[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Nov 14 20:22:24 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4ada52b2 by Salvatore Bonaccorso at 2023-11-14T21:21:55+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,103 +1,103 @@
CVE-2023-6131 (Code Injection in GitHub repository salesagility/suitecrm prior to 7.1 ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6130 (Path Traversal: '\..\filename' in GitHub repository salesagility/suite ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6128 (Cross-site Scripting (XSS) - Reflected in GitHub repository salesagili ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6127 (Unrestricted Upload of File with Dangerous Type in GitHub repository s ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6126 (Code Injection in GitHub repository salesagility/suitecrm prior to 7.1 ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6125 (Code Injection in GitHub repository salesagility/suitecrm prior to 7.1 ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6124 (Server-Side Request Forgery (SSRF) in GitHub repository salesagility/s ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6111 (A use-after-free vulnerability in the Linux kernel's netfilter: nf_tab ...)
TODO: check
CVE-2023-48094 (A cross-site scripting (XSS) vulnerability in CesiumJS v1.111 allows a ...)
TODO: check
CVE-2023-48021 (Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forg ...)
- TODO: check
+ NOT-FOR-US: Dreamer CMS
CVE-2023-48020 (Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forg ...)
- TODO: check
+ NOT-FOR-US: Dreamer CMS
CVE-2023-47660 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WP W ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47659 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47658 (Auth. (ShopManager+) Stored Cross-Site Scripting (XSS) vulnerability i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47656 (Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in Mar ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47654 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47653 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Abu ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47646 (Auth. (Shop Manager+) Stored Cross-Site Scripting (XSS) vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47554 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in DenK ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47550 (Cross-Site Request Forgery (CSRF) vulnerability in RedNao Donations Ma ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47384 (MP4Box GPAC v2.3-DEV-rev617-g671976fcc-master was discovered to contai ...)
TODO: check
CVE-2023-47262 (In Abbott ID NOW before 7.1, settings can be modified via physical acc ...)
- TODO: check
+ NOT-FOR-US: Abbott ID NOW
CVE-2023-47127 (TYPO3 is an open source PHP based web content management system releas ...)
- TODO: check
+ NOT-FOR-US: Typo3
CVE-2023-47126 (TYPO3 is an open source PHP based web content management system releas ...)
- TODO: check
+ NOT-FOR-US: Typo3
CVE-2023-46601 (A vulnerability has been identified in COMOS (All versions). The affec ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-46590 (A vulnerability has been identified in Siemens OPC UA Modelling Editor ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-46099 (A vulnerability has been identified in SIMATIC PCS neo (All versions < ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-46098 (A vulnerability has been identified in SIMATIC PCS neo (All versions < ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-46097 (A vulnerability has been identified in SIMATIC PCS neo (All versions < ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-46096 (A vulnerability has been identified in SIMATIC PCS neo (All versions < ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-45794 (A vulnerability has been identified in Mendix Applications using Mendi ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-45684 (Northern.tech CFEngine Enterprise before 3.21.3 allows SQL Injection. ...)
TODO: check
CVE-2023-45585 (An insertion of sensitive information into log file vulnerability [CWE ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-45582 (An improper restriction of excessive authentication attempts vulnerabi ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-44374 (A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44373 (A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44322 (A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44321 (A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44320 (A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44319 (A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44318 (A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44317 (A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44248 (An improper access control vulnerability [CWE-284] inFortiEDRCollector ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-43505 (A vulnerability has been identified in COMOS (All versions). The affec ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-43504 (A vulnerability has been identified in COMOS (All versions < V10.4.4). ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-43503 (A vulnerability has been identified in COMOS (All versions < V10.4.4). ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-42783 (A relative path traversal in Fortinet FortiWLM version 8.6.0 through 8 ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-41840 (A untrusted search path vulnerability in Fortinet FortiClientWindows 7 ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-41676 (An exposure of sensitive information to an unauthorized actor [CWE-200 ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-40719 (A use of hard-coded credentials vulnerability in Fortinet FortiAnalyze ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-40540 (Non-Transparent Sharing of Microarchitectural Resources in some Intel( ...)
TODO: check
CVE-2023-40220 (Improper buffer restrictions in some Intel(R) NUC BIOS firmware may al ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4ada52b2d44aaa45f4cbb81f3e87740245912477
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4ada52b2d44aaa45f4cbb81f3e87740245912477
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231114/3445e8b5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list