[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Mar 2 08:20:21 GMT 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3e4cba32 by Salvatore Bonaccorso at 2024-03-02T09:19:41+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
 CVE-2024-27747 (File Upload vulnerability in Petrol Pump Mangement Software v.1.0 allo ...)
-	TODO: check
+	NOT-FOR-US: Petrol Pump Mangement Software
 CVE-2024-27746 (SQL Injection vulnerability in Petrol Pump Mangement Software v.1.0 al ...)
-	TODO: check
+	NOT-FOR-US: Petrol Pump Mangement Software
 CVE-2024-27744 (Cross Site Scripting vulnerability in Petrol Pump Mangement Software v ...)
-	TODO: check
+	NOT-FOR-US: Petrol Pump Mangement Software
 CVE-2024-27743 (Cross Site Scripting vulnerability in Petrol Pump Mangement Software v ...)
-	TODO: check
+	NOT-FOR-US: Petrol Pump Mangement Software
 CVE-2024-27101 (SpiceDB is an open source, Google Zanzibar-inspired database for creat ...)
 	TODO: check
 CVE-2024-25438 (A cross-site scripting (XSS) vulnerability in the Submission module of ...)
@@ -29,11 +29,11 @@ CVE-2024-22182 (A remote, unauthenticated attacker may be able to send crafted m
 CVE-2024-21767 (A remote attacker may be able to bypass access control of Commend WS20 ...)
 	TODO: check
 CVE-2024-1869 (Certain HP DesignJet print products are potentially vulnerable to info ...)
-	TODO: check
+	NOT-FOR-US: HP
 CVE-2024-1775 (The Nextend Social Login and Register plugin for WordPress is vulnerab ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-1592 (The Complianz \u2013 GDPR/CCPA Cookie Consent plugin for WordPress is  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-7244 (Industrial Control Systems Network Protocol Parsers (ICSNPP) - Etherca ...)
 	TODO: check
 CVE-2023-7243 (Industrial Control Systems Network Protocol Parsers (ICSNPP) - Etherca ...)
@@ -41,15 +41,15 @@ CVE-2023-7243 (Industrial Control Systems Network Protocol Parsers (ICSNPP) - Et
 CVE-2023-7242 (Industrial Control Systems Network Protocol Parsers (ICSNPP) - Etherca ...)
 	TODO: check
 CVE-2023-49545 (A directory listing vulnerability in Customer Support System v1 allows ...)
-	TODO: check
+	NOT-FOR-US: Customer Support System
 CVE-2023-49544 (A local file inclusion (LFI) in Customer Support System v1 allows atta ...)
-	TODO: check
+	NOT-FOR-US: Customer Support System
 CVE-2023-49543 (Incorrect access control in Book Store Management System v1 allows att ...)
-	TODO: check
+	NOT-FOR-US: Book Store Management System
 CVE-2023-49540 (Book Store Management System v1.0 was discovered to contain a cross-si ...)
-	TODO: check
+	NOT-FOR-US: Book Store Management System
 CVE-2023-49539 (Book Store Management System v1.0 was discovered to contain a cross-si ...)
-	TODO: check
+	NOT-FOR-US: Book Store Management System
 CVE-2021-47081 (In the Linux kernel, the following vulnerability has been resolved:  h ...)
 	- linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/115726c5d312b462c9d9931ea42becdfa838a076 (5.13-rc3)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e4cba32d6311e2902ef248194e6b981044a1375

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e4cba32d6311e2902ef248194e6b981044a1375
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240302/b31e5c82/attachment.htm>


More information about the debian-security-tracker-commits mailing list