[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f45b512d by Salvatore Bonaccorso at 2024-12-25T21:41:38+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,23 +1,23 @@
 CVE-2024-8950 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
-	TODO: check
+	NOT-FOR-US: Arne Informatics Piramit Automation
 CVE-2024-56431 (oc_huff_tree_unpack in huffdec.c in libtheora in Theora through 1.0 71 ...)
 	TODO: check
 CVE-2024-56430 (OpenFHE through 1.2.3 has a NULL pointer dereference in BinFHEContext: ...)
-	TODO: check
+	NOT-FOR-US: OpenFHE
 CVE-2024-53291 (Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Exposure of Sensiti ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2024-52906 (IBM AIX7.2, 7.3, VIOS 3.1, and 4.1    could allow a non-privileged loc ...)
 	NOT-FOR-US: IBM
 CVE-2024-52543 (Dell NativeEdge, version(s) 2.1.0.0, contain(s) a Creation of Temporar ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2024-52535 (Dell SupportAssist for Home PCs versions 4.6.1 and prior and Dell Supp ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2024-52534 (Dell ECS, version(s) prior to ECS 3.8.1.3, contain(s) an Authenticatio ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2024-52046 (The ObjectSerializationDecoder in Apache MINA uses Java\u2019s native  ...)
-	TODO: check
+	NOT-FOR-US: Apache MINA
 CVE-2024-47978 (Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Execution with Unne ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2024-47102 (IBM AIX7.2, 7.3, VIOS 3.1, and 4.1  could allow a non-privileged local ...)
 	NOT-FOR-US: IBM
 CVE-2024-39727 (IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 an ...)
@@ -25,29 +25,29 @@ CVE-2024-39727 (IBM Engineering Lifecycle Optimization - Engineering Insights 7.
 CVE-2024-39725 (IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 an ...)
 	NOT-FOR-US: IBM
 CVE-2024-1609 (In OPPOStore iOS App, there's a possible escalation of privilege due t ...)
-	TODO: check
+	NOT-FOR-US: OPPOStore iOS App
 CVE-2024-12926 (A vulnerability classified as critical was found in Codezips Project M ...)
-	TODO: check
+	NOT-FOR-US: Codezips Project Management System
 CVE-2024-12636 (The Privacy Policy Generator, Terms & Conditions Generator WordPress P ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12428 (The WP Data Access \u2013 App, Table, Form and Chart Builder plugin pl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12413 (The MarketKing \u2014 Ultimate WooCommerce Multivendor Marketplace Sol ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12335 (The Avada (Fusion) Builder plugin for WordPress is vulnerable to Infor ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12272 (The WP Travel Engine \u2013 Elementor Widgets | Create Travel Booking  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12190 (The Contact Form by Bit Form: Multi Step Form, Calculation Contact For ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12032 (The Tourfic \u2013 Ultimate Hotel Booking, Travel Booking & Apartment  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11281 (The WooCommerce Point of Sale plugin for WordPress is vulnerable to pr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10862 (The NEX-Forms \u2013 Ultimate Form Builder \u2013 Contact forms and mu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10858 (The Jetpack  WordPress plugin before 14.1 does not properly checks the ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-5117 (An issue was discovered in GitLab CE/EE affecting all versions before  ...)
 	TODO: check
 CVE-2024-8721 (The Tracking Code Manager plugin for WordPress is vulnerable to Stored ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f45b512dae5c6d89b58cc470c47fb5bdd207c391

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f45b512dae5c6d89b58cc470c47fb5bdd207c391
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241225/8162f298/attachment-0001.htm>