[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Dec 18 08:23:45 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ba7c2c68 by Salvatore Bonaccorso at 2024-12-18T09:23:12+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2024-56175 (In Optimizely Configured Commerce before 5.2.2408, malicious payloads  ...)
-	TODO: check
+	NOT-FOR-US: Optimizely Configured Commerce
 CVE-2024-56174 (In Optimizely Configured Commerce before 5.2.2408, malicious payloads  ...)
-	TODO: check
+	NOT-FOR-US: Optimizely Configured Commerce
 CVE-2024-56173 (In Optimizely Configured Commerce before 5.2.2408, malicious payloads  ...)
-	TODO: check
+	NOT-FOR-US: Optimizely Configured Commerce
 CVE-2024-56170 (A validation integrity issue was discovered in Fort through 1.6.4 befo ...)
 	TODO: check
 CVE-2024-56169 (A validation integrity issue was discovered in Fort through 1.6.4 befo ...)
@@ -11,13 +11,13 @@ CVE-2024-56169 (A validation integrity issue was discovered in Fort through 1.6.
 CVE-2024-56142 (pghoard is a PostgreSQL backup daemon and restore tooling that stores  ...)
 	TODO: check
 CVE-2024-55059 (A stored HTML Injection vulnerability was identified in PHPGurukul Onl ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul Online Birth Certificate System
 CVE-2024-55058 (An insecure direct object reference (IDOR) vulnerability was discovere ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul Online Birth Certificate System
 CVE-2024-55057 (Phpgurukul Online Birth Certificate System 1.0 suffers from insufficie ...)
-	TODO: check
+	NOT-FOR-US: Phpgurukul Online Birth Certificate System
 CVE-2024-55056 (A stored cross-site scripting (XSS) vulnerability was identified in Ph ...)
-	TODO: check
+	NOT-FOR-US: Phpgurukul Online Birth Certificate System
 CVE-2024-54457 (Inclusion of undocumented features or chicken bits issue exists in AE1 ...)
 	TODO: check
 CVE-2024-53688 (Improper neutralization of special elements used in an OS command ('OS ...)
@@ -25,7 +25,7 @@ CVE-2024-53688 (Improper neutralization of special elements used in an OS comman
 CVE-2024-52792 (LDAP Account Manager (LAM) is a php webfrontend for managing entries ( ...)
 	TODO: check
 CVE-2024-51175 (An issue in H3C switch h3c-S1526 allows a remote attacker to obtain se ...)
-	TODO: check
+	NOT-FOR-US: H3C switch h3c-S1526
 CVE-2024-4464 (Authorization bypass through user-controlled key vulnerability in stre ...)
 	TODO: check
 CVE-2024-47480 (Dell Inventory Collector Client, versions prior to 12.7.0, contains an ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ba7c2c680a55a98450d2c7cb3e4249b43d701ae0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ba7c2c680a55a98450d2c7cb3e4249b43d701ae0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241218/43dd2b27/attachment.htm>

More information about the debian-security-tracker-commits mailing list