[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jul 18 21:06:26 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5ad8676d by Salvatore Bonaccorso at 2024-07-18T22:05:54+02:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -34,7 +34,7 @@ CVE-2024-39678 (Cooked is a recipe plugin for WordPress. The Cooked plugin is vu
 CVE-2024-29014 (Vulnerability in SonicWall NetExtender Windows (32 and 64-bit) client  ...)
 	NOT-FOR-US: SonicWall
 CVE-2023-6708 (The SVG Support plugin for WordPress is vulnerable to Stored Cross-Sit ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-43971 (Cross Site Scripting vulnerability in ACG-faka v1.1.7 allows a remote  ...)
 	TODO: check
 CVE-2024-41011 (In the Linux kernel, the following vulnerability has been resolved:  d ...)
@@ -132,31 +132,31 @@ CVE-2024-23466 (SolarWinds Access Rights Manager (ARM) is susceptible to a Direc
 CVE-2024-23465 (The SolarWinds Access Rights Manager was found to be susceptible to an ...)
 	NOT-FOR-US: SolarWinds
 CVE-2024-20435 (A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance c ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2024-20429 (A vulnerability in the web-based management interface of Cisco AsyncOS ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2024-20419 (A vulnerability in the authentication system of Cisco Smart Software M ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2024-20416 (A vulnerability in the upload module of Cisco RV340 and RV345 Dual WAN ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2024-20401 (A vulnerability in the content scanning and message filtering features ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2024-20400 (A vulnerability in the web-based management interface of Cisco Express ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2024-20396 (A vulnerability in the protocol handlers of Cisco Webex App could allo ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2024-20395 (A vulnerability in the media retrieval functionality of Cisco Webex Ap ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2024-20323 (A vulnerability in Cisco Intelligent Node (iNode) Software could allow ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2024-20296 (A vulnerability in the web-based management interface of Cisco Identit ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2023-7272 (In Eclipse Parsson before 1.0.4 and 1.1.3, a document with a large dep ...)
-	TODO: check
+	NOT-FOR-US: Eclipse Parsson
 CVE-2023-52291 (In streampark, the project module integrates Maven's compilation capab ...)
-	TODO: check
+	NOT-FOR-US: streampark
 CVE-2023-4976 (A flaw exists in Purity//FB whereby a local account is permitted to au ...)
-	TODO: check
+	NOT-FOR-US: Purity//FB
 CVE-2023-42010 (IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 a ...)
 	NOT-FOR-US: IBM
 CVE-2024-6808 (A vulnerability was found in itsourcecode Simple Task List 1.0. It has ...)
@@ -521,7 +521,7 @@ CVE-2024-21686 (This High severity Stored XSS vulnerability was introduced in ve
 CVE-2024-1937 (The Brizy \u2013 Page Builder plugin for WordPress is vulnerable to un ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-31456 (There is an SSRF vulnerability in the Fluid Topics platform that affec ...)
-	TODO: check
+	NOT-FOR-US: Fluid Topics platform
 CVE-2023-52886 (In the Linux kernel, the following vulnerability has been resolved:  U ...)
 	- linux 6.5.3-1
 	[bookworm] - linux 6.1.55-1
@@ -130345,7 +130345,7 @@ CVE-2022-45451 (Local privilege escalation due to insecure driver communication
 CVE-2022-45450 (Sensitive information disclosure and manipulation due to improper auth ...)
 	NOT-FOR-US: Acronis
 CVE-2022-45449 (Sensitive information disclosure due to excessive privileges assigned  ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-45448 (M4 PDF plugin for Prestashop sites, in its 3.2.3 version and before, i ...)
 	NOT-FOR-US: M4 PDF plugin for Prestashop sites
 CVE-2022-45447 (M4 PDF plugin for Prestashop sites, in its 3.2.3 version and before, i ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ad8676d56efa8fe5d11c71397c1850dfea61dc1

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ad8676d56efa8fe5d11c71397c1850dfea61dc1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240718/757f7076/attachment.htm>

More information about the debian-security-tracker-commits mailing list