[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Dec 20 12:48:04 GMT 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
18bcf88b by Moritz Muehlenhoff at 2024-12-20T13:47:26+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -187,11 +187,11 @@ CVE-2024-12569 (Disclosure of sensitive information in HikVision camera driver's
 CVE-2024-12331 (The File Manager Pro \u2013 Filester plugin for WordPress is vulnerabl ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-11616 (Netskope was made aware of a security vulnerability in Netskope Endpoi ...)
-	TODO: check
+	NOT-FOR-US: Netskope
 CVE-2024-10244 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
-	TODO: check
+	NOT-FOR-US: ISDO Software
 CVE-2023-7005 (A specially crafted message can be sent to the TTLock App that downgra ...)
-	TODO: check
+	NOT-FOR-US: TTLock app
 CVE-2023-4617 (Incorrect authorization vulnerability in HTTP POST method in Govee Hom ...)
 	NOT-FOR-US: Govee Home application on Android and iOS
 CVE-2024-9102 (phpLDAPadmin since at least version 1.2.0 through the latest version 1 ...)
@@ -209,7 +209,7 @@ CVE-2024-56317 (In Matter (aka connectedhomeip or Project CHIP) through 1.4.0.0,
 CVE-2024-56145 (Craft is a flexible, user-friendly CMS for creating custom digital exp ...)
 	NOT-FOR-US: Craft CMS
 CVE-2024-56140 (Astro is a web framework for content-driven websites. In affected vers ...)
-	TODO: check
+	NOT-FOR-US: Astro
 CVE-2024-56116 (A Cross-Site Request Forgery vulnerability in Amiro.CMS before 7.8.4 a ...)
 	NOT-FOR-US: Amiro.CMS
 CVE-2024-56115 (A vulnerability in Amiro.CMS before 7.8.4 exists due to the failure to ...)
@@ -263,7 +263,7 @@ CVE-2024-37649 (Insecure Permissions vulnerability in SecureSTATION v.2.5.5.3116
 CVE-2024-35141 (IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a  ...)
 	NOT-FOR-US: IBM
 CVE-2024-12686 (A vulnerability has been discovered in Privileged Remote Access (PRA)  ...)
-	TODO: check
+	NOT-FOR-US: BeyondTrust
 CVE-2024-12560 (The Button Block \u2013 Get fully customizable & multi-functional butt ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-12121 (The Broken Link Checker | Finder plugin for WordPress is vulnerable to ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/18bcf88b7a9c78e9bdeb57f751ae99a3ddac81ee

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/18bcf88b7a9c78e9bdeb57f751ae99a3ddac81ee
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241220/9b68b26f/attachment.htm>

More information about the debian-security-tracker-commits mailing list