[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jul 26 13:07:28 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8031ccf9 by Salvatore Bonaccorso at 2024-07-26T14:06:34+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,45 +1,45 @@
 CVE-2024-7120 (A vulnerability, which was classified as critical, was found in Raisec ...)
-	TODO: check
+	NOT-FOR-US: Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300
 CVE-2024-7119 (A vulnerability, which was classified as critical, has been found in M ...)
-	TODO: check
+	NOT-FOR-US: MD-MAFUJUL-HASAN Online-Payroll-Management-System
 CVE-2024-7118 (A vulnerability classified as critical was found in MD-MAFUJUL-HASAN O ...)
-	TODO: check
+	NOT-FOR-US: MD-MAFUJUL-HASAN Online-Payroll-Management-System
 CVE-2024-7117 (A vulnerability classified as critical has been found in MD-MAFUJUL-HA ...)
-	TODO: check
+	NOT-FOR-US: MD-MAFUJUL-HASAN Online-Payroll-Management-System
 CVE-2024-7116 (A vulnerability was found in MD-MAFUJUL-HASAN Online-Payroll-Managemen ...)
-	TODO: check
+	NOT-FOR-US: MD-MAFUJUL-HASAN Online-Payroll-Management-System
 CVE-2024-7115 (A vulnerability was found in MD-MAFUJUL-HASAN Online-Payroll-Managemen ...)
-	TODO: check
+	NOT-FOR-US: MD-MAFUJUL-HASAN Online-Payroll-Management-System
 CVE-2024-7114 (A vulnerability was found in Tianchoy Blog up to 1.8.8. It has been cl ...)
-	TODO: check
+	NOT-FOR-US: Tianchoy Blog
 CVE-2024-7106 (A vulnerability classified as problematic was found in Spina CMS 2.18. ...)
-	TODO: check
+	NOT-FOR-US: Spina CMS
 CVE-2024-7105 (A vulnerability classified as critical has been found in ForIP Tecnolo ...)
-	TODO: check
+	NOT-FOR-US: ForIP Tecnologia Administracao PABX
 CVE-2024-6490 (During testing of the Master Slider  WordPress plugin through 3.9.10,  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4447 (In the System \u2192 Maintenance tool, the Logged Users tab surfaces s ...)
-	TODO: check
+	NOT-FOR-US: DotCMS
 CVE-2024-41809 (OpenObserve is an open-source observability platform. Starting in vers ...)
-	TODO: check
+	NOT-FOR-US: OpenObserve
 CVE-2024-41808 (The OpenObserve open-source observability platform provides the abilit ...)
-	TODO: check
+	NOT-FOR-US: OpenObserve
 CVE-2024-41473 (Tenda FH1201 v1.2.0.14 was discovered to contain a command injection v ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-41468 (Tenda FH1201 v1.2.0.14 was discovered to contain a command injection v ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-40897 (Stack-based buffer overflow vulnerability exists in orcparse.c of ORC  ...)
 	TODO: check
 CVE-2024-3938 (The "reset password" login page accepted an HTML injection via URL par ...)
-	TODO: check
+	NOT-FOR-US: DotCMS
 CVE-2024-38103 (Microsoft Edge (Chromium-based) Information Disclosure Vulnerability)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2024-24623 (Softaculous Webuzo contains a command injection vulnerability in the F ...)
-	TODO: check
+	NOT-FOR-US: Softaculous Webuzo
 CVE-2024-24622 (Softaculous Webuzo contains a command injection in the password reset  ...)
-	TODO: check
+	NOT-FOR-US: Softaculous Webuzo
 CVE-2024-24621 (Softaculous Webuzo contains an authentication bypass vulnerability thr ...)
-	TODO: check
+	NOT-FOR-US: Softaculous Webuzo
 CVE-2024-35296 [Invalid Accept-Encoding can force forwarding requests]
 	- trafficserver <unfixed> (bug #1077141)
 	NOTE: https://www.openwall.com/lists/oss-security/2024/07/25/1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8031ccf91346cca9ba19dc9ddfff69250bb35551

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8031ccf91346cca9ba19dc9ddfff69250bb35551
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240726/5721ba2b/attachment.htm>

More information about the debian-security-tracker-commits mailing list