[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Sep 13 21:45:08 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
59f5a4d1 by Salvatore Bonaccorso at 2023-09-13T22:44:28+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,35 +1,35 @@
 CVE-2023-4828 (An improper check for an exceptional condition in the Insider Threat M ...)
-	TODO: check
+	NOT-FOR-US: Insider Threat Management (ITM) Server
 CVE-2023-4803 (A reflected cross-site scripting vulnerability in the WriteWindowTitle ...)
-	TODO: check
+	NOT-FOR-US: Insider Threat Management (ITM) Server
 CVE-2023-4802 (A reflected cross-site scripting vulnerability in the UpdateInstalledS ...)
-	TODO: check
+	NOT-FOR-US: Insider Threat Management (ITM) Server
 CVE-2023-4801 (An improper certification validation vulnerability in the Insider Thre ...)
-	TODO: check
+	NOT-FOR-US: Insider Threat Management (ITM) Server
 CVE-2023-4785 (Lack of error handling in the TCP server in Google's gRPC starting ver ...)
 	TODO: check
 CVE-2023-4701 (A Improper Privilege Management vulnerability through an incorrect use ...)
-	TODO: check
+	NOT-FOR-US: CodeMeter Runtime
 CVE-2023-42469 (The com.full.dialer.top.secure.encrypted application through 1.0.1 for ...)
-	TODO: check
+	NOT-FOR-US: com.full.dialer.top.secure.encrypted application
 CVE-2023-42468 (The com.cutestudio.colordialer application through 2.1.8-2 for Android ...)
-	TODO: check
+	NOT-FOR-US: com.cutestudio.colordialer application
 CVE-2023-41892 (Craft CMS is a platform for creating digital experiences. This is a hi ...)
-	TODO: check
+	NOT-FOR-US: Craft CMS
 CVE-2023-41081 (The mod_jk component of Apache Tomcat Connectorsin some circumstances, ...)
 	TODO: check
 CVE-2023-40850 (netentsec NS-ASG 6.3 is vulnerable to Incorrect Access Control. There  ...)
-	TODO: check
+	NOT-FOR-US: netentsec NS-ASG
 CVE-2023-40717 (A use of hard-coded credentials vulnerability [CWE-798] inFortiTester2 ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-40715 (A cleartext storage of sensitive information vulnerability [CWE-312] i ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-3935 (A heap buffer overflow vulnerability in Wibu CodeMeter Runtime network ...)
-	TODO: check
+	NOT-FOR-US: Wibu CodeMeter Runtime
 CVE-2023-3588 (A stored Cross-site Scripting (XSS) vulnerability affecting Teamwork C ...)
 	TODO: check
 CVE-2023-3280 (A problem with a protection mechanism in the Palo Alto Networks Cortex ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks
 CVE-2023-39916 (NLnet Labs\u2019 Routinator 0.9.0 up to and including 0.12.1 contains  ...)
 	TODO: check
 CVE-2023-39915 (NLnet Labs\u2019 Routinator up to and including version 0.12.1 may cra ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59f5a4d1ecc3f033f79ad0be5323fe65afb40831

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59f5a4d1ecc3f033f79ad0be5323fe65afb40831
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230913/2223f510/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list