[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Oct 6 22:12:00 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
727844f7 by Salvatore Bonaccorso at 2023-10-06T23:10:37+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,23 +1,23 @@
CVE-2023-5452 (Cross-site Scripting (XSS) - Stored in GitHub repository snipe/snipe-i ...)
TODO: check
CVE-2023-5214 (In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges ...)
- TODO: check
+ NOT-FOR-US: Puppet Bolt
CVE-2023-4530 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: Turna Advertising Administration Panel
CVE-2023-4469 (The Profile Extra Fields by BestWebSoft plugin for WordPress is vulner ...)
TODO: check
CVE-2023-45311 (fsevents before 1.2.11 depends on the https://fsevents-binaries.s3-us- ...)
TODO: check
CVE-2023-45303 (ThingsBoard before 3.5 allows Server-Side Template Injection if users ...)
- TODO: check
+ NOT-FOR-US: ThingsBoard
CVE-2023-45282 (In NASA Open MCT (aka openmct) 2.2.5 before 545a177, prototype polluti ...)
- TODO: check
+ NOT-FOR-US: NASA Open MCT (aka openmct)
CVE-2023-45246 (Sensitive information disclosure and manipulation due to improper auth ...)
- TODO: check
+ NOT-FOR-US: Acronis
CVE-2023-45245 (Sensitive information disclosure due to missing authorization. The fol ...)
- TODO: check
+ NOT-FOR-US: Acronis
CVE-2023-45244 (Sensitive information disclosure and manipulation due to missing autho ...)
- TODO: check
+ NOT-FOR-US: Acronis
CVE-2023-45239 (A lack of input validation exists in tac_plus prior to commit 4fdf178 ...)
TODO: check
CVE-2023-44807 (D-Link DIR-820L 1.05B03 has a stack overflow vulnerability in the canc ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/727844f7cc4bc60016fb08e1a3da0e3a805df66d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/727844f7cc4bc60016fb08e1a3da0e3a805df66d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231006/35063be5/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list