[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jun 25 21:26:30 BST 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
527d6822 by Salvatore Bonaccorso at 2024-06-25T22:25:53+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2024-6308 (A vulnerability was found in itsourcecode Simple Online Hotel Reservat ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode Simple Online Hotel Reservation System
 CVE-2024-6307 (WordPress Core is vulnerable to Stored Cross-Site Scripting via the HT ...)
 	TODO: check
 CVE-2024-6306
@@ -21,23 +21,23 @@ CVE-2024-6257 (HashiCorp\u2019s go-getter library can be coerced into executing
 CVE-2024-6238 (pgAdmin <= 8.8 has an installation Directory permission issue.Because  ...)
 	TODO: check
 CVE-2024-6206 (A security vulnerability has been identified in HPE Athonet Mobile Cor ...)
-	TODO: check
+	NOT-FOR-US: HPE
 CVE-2024-6028 (The Quiz Maker plugin for WordPress is vulnerable to time-based SQL In ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-5990 (Due to an improper input validation, an unauthenticated threat actor c ...)
-	TODO: check
+	NOT-FOR-US: Rockwell Automation
 CVE-2024-5989 (Due to an improper input validation, an unauthenticated threat actor c ...)
-	TODO: check
+	NOT-FOR-US: Rockwell Automation
 CVE-2024-5988 (Due to an improper input validation, an unauthenticated threat actor c ...)
-	TODO: check
+	NOT-FOR-US: Rockwell Automation
 CVE-2024-5806 (Improper Authentication vulnerability in Progress MOVEit Transfer (SFT ...)
-	TODO: check
+	NOT-FOR-US: Progress MOVEit Transfer
 CVE-2024-5805 (Improper Authentication vulnerability in Progress MOVEit Gateway (SFTP ...)
-	TODO: check
+	NOT-FOR-US: Progress MOVEit
 CVE-2024-5451 (The The7 \u2014 Website and eCommerce Builder for WordPress theme for  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-5276 (A SQL Injection vulnerability in Fortra FileCatalyst Workflow allows a ...)
-	TODO: check
+	NOT-FOR-US: Fortra
 CVE-2024-5261 (Improper Certificate Validation vulnerability in LibreOffice "LibreOff ...)
 	TODO: check
 CVE-2024-5216 (A vulnerability in mintplex-labs/anything-llm allows for a Denial of S ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/527d68228ce15bfb96a0863e1ffd2c92e0017600

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/527d68228ce15bfb96a0863e1ffd2c92e0017600
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240625/6593b068/attachment.htm>


More information about the debian-security-tracker-commits mailing list