[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
198b766d by Salvatore Bonaccorso at 2024-04-09T14:01:13+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
 CVE-2024-3466 (A vulnerability was found in SourceCodester Laundry Management System  ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Laundry Management System
 CVE-2024-3465 (A vulnerability was found in SourceCodester Laundry Management System  ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Laundry Management System
 CVE-2024-31366 (Missing Authorization vulnerability in Themify Post Type Builder (PTB) ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-31365 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-31047 (An issue in Academy Software Foundation openexr v.3.2.3 and before all ...)
 	TODO: check
 CVE-2024-30701 (An insecure logging vulnerability in ROS2 Galactic Geochelone ROS_VERS ...)
@@ -47,25 +47,25 @@ CVE-2024-30678 (An issue has been discovered in ROS2 Iron Irwini ROS_VERSION 2 a
 CVE-2024-30676 (A Denial-of-Service (DoS) vulnerability exists in ROS2 Iron Irwini ver ...)
 	TODO: check
 CVE-2024-30218 (The ABAP Application Server of SAP NetWeaver as well as ABAP Platforma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2024-30217 (Cash Management in SAP S/4 HANA does not perform necessary authorizati ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2024-30216 (Cash Management in SAP S/4 HANA does not perform necessary authorizati ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2024-30215 (The Resource Settings page allows a high privilege attacker to load ex ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2024-30214 (The application allows a high privilege attacker to append a malicious ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2024-2975 (A race condition was identified through which privilege escalation was ...)
 	TODO: check
 CVE-2024-28167 (SAP Group Reporting Data Collectiondoes not perform necessary authoriz ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2024-27901 (SAP Asset Accounting could allow a high privileged attacker to exploit ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2024-27899 (Self-Registrationand Modify your own profile in User Admin Application ...)
 	TODO: check
 CVE-2024-27898 (SAP NetWeaver application, due to insufficient input validation, allow ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2024-27632 (An issue in GNU Savane v.3.12 and before allows a remote attacker to e ...)
 	TODO: check
 CVE-2024-27631 (Cross Site Request Forgery vulnerability in GNU Savane v.3.12 and befo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/198b766d7f2e8db484c52216f92723d729b122b1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/198b766d7f2e8db484c52216f92723d729b122b1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240409/65442931/attachment.htm>