[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Aug 7 21:29:10 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a504b349 by Salvatore Bonaccorso at 2024-08-07T22:28:37+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,37 +1,37 @@
 CVE-2024-7585 (A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classifi ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-7584 (A vulnerability, which was classified as critical, was found in Tenda  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-7583 (A vulnerability, which was classified as critical, has been found in T ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-7582 (A vulnerability classified as critical was found in Tenda i22 1.0.0.3( ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-7581 (A vulnerability classified as critical has been found in Tenda A301 15 ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-7580 (A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24. ...)
-	TODO: check
+	NOT-FOR-US: Alien Technology ALR-F800
 CVE-2024-7579 (A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24. ...)
-	TODO: check
+	NOT-FOR-US: Alien Technology ALR-F800
 CVE-2024-7578 (A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24. ...)
-	TODO: check
+	NOT-FOR-US: Alien Technology ALR-F800
 CVE-2024-7553 (Incorrect validation of files loaded from a local untrusted directory  ...)
 	TODO: check
 CVE-2024-7355 (The Organization chart plugin for WordPress is vulnerable to Stored Cr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7353 (The Accept Stripe Payments plugin for WordPress is vulnerable to Store ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7267 (Exposure of Sensitive Informationvulnerability in Naukowa i Akademicka ...)
-	TODO: check
+	NOT-FOR-US: EZD RP
 CVE-2024-7266 (Incorrect User Management vulnerability in Naukowa i Akademicka Sie\u0 ...)
-	TODO: check
+	NOT-FOR-US: EZD RP
 CVE-2024-7265 (Incorrect User Management vulnerability in Naukowa i Akademicka Sie\u0 ...)
-	TODO: check
+	NOT-FOR-US: EZD RP
 CVE-2024-7143 (A flaw was found in the Pulp package. When a role-based access control ...)
-	TODO: check
+	NOT-FOR-US: Pulp (Red Hat)
 CVE-2024-7061 (Okta Verify for Windows is vulnerable to privilege escalation through  ...)
-	TODO: check
+	NOT-FOR-US: Okta Verify for Windows
 CVE-2024-6522 (The Modern Events Calendar plugin for WordPress is vulnerable to Serve ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43199 (Nagios NDOUtils before 2.1.4 allows privilege escalation from nagios t ...)
 	TODO: check
 CVE-2024-43045 (Jenkins 2.470 and earlier, LTS 2.452.3 and earlier does not perform a  ...)
@@ -39,47 +39,47 @@ CVE-2024-43045 (Jenkins 2.470 and earlier, LTS 2.452.3 and earlier does not perf
 CVE-2024-43044 (Jenkins 2.470 and earlier, LTS 2.452.3 and earlier allows agent proces ...)
 	TODO: check
 CVE-2024-41912 (A vulnerability was discovered in the firmware builds up to 10.10.2.2  ...)
-	TODO: check
+	NOT-FOR-US: HP
 CVE-2024-41432 (An IP Spoofing vulnerability has been discovered in Likeshop up to 2.5 ...)
-	TODO: check
+	NOT-FOR-US: Likeshop
 CVE-2024-41309 (An issue in the Hardware info module of IT Solutions Enjay CRM OS v1.0 ...)
-	TODO: check
+	NOT-FOR-US: IT Solutions Enjay CRM OS
 CVE-2024-41308 (An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 allows  ...)
-	TODO: check
+	NOT-FOR-US: IT Solutions Enjay CRM OS
 CVE-2024-41252 (An Incorrect Access Control vulnerability was found in /smsa/admin_stu ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41251 (An Incorrect Access Control vulnerability was found in /smsa/admin_tea ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41250 (An Incorrect Access Control vulnerability was found in /smsa/view_stud ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41249 (An Incorrect Access Control vulnerability was found in /smsa/view_subj ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41248 (An Incorrect Access Control vulnerability was found in /smsa/add_subje ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41247 (An Incorrect Access Control vulnerability was found in /smsa/add_class ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41246 (An Incorrect Access Control vulnerability was found in /smsa/admin_das ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41245 (An Incorrect Access Control vulnerability was found in /smsa/view_teac ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41244 (An Incorrect Access Control vulnerability was found in /smsa/view_clas ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41243 (An Incorrect Access Control vulnerability was found in /smsa/view_mark ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41242 (A Reflected Cross Site Scripting (XSS) vulnerability was found in /sms ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41241 (A Reflected Cross Site Scripting (XSS) vulnerability was found in " /s ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41240 (A Reflected Cross Site Scripting (XSS) vulnerability was found in " /s ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41239 (A Stored Cross Site Scripting (XSS) vulnerability was found in "/smsa/ ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41237 (A SQL injection vulnerability in /smsa/teacher_login.php in Kashipara  ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-34480 (SourceCodester Computer Laboratory Management System 1.0 allows admin/ ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Computer Laboratory Management System
 CVE-2024-34479 (SourceCodester Computer Laboratory Management System 1.0 allows classe ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Computer Laboratory Management System
 CVE-2024-20479 (A vulnerability in the web-based management interface of Cisco ISE cou ...)
 	TODO: check
 CVE-2024-20454 (Multiple vulnerabilities in the web-based management interface of Cisc ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a504b3498bdb38a3340ef8b911c53b2bb0b6cddd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a504b3498bdb38a3340ef8b911c53b2bb0b6cddd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240807/ac7bca1c/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list