[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b38a54bc by Salvatore Bonaccorso at 2024-03-03T21:19:45+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,37 +1,37 @@
 CVE-2024-2150 (A vulnerability, which was classified as critical, has been found in S ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Insurance Management System
 CVE-2024-2149 (A vulnerability classified as critical was found in CodeAstro Membersh ...)
-	TODO: check
+	NOT-FOR-US: CodeAstro Membership Management System
 CVE-2024-2148 (A vulnerability classified as critical has been found in SourceCodeste ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Mobile Management Store
 CVE-2024-2147 (A vulnerability was found in SourceCodester Online Mobile Management S ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Mobile Management Store
 CVE-2024-2146 (A vulnerability was found in SourceCodester Online Mobile Management S ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Mobile Management Store
 CVE-2024-2145 (A vulnerability was found in SourceCodester Online Mobile Management S ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Mobile Management Store
 CVE-2024-27255 (IBM MQ Operator 2.0.0 LTS, 2.0.18 LTS, 3.0.0 CD, 3.0.1 CD, 2.4.0 throu ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-26469 (Server-Side Request Forgery (SSRF) vulnerability in Tunis Soft "Produc ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop module
 CVE-2024-25847 (SQL Injection vulnerability in MyPrestaModules "Product Catalog (CSV,  ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop module
 CVE-2024-25842 (An issue was discovered in Presta World "Account Manager - Sales Repre ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop module
 CVE-2024-25839 (An issue was discovered in Webbax "Super Newsletter" (supernewsletter) ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop module
 CVE-2024-24302 (An issue was discovered in Tunis Soft "Product Designer" (productdesig ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop module
 CVE-2024-22355 (IBM QRadar Suite Products 1.10.12.0 through 1.10.18.0 and IBM Cloud Pa ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-0765 (As a default user on a multi-user instance of AnythingLLM, you could e ...)
-	TODO: check
+	NOT-FOR-US: AnythingLLM
 CVE-2023-47745 (IBM MQ Operator 2.0.0 LTS, 2.0.18 LTS, 3.0.0 CD, 3.0.1 CD, 2.4.0 throu ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-47742 (IBM QRadar Suite Products 1.10.12.0 through 1.10.18.0 and IBM Cloud Pa ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-43054 (IBM Engineering Test Management 7.0.2 and 7.0.3 is vulnerable to store ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-2135 (A vulnerability was found in Bdtask Hospita AutoManager up to 20240223 ...)
 	NOT-FOR-US: Bdtask Hospita AutoManager
 CVE-2024-2134 (A vulnerability has been found in Bdtask Hospita AutoManager up to 202 ...)
@@ -57439,7 +57439,7 @@ CVE-2023-28514 (IBM MQ 8.0, 9.0, and 9.1 could allow a local user to obtain sens
 CVE-2023-28513 (IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.2 CD, and 9.3 CD and IBM  ...)
 	NOT-FOR-US: IBM
 CVE-2023-28512 (IBM Watson CP4D Data Stores 4.6.0, 4.6.1, and 4.6.2 could allow an att ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-28511
 	RESERVED
 CVE-2023-28510
@@ -61571,7 +61571,7 @@ CVE-2023-1081 (Cross-site Scripting (XSS) - Stored in GitHub repository microweb
 CVE-2023-1080 (The GN Publisher plugin for WordPress is vulnerable to Reflected Cross ...)
 	NOT-FOR-US: GN Publisher plugin for WordPress
 CVE-2023-27291 (IBM Watson CP4D Data Stores 4.6.0, 4.6.1, 4.6.2, and 4.6.3 does not en ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-27290 (Docker based datastores for IBM Instana (IBM Observability with Instan ...)
 	NOT-FOR-US: IBM
 CVE-2023-27289
@@ -94042,7 +94042,7 @@ CVE-2022-43882
 CVE-2022-43881
 	RESERVED
 CVE-2022-43880 (IBM QRadar WinCollect Agent 10.0 through 10.1.2 could allow a privileg ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2022-43879
 	RESERVED
 CVE-2022-43878



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b38a54bc5c94269a421bd2390848c9fbcdc6d954

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b38a54bc5c94269a421bd2390848c9fbcdc6d954
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240303/1b66bcf5/attachment-0001.htm>