[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
73a68a87 by Salvatore Bonaccorso at 2024-02-08T09:53:43+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -10,37 +10,37 @@ CVE-2024-24806 (libuv is a multi-platform support library with a focus on asynch
 	NOTE: https://github.com/libuv/libuv/commit/0f2d7e784a256b54b2385043438848047bc2a629 (v1.48.0)
 	NOTE: https://github.com/libuv/libuv/commit/3530bcc30350d4a6ccf35d2f7b33e23292b9de70 (v1.48.0)
 CVE-2024-24350 (File Upload vulnerability in Software Publico e-Sic Livre v.2.0 and be ...)
-	TODO: check
+	NOT-FOR-US: Software Publico e-Sic Livre
 CVE-2024-24216 (Zentao v18.0 to v18.10 was discovered to contain a remote code executi ...)
-	TODO: check
+	NOT-FOR-US: Zentao
 CVE-2024-24202 (An arbitrary file upload vulnerability in /upgrade/control.php of ZenT ...)
-	TODO: check
+	NOT-FOR-US: Zentao
 CVE-2024-24091 (Yealink Meeting Server before v26.0.0.66 was discovered to contain an  ...)
-	TODO: check
+	NOT-FOR-US: Yealink Meeting Server
 CVE-2024-24026 (An arbitrary File upload vulnerability exists in Novel-Plus v4.3.0-RC1 ...)
-	TODO: check
+	NOT-FOR-US: Novel-Plus
 CVE-2024-24025 (An arbitrary File upload vulnerability exists in Novel-Plus v4.3.0-RC1 ...)
-	TODO: check
+	NOT-FOR-US: Novel-Plus
 CVE-2024-24024 (An arbitrary File download vulnerability exists in Novel-Plus v4.3.0-R ...)
-	TODO: check
+	NOT-FOR-US: Novel-Plus
 CVE-2024-24023 (A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prio ...)
-	TODO: check
+	NOT-FOR-US: Novel-Plus
 CVE-2024-24021 (A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prio ...)
-	TODO: check
+	NOT-FOR-US: Novel-Plus
 CVE-2024-24018 (A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prio ...)
-	TODO: check
+	NOT-FOR-US: Novel-Plus
 CVE-2024-24017 (A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prio ...)
-	TODO: check
+	NOT-FOR-US: Novel-Plus
 CVE-2024-24014 (A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prio ...)
-	TODO: check
+	NOT-FOR-US: Novel-Plus
 CVE-2024-24003 (jshERP v3.3 is vulnerable to SQL Injection. The com.jsh.erp.controller ...)
-	TODO: check
+	NOT-FOR-US: jshERP
 CVE-2024-23448 (An issue was discovered whereby APM Server could log at ERROR level, a ...)
 	TODO: check
 CVE-2024-22394 (An improper authentication vulnerability has been identified in SonicW ...)
-	TODO: check
+	NOT-FOR-US: SonicWall
 CVE-2024-0511 (The Royal Elementor Addons and Templates plugin for WordPress is vulne ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-6736 (An issue has been discovered in GitLab EE affecting all versions start ...)
 	TODO: check
 CVE-2023-5665 (The Payment Forms for Paystack plugin for WordPress is vulnerable to S ...)
@@ -92,7 +92,7 @@ CVE-2024-24812 (Frappe is a full-stack web application framework that uses Pytho
 CVE-2024-24811 (SQLAlchemyDA is a generic database adapter for ZSQL methods. A vulnera ...)
 	TODO: check
 CVE-2024-24771 (Open Forms allows users create and publish smart forms. Versions prior ...)
-	TODO: check
+	NOT-FOR-US: Open Forms
 CVE-2024-24706 (Cross-Site Request Forgery (CSRF) vulnerability in Forum One WP-CFM wp ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-24563 (Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual M ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/73a68a8734e4ded651ece763f3cacebf53c7af0e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/73a68a8734e4ded651ece763f3cacebf53c7af0e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240208/c4921948/attachment.htm>