[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Dec 30 20:30:03 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c07b3b44 by Salvatore Bonaccorso at 2024-12-30T21:29:17+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2024-56801 (Tasklists provides plugin tasklists for GLPI. Versions prior to 2.0.4  ...)
-	TODO: check
+	NOT-FOR-US: Tasklists plugin for GLPI
 CVE-2024-56800 (Firecrawl is a web scraper that allows users to extract the content of ...)
 	TODO: check
 CVE-2024-56799 (Simofa is a tool to help automate static website building and deployme ...)
@@ -9,11 +9,11 @@ CVE-2024-56734 (Better Auth is an authentication library for TypeScript. An open
 CVE-2024-56733 (Password Pusher is an open source application to communicate sensitive ...)
 	TODO: check
 CVE-2024-56517 (LGSL (Live Game Server List) provides online status lists for online v ...)
-	TODO: check
+	NOT-FOR-US: LGSL (Live Game Server List)
 CVE-2024-56516 (free-one-api allows users to access large language model reverse engin ...)
 	TODO: check
 CVE-2024-54181 (IBM WebSphere Automation 1.7.5 could allow a remote privileged user, w ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-52294 (Khoj is a self-hostable artificial intelligence app. Prior to version  ...)
 	TODO: check
 CVE-2024-50703 (TeamPass before 3.1.3.1 does not properly prevent a user from acting w ...)
@@ -23,9 +23,9 @@ CVE-2024-50702 (TeamPass before 3.1.3.1 does not properly check whether a mail_m
 CVE-2024-50701 (TeamPass before 3.1.3.1, when retrieving information about access righ ...)
 	TODO: check
 CVE-2024-47926 (Tecnick TCExam \u2013 CWE-89: Improper Neutralization of Special Eleme ...)
-	TODO: check
+	NOT-FOR-US: Tecnick TCExam
 CVE-2024-47925 (Tecnick TCExam \u2013 Multiple CWE-79: Improper Neutralization of Inpu ...)
-	TODO: check
+	NOT-FOR-US: Tecnick TCExam
 CVE-2024-47924 (Boa web server \u2013 CWE-79: Improper Neutralization of Input During  ...)
 	TODO: check
 CVE-2024-47923 (Mashov \u2013 CWE-200: Exposure of Sensitive Information to an Unautho ...)
@@ -43,21 +43,21 @@ CVE-2024-47918 (Tiki Wiki CMS \u2013 CWE-80: Improper Neutralization of Script-R
 CVE-2024-47917 (CWE-79: Improper Neutralization of Input During Web Page Generation (' ...)
 	TODO: check
 CVE-2024-46542 (Veritas / Arctera Data Insight before 7.1.1 allows Application Adminis ...)
-	TODO: check
+	NOT-FOR-US: Veritas
 CVE-2024-22063 (The ZENIC ONE R58 products by ZTE Corporation have a command injection ...)
-	TODO: check
+	NOT-FOR-US: ZTE
 CVE-2024-12993 (Infinix devices contain a pre-loaded "com.rlk.weathers" application, t ...)
 	TODO: check
 CVE-2024-12836 (Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Co ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2024-12835 (Delta Electronics DRASimuCAD ICS File Parsing Out-Of-Bounds Write Remo ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2024-12834 (Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Co ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2024-12828 (Webmin CGI Command Injection Remote Code Execution Vulnerability. This ...)
 	TODO: check
 CVE-2024-12754 (AnyDesk Link Following Information Disclosure Vulnerability. This vuln ...)
-	TODO: check
+	NOT-FOR-US: AnyDesk
 CVE-2024-10044 (A Server-Side Request Forgery (SSRF) vulnerability exists in the POST  ...)
 	TODO: check
 CVE-2024-13039 (A vulnerability was found in code-projects Simple Chat System 1.0. It  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c07b3b448080d38536e4fa191c80d38177a2fee1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c07b3b448080d38536e4fa191c80d38177a2fee1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241230/743065ad/attachment.htm>

More information about the debian-security-tracker-commits mailing list