[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9e1418d8 by Moritz Muehlenhoff at 2024-01-26T10:05:52+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,79 +1,79 @@
 CVE-2024-24399 (An arbitrary file upload vulnerability in LeptonCMS v7.0.0 allows auth ...)
-	TODO: check
+	NOT-FOR-US: LeptonCMS
 CVE-2024-23630 (An arbitrary firmware upload vulnerability exists in the Motorola  MR2 ...)
-	TODO: check
+	NOT-FOR-US: Motorola
 CVE-2024-23629 (An authentication bypass vulnerability exists in the web component of  ...)
-	TODO: check
+	NOT-FOR-US: Motorola
 CVE-2024-23628 (A command injection vulnerability exists in the  'SaveStaticRouteIPv6P ...)
-	TODO: check
+	NOT-FOR-US: Motorola
 CVE-2024-23627 (A command injection vulnerability exists in the 'SaveStaticRouteIPv4Pa ...)
-	TODO: check
+	NOT-FOR-US: Motorola
 CVE-2024-23626 (A command injection vulnerability exists in the \u2018SaveSysLogParams ...)
-	TODO: check
+	NOT-FOR-US: Motorola
 CVE-2024-23625 (A command injection vulnerability exists in D-Link DAP-1650 devices wh ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2024-23624 (A command injection vulnerability exists in the gena.cgi module of D-L ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2024-23622 (A stack-based buffer overflow exists in IBM Merge Healthcare eFilm Wor ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-23621 (A buffer overflow exists in IBM Merge Healthcare eFilm Workstation lic ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-23620 (An improper privilege management vulnerability exists in IBM Merge Hea ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-23619 (A hardcoded credential vulnerability exists in IBM Merge Healthcare eF ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-23618 (An arbitrary code execution vulnerability exists in Arris SURFboard SG ...)
-	TODO: check
+	NOT-FOR-US: Arris
 CVE-2024-23617 (A buffer overflow vulnerability exists in Symantec Data Loss Preventio ...)
-	TODO: check
+	NOT-FOR-US: Symantec
 CVE-2024-23616 (A buffer overflow vulnerability exists in Symantec Server Management S ...)
-	TODO: check
+	NOT-FOR-US: Symantec
 CVE-2024-23615 (A buffer overflow vulnerability exists in Symantec Messaging Gateway v ...)
-	TODO: check
+	NOT-FOR-US: Symantec
 CVE-2024-23614 (A buffer overflow vulnerability exists in Symantec Messaging Gateway v ...)
-	TODO: check
+	NOT-FOR-US: Symantec
 CVE-2024-23613 (A buffer overflow vulnerability exists in Symantec Deployment Solution ...)
-	TODO: check
+	NOT-FOR-US: Symantec
 CVE-2024-23388 (Improper authorization in handler for custom URL scheme issue in "Merc ...)
-	TODO: check
+	NOT-FOR-US: Mercari
 CVE-2024-23055 (An issue in Plone Docker Official Image 5.2.13 (5221) open-source soft ...)
-	TODO: check
+	NOT-FOR-US: Plone Docker image
 CVE-2024-22922 (An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows  ...)
-	TODO: check
+	NOT-FOR-US: Projectworlds Vistor Management Systemin PHP
 CVE-2024-22639 (iGalerie v3.0.22 was discovered to contain a reflected cross-site scri ...)
-	TODO: check
+	NOT-FOR-US: iGalerie
 CVE-2024-22638 (liveSite v2019.1 was discovered to contain a remote code execution (RC ...)
-	TODO: check
+	NOT-FOR-US: liveSite
 CVE-2024-22637 (Form Tools v3.1.1 was discovered to contain a reflected cross-site scr ...)
-	TODO: check
+	NOT-FOR-US: Form Tools
 CVE-2024-22636 (PluXml Blog v5.8.9 was discovered to contain a remote code execution ( ...)
-	TODO: check
+	- pluxml <removed>
 CVE-2024-22635 (WebCalendar v1.3.0 was discovered to contain a reflected cross-site sc ...)
-	TODO: check
+	- webcalendar <removed>
 CVE-2024-22545 (TRENDnet TEW-824DRU version 1.04b01 is vulnerable to Command Injection ...)
-	TODO: check
+	NOT-FOR-US: TRENDnet
 CVE-2024-21620 (An Improper Neutralization of Input During Web Page Generation ('Cross ...)
-	TODO: check
+	NOT-FOR-US: Juniper
 CVE-2024-21619 (A Missing Authentication for Critical Function vulnerability combined  ...)
-	TODO: check
+	NOT-FOR-US: Juniper
 CVE-2024-21387 (Microsoft Edge for Android Spoofing Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2024-21385 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2024-21383 (Microsoft Edge (Chromium-based) Spoofing Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2024-21382 (Microsoft Edge for Android Information Disclosure Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2024-21326 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2024-0891 (A vulnerability was found in hongmaple octopus 1.0. It has been declar ...)
-	TODO: check
+	NOT-FOR-US: hongmaple octopus
 CVE-2024-0890 (A vulnerability was found in hongmaple octopus 1.0. It has been classi ...)
-	TODO: check
+	NOT-FOR-US: hongmaple octopus
 CVE-2024-0889 (A vulnerability was found in Kmint21 Golden FTP Server 2.02b and class ...)
-	TODO: check
+	NOT-FOR-US: Kmint21 Golden FTP Server
 CVE-2024-0888 (A vulnerability, which was classified as problematic, was found in BOR ...)
-	TODO: check
+	NOT-FOR-US: BORGChat
 CVE-2024-0887 (A vulnerability, which was classified as problematic, has been found i ...)
 	TODO: check
 CVE-2024-0886 (A vulnerability classified as problematic was found in Poikosoft EZ CD ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e1418d8b08ea5d1e14c9e517c50b790169ad615

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e1418d8b08ea5d1e14c9e517c50b790169ad615
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240126/3dd57f83/attachment.htm>