[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Sep 16 09:23:07 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3c15654d by Salvatore Bonaccorso at 2023-09-16T10:22:39+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,33 +3,33 @@ CVE-2023-5001 (The Horizontal scrolling announcement for WordPress plugin for Wo
 CVE-2023-4994 (The Allow PHP in Posts and Pages plugin for WordPress is vulnerable to ...)
 	NOT-FOR-US: Allow PHP in Posts and Pages plugin for WordPress
 CVE-2023-42442 (JumpServer is an open source bastion host and a professional operation ...)
-	TODO: check
+	NOT-FOR-US: JumpServer
 CVE-2023-42439 (GeoNode is an open source platform that facilitates the creation, shar ...)
-	TODO: check
+	NOT-FOR-US: GeoNode
 CVE-2023-42336 (An issue in NETIS SYSTEMS WF2409Ev4 v.1.0.1.705 allows a remote attack ...)
-	TODO: check
+	NOT-FOR-US: NETIS SYSTEMS WF2409Ev4
 CVE-2023-41901
 	REJECTED
 CVE-2023-41900 (Jetty is a Java based web server and servlet engine. Versions 9.4.21 t ...)
 	TODO: check
 CVE-2023-41626 (Gradio v3.27.0 was discovered to contain an arbitrary file upload vuln ...)
-	TODO: check
+	NOT-FOR-US: Gradio
 CVE-2023-41436 (Cross Site Scripting vulnerability in CSZCMS v.1.3.0 allows a local at ...)
-	TODO: check
+	NOT-FOR-US: CSZCMS
 CVE-2023-41157 (Multiple stored cross-site scripting (XSS) vulnerabilities in Usermin  ...)
-	TODO: check
+	NOT-FOR-US: Usermin
 CVE-2023-39777 (A cross-site scripting (XSS) vulnerability in the Admin Control Panel  ...)
-	TODO: check
+	NOT-FOR-US: vBulletin
 CVE-2023-39612 (A cross-site scripting (XSS) vulnerability in FileBrowser before v2.23 ...)
 	TODO: check
 CVE-2023-36735 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-36727 (Microsoft Edge (Chromium-based) Spoofing Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-36562 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2023-36160 (An issue was discovered in Qubo Smart Plug10A version HSP02_01_01_14_S ...)
-	TODO: check
+	NOT-FOR-US: Qubo
 CVE-2023-4991 (A vulnerability was found in NextBX QWAlerter 4.50. It has been rated  ...)
 	NOT-FOR-US: NextBX QWAlerter
 CVE-2023-4988 (A vulnerability, which was classified as problematic, was found in Bet ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c15654d842bab75e869cfe2f86f655e00d21677

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c15654d842bab75e869cfe2f86f655e00d21677
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230916/0b587a59/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list