[Git][security-tracker-team/security-tracker][master] NFUs

Wed Nov 8 09:11:07 GMT 2023


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fc438406 by Moritz Muehlenhoff at 2023-11-08T10:09:25+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,73 +3,73 @@ CVE-2023-6002 (YugabyteDB is vulnerable to cross site scripting (XSS) via log in
 CVE-2023-6001 (Prometheus metrics are available without authentication. These expose  ...)
 	TODO: check
 CVE-2023-5982 (The UpdraftPlus: WordPress Backup & Migration Plugin plugin for WordPr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-5801 (Vulnerability of identity verification being bypassed in the face unlo ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-46800 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46799 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46798 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46797 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46796 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46795 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46794 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46793 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46792 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46790 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46789 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46788 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46787 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46786 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46785 (Online Matrimonial Project v1.0 is vulnerable to multiple Unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Online Matrimonial Project
 CVE-2023-46770 (Out-of-bounds vulnerability in the sensor module. Successful exploitat ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-46769 (Use-After-Free (UAF) vulnerability in the dubai module.  Successful ex ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-46768 (Multi-thread vulnerability in the idmap module. Successful exploitatio ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-46680 (Online Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL I ...)
-	TODO: check
+	NOT-FOR-US: Online Job Portal
 CVE-2023-46679 (Online Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL I ...)
-	TODO: check
+	NOT-FOR-US: Online Job Portal
 CVE-2023-46678 (Online Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL I ...)
-	TODO: check
+	NOT-FOR-US: Online Job Portal
 CVE-2023-46677 (Online Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL I ...)
-	TODO: check
+	NOT-FOR-US: Online Job Portal
 CVE-2023-46676 (Online Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL I ...)
-	TODO: check
+	NOT-FOR-US: Online Job Portal
 CVE-2023-46483 (Cross Site Scripting vulnerability in timetec AWDMS v.2.0 allows an at ...)
-	TODO: check
+	NOT-FOR-US: timetec AWDMS
 CVE-2023-46001 (Buffer Overflow vulnerability in gpac MP4Box v.2.3-DEV-rev573-g2013208 ...)
 	TODO: check
 CVE-2023-45380 (In the module "Order Duplicator " Clone and Delete Existing Order" (or ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop addon
 CVE-2023-44115 (Vulnerability of improper permission control in the Booster module. Im ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-43984 (Insecure permissions in Smart Soft advancedexport before v4.4.7 allow  ...)
-	TODO: check
+	NOT-FOR-US: Smart Soft advancedexport
 CVE-2023-42361 (Local File Inclusion vulnerability in Midori-global Better PDF Exporte ...)
-	TODO: check
+	NOT-FOR-US:  Midori-global Better PDF Exporter for Jira Server
 CVE-2023-41270 (Improper Restriction of Excessive Authentication Attempts vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2023-41112 (An issue was discovered in Samsung Mobile Processor, Wearable Processo ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2023-41111 (An issue was discovered in Samsung Mobile Processor, Wearable Processo ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2023-45284 [path/filepath: recognize device names with trailing spaces and superscripts]
 	- golang-1.21 1.21.4-1
 	- golang-1.20 1.20.11-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fc438406888bbf931699504e3a0cbeda4550ccf8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fc438406888bbf931699504e3a0cbeda4550ccf8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231108/93af5ce1/attachment.htm>
