[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Sep 21 09:42:03 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4c4cbdeb by Salvatore Bonaccorso at 2023-09-21T10:41:19+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,25 +1,25 @@
 CVE-2023-4760 (In Eclipse RAP versions from 3.0.0 up to and including 3.25.0, Remote  ...)
 	TODO: check
 CVE-2023-4292 (Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi v1.4.24 and all pre ...)
-	TODO: check
+	NOT-FOR-US: Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi
 CVE-2023-4291 (Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi v1.4.24 and all pre ...)
-	TODO: check
+	NOT-FOR-US: Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi
 CVE-2023-4152 (Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi v1.4.24 and all pre ...)
-	TODO: check
+	NOT-FOR-US: Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi
 CVE-2023-43669 (The Tungstenite crate through 0.20.0 for Rust allows remote attackers  ...)
 	TODO: check
 CVE-2023-43135 (There is an unauthorized access vulnerability in TP-LINK ER5120G 4.0 2 ...)
-	TODO: check
+	NOT-FOR-US: TP-LINK
 CVE-2023-42322 (Insecure Permissions vulnerability in icmsdev iCMS v.7.0.16 allows a r ...)
-	TODO: check
+	NOT-FOR-US: icmsdev iCMS
 CVE-2023-42321 (Cross Site Request Forgery (CSRF) vulnerability in icmsdev iCMSv.7.0.1 ...)
-	TODO: check
+	NOT-FOR-US: icmsdev iCMS
 CVE-2023-39677 (MyPrestaModules Prestashop Module v6.2.9 and UpdateProducts Prestashop ...)
-	TODO: check
+	NOT-FOR-US: MyPrestaModules Prestashop Module
 CVE-2023-39675 (SimpleImportProduct Prestashop Module v6.2.9 was discovered to contain ...)
-	TODO: check
+	NOT-FOR-US: Prestashop Module
 CVE-2023-39252 (Dell SCG Policy Manager 5.16.00.14  contains a broken cryptographic al ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-38876 (A reflected cross-site scripting (XSS) vulnerability in msaad1999's PH ...)
 	TODO: check
 CVE-2023-38875 (A reflected cross-site scripting (XSS) vulnerability in msaad1999's PH ...)
@@ -31,7 +31,7 @@ CVE-2023-36234 (Cross Site Scripting (XSS) vulnerability in Netbox 3.5.1, allows
 CVE-2023-36109 (Buffer Overflow vulnerability in JerryScript version 3.0, allows remot ...)
 	TODO: check
 CVE-2023-34575 (SQL injection vulnerability in PrestaShop opartsavecart through 2.0.7  ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop opartsavecart
 CVE-2023-5084 (Cross-site Scripting (XSS) - Reflected in GitHub repository hestiacp/h ...)
 	TODO: check
 CVE-2023-5074 (Use of a static key to protect a JWT token used in user authentication ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c4cbdebade2f0a60927445b26bae93d58d62796

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c4cbdebade2f0a60927445b26bae93d58d62796
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230921/7dd35c18/attachment.htm>


More information about the debian-security-tracker-commits mailing list