 CVE-2023-30531 (Jenkins Consul KV Builder Plugin 2.0.13 and earlier does not mask the  ...)
@@ -4651,7 +4651,7 @@ CVE-2023-30201
 CVE-2023-30200
 	RESERVED
 CVE-2023-30199 (Prestashop customexporter <= 1.7.20 is vulnerable to Incorrect Access  ...)
-	TODO: check
+	NOT-FOR-US: Prestashop
 CVE-2023-30198
 	RESERVED
 CVE-2023-30197
@@ -9260,7 +9260,7 @@ CVE-2023-28625 (mod_auth_openidc is an authentication and authorization module f
 CVE-2023-28624
 	RESERVED
 CVE-2023-28623 (Zulip is an open-source team collaboration tool with unique topic-base ...)
-	TODO: check
+	NOT-FOR-US: Zulip
 CVE-2023-28622
 	RESERVED
 CVE-2023-28621
@@ -11268,7 +11268,7 @@ CVE-2023-28047 (Dell Display Manager, versions 2.1.0 and prior, contains an arbi
 CVE-2023-28046 (Dell Display Manager, versions 2.1.0 and prior, contains an arbitrary  ...)
 	NOT-FOR-US: Dell
 CVE-2023-28045 (Dell CloudIQ Collector version 1.10.2 contains a missing encryption of ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-28044
 	RESERVED
 CVE-2023-28043
@@ -83600,7 +83600,7 @@ CVE-2022-1547 (The Check & Log Email WordPress plugin before 1.0.6 does not sani
 CVE-2022-1546 (The WooCommerce - Product Importer WordPress plugin through 1.5.2 does ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-30114 (A heap-based buffer overflow in a network service in Fastweb FASTGate  ...)
-	TODO: check
+	NOT-FOR-US: Fastweb
 CVE-2022-30113 (Electronic mall system 1.0_build20200203 is affected vulnerable to SQL ...)
 	NOT-FOR-US: Electronic mall system
 CVE-2022-30112



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/654c9fb0951b9d28f9b21bc433e0315a2aa561f4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/654c9fb0951b9d28f9b21bc433e0315a2aa561f4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230520/d7f8e398/attachment.htm>
