[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0a7387f9 by Salvatore Bonaccorso at 2024-02-23T10:01:27+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -28,29 +28,29 @@ CVE-2024-26151 (The `mjml` PyPI package, found at the `FelixSchwarz/mjml-python`
 CVE-2024-26128 (baserCMS is a website development framework. Prior to version 5.0.9, t ...)
 	NOT-FOR-US: baserCMS
 CVE-2024-25876 (A cross-site scripting (XSS) vulnerability in the Header module of Enh ...)
-	TODO: check
+	NOT-FOR-US: Enhavo CMS module
 CVE-2024-25875 (A cross-site scripting (XSS) vulnerability in the Header module of Enh ...)
-	TODO: check
+	NOT-FOR-US: Enhavo CMS module
 CVE-2024-25874 (A cross-site scripting (XSS) vulnerability in the New/Edit Article mod ...)
-	TODO: check
+	NOT-FOR-US: Enhavo CMS module
 CVE-2024-25873 (Enhavo v0.13.1 was discovered to contain an HTML injection vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: Enhavo CMS
 CVE-2024-25851 (Netis WF2780 v2.1.40144 was discovered to contain a command injection  ...)
-	TODO: check
+	NOT-FOR-US: Netis WF2780
 CVE-2024-25850 (Netis WF2780 v2.1.40144 was discovered to contain a command injection  ...)
-	TODO: check
+	NOT-FOR-US: Netis WF2780
 CVE-2024-25828 (cmseasy V7.7.7.9 has an arbitrary file deletion vulnerability in lib/a ...)
-	TODO: check
+	NOT-FOR-US: cmseasy
 CVE-2024-25802 (SKINsoft S-Museum 7.02.3 allows Unrestricted File Upload via the Add M ...)
-	TODO: check
+	NOT-FOR-US: SKINsoft S-Museum
 CVE-2024-25756 (A Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0 with fi ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-25753 (Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0 with firm ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-25748 (A Stack Based Buffer Overflow vulnerability in tenda AC9 AC9 v.3.0 wit ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-25746 (Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0 with firm ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-25385 (An issue in flvmeta v.1.2.2 allows a local attacker to cause a denial  ...)
 	TODO: check
 CVE-2024-25369 (A reflected Cross-Site Scripting (XSS) vulnerability in FUEL CMS 1.5.2 ...)
@@ -60,7 +60,7 @@ CVE-2024-25130 (Tuleap is an open source suite to improve management of software
 CVE-2024-25129 (The CodeQL CLI repo holds binaries for the CodeQL command line interfa ...)
 	TODO: check
 CVE-2024-25021 (IBM AIX 7.3, VIOS 4.1's Perl implementation could allow a non-privileg ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-24817 (Discourse Calendar adds the ability to create a dynamic calendar in th ...)
 	TODO: check
 CVE-2024-23094 (Flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forge ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a7387f9408b16906d3a6fe6a64bc3e15319fe08

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a7387f9408b16906d3a6fe6a64bc3e15319fe08
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240223/9031b390/attachment.htm>