[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Feb 23 09:01:56 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0a7387f9 by Salvatore Bonaccorso at 2024-02-23T10:01:27+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -28,29 +28,29 @@ CVE-2024-26151 (The `mjml` PyPI package, found at the `FelixSchwarz/mjml-python`
CVE-2024-26128 (baserCMS is a website development framework. Prior to version 5.0.9, t ...)
NOT-FOR-US: baserCMS
CVE-2024-25876 (A cross-site scripting (XSS) vulnerability in the Header module of Enh ...)
- TODO: check
+ NOT-FOR-US: Enhavo CMS module
CVE-2024-25875 (A cross-site scripting (XSS) vulnerability in the Header module of Enh ...)
- TODO: check
+ NOT-FOR-US: Enhavo CMS module
CVE-2024-25874 (A cross-site scripting (XSS) vulnerability in the New/Edit Article mod ...)
- TODO: check
+ NOT-FOR-US: Enhavo CMS module
CVE-2024-25873 (Enhavo v0.13.1 was discovered to contain an HTML injection vulnerabili ...)
- TODO: check
+ NOT-FOR-US: Enhavo CMS
CVE-2024-25851 (Netis WF2780 v2.1.40144 was discovered to contain a command injection ...)
- TODO: check
+ NOT-FOR-US: Netis WF2780
CVE-2024-25850 (Netis WF2780 v2.1.40144 was discovered to contain a command injection ...)
- TODO: check
+ NOT-FOR-US: Netis WF2780
CVE-2024-25828 (cmseasy V7.7.7.9 has an arbitrary file deletion vulnerability in lib/a ...)
- TODO: check
+ NOT-FOR-US: cmseasy
CVE-2024-25802 (SKINsoft S-Museum 7.02.3 allows Unrestricted File Upload via the Add M ...)
- TODO: check
+ NOT-FOR-US: SKINsoft S-Museum
CVE-2024-25756 (A Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0 with fi ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-25753 (Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0 with firm ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-25748 (A Stack Based Buffer Overflow vulnerability in tenda AC9 AC9 v.3.0 wit ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-25746 (Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0 with firm ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-25385 (An issue in flvmeta v.1.2.2 allows a local attacker to cause a denial ...)
TODO: check
CVE-2024-25369 (A reflected Cross-Site Scripting (XSS) vulnerability in FUEL CMS 1.5.2 ...)
@@ -60,7 +60,7 @@ CVE-2024-25130 (Tuleap is an open source suite to improve management of software
CVE-2024-25129 (The CodeQL CLI repo holds binaries for the CodeQL command line interfa ...)
TODO: check
CVE-2024-25021 (IBM AIX 7.3, VIOS 4.1's Perl implementation could allow a non-privileg ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2024-24817 (Discourse Calendar adds the ability to create a dynamic calendar in th ...)
TODO: check
CVE-2024-23094 (Flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forge ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a7387f9408b16906d3a6fe6a64bc3e15319fe08
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a7387f9408b16906d3a6fe6a64bc3e15319fe08
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240223/9031b390/attachment.htm>
More information about the debian-security-tracker-commits
mailing list