[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c93c06f7 by Salvatore Bonaccorso at 2023-09-19T22:20:11+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,19 +1,19 @@
 CVE-2023-4376 (The Serial Codes Generator and Validator with WooCommerce Support Word ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-4096 (Weak password recovery mechanism vulnerability in Fujitsu Arconte \xc1 ...)
-	TODO: check
+	NOT-FOR-US: Fujitsu
 CVE-2023-4095 (User enumeration vulnerability in Arconte \xc1urea 1.5.0.0 version. Th ...)
-	TODO: check
+	NOT-FOR-US: Fujitsu
 CVE-2023-4094 (ARCONTE Aurea's authentication system, in its 1.5.0.0 version, could a ...)
-	TODO: check
+	NOT-FOR-US: Fujitsu
 CVE-2023-4093 (Reflected and persistent XSS vulnerability in Arconte \xc1urea, in its ...)
-	TODO: check
+	NOT-FOR-US: Fujitsu
 CVE-2023-4092 (SQL injection vulnerability in Arconte \xc1urea, in its 1.5.0.0 versio ...)
-	TODO: check
+	NOT-FOR-US: Fujitsu
 CVE-2023-43566 (In JetBrains TeamCity before 2023.05.4 stored XSS was possible during  ...)
-	TODO: check
+	NOT-FOR-US: JetBrains TeamCity
 CVE-2023-42793 (In JetBrains TeamCity before 2023.05.4 authentication bypass leading t ...)
-	TODO: check
+	NOT-FOR-US: JetBrains TeamCity
 CVE-2023-42452 (Mastodon is a free, open-source social network server based on Activit ...)
 	TODO: check
 CVE-2023-42451 (Mastodon is a free, open-source social network server based on Activit ...)
@@ -33,21 +33,21 @@ CVE-2023-41387 (A SQL injection in the flutter_downloader component through 1.11
 CVE-2023-41179 (A vulnerability in the 3rd party AV uninstaller module contained in Tr ...)
 	NOT-FOR-US: Trend Micro
 CVE-2023-3892 (Improper Restriction of XML External Entity Reference vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: MIM Assistant and Client DICOM RTst Loading modules
 CVE-2023-38356 (MiniTool Power Data Recovery 11.6 contains an insecure installation pr ...)
-	TODO: check
+	NOT-FOR-US: MiniTool Power Data Recovery
 CVE-2023-38355 (MiniTool Movie Maker 6.1.0 contains an insecure installation process t ...)
-	TODO: check
+	NOT-FOR-US: MiniTool Movie Maker
 CVE-2023-38354 (MiniTool Movie Maker 4.1 contains an insecure installation process tha ...)
-	TODO: check
+	NOT-FOR-US: MiniTool Movie Maker
 CVE-2023-38353 (MiniTool Power Data Recovery 11.5 contains an insecure in-app payment  ...)
-	TODO: check
+	NOT-FOR-US: MiniTool Power Data Recovery
 CVE-2023-38352 (MiniTool Partition Wizard 12.8 contains an insecure update mechanism t ...)
-	TODO: check
+	NOT-FOR-US: MiniTool Partition Wizard
 CVE-2023-38351 (MiniTool Partition Wizard 12.8 contains an insecure installation mecha ...)
-	TODO: check
+	NOT-FOR-US: MiniTool Partition Wizard
 CVE-2023-32649 (A Denial of Service (Dos) vulnerability in Nozomi Networks Guardian an ...)
-	TODO: check
+	NOT-FOR-US: Nozomi Networks
 CVE-2023-32186 (A Allocation of Resources Without Limits or Throttling vulnerability i ...)
 	TODO: check
 CVE-2023-32182 (A Improper Link Resolution Before File Access ('Link Following') vulne ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c93c06f7f896ae927697bf5bac185e473151b92e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c93c06f7f896ae927697bf5bac185e473151b92e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230919/95f5d788/attachment.htm>