[Git][security-tracker-team/security-tracker][master] Process some new NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3200d565 by Salvatore Bonaccorso at 2024-03-06T09:16:48+01:00
Process some new NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,35 +1,35 @@
 CVE-2024-2179 (Concrete CMS version 9 before 9.2.7 is vulnerable to Stored XSS via th ...)
 	TODO: check
 CVE-2024-27765 (Directory Traversal vulnerability in Jeewms v.3.7 and before allows a  ...)
-	TODO: check
+	NOT-FOR-US: Jeewms
 CVE-2024-27764 (An issue in Jeewms v.3.7 and before allows a remote attacker to escala ...)
-	TODO: check
+	NOT-FOR-US: Jeewms
 CVE-2024-27278 (OpenPNE Plugin "opTimelinePlugin" 1.2.11 and earlier contains a cross- ...)
-	TODO: check
+	NOT-FOR-US: OpenPNE Plugin
 CVE-2024-25858 (In Foxit PDF Reader before 2024.1 and PDF Editor before 2024.1, code e ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-25817 (Buffer Overflow vulnerability in eza before version 0.18.2, allows loc ...)
 	TODO: check
 CVE-2024-25616 (Aruba has identified certain configurations of ArubaOS that can lead t ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-25615 (An unauthenticated Denial-of-Service (DoS) vulnerability exists in the ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-25614 (There is an arbitrary file deletion vulnerability in the CLI used by A ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-25613 (Authenticated command injection vulnerabilities exist in the ArubaOS c ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-25612 (Authenticated command injection vulnerabilities exist in the ArubaOS c ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-25611 (Authenticated command injection vulnerabilities exist in the ArubaOS c ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-24786 (The protojson.Unmarshal function can enter an infinite loop when unmar ...)
 	TODO: check
 CVE-2024-24278 (An issue in Teamwire Windows desktop client v.2.0.1 through v.2.4.0 al ...)
-	TODO: check
+	NOT-FOR-US: Teamwire Windows desktop client
 CVE-2024-24276 (Cross Site Scripting (XSS) vulnerability in Teamwire Windows desktop c ...)
-	TODO: check
+	NOT-FOR-US: Teamwire Windows desktop client
 CVE-2024-24275 (Cross Site Scripting vulnerability in Teamwire Windows desktop client  ...)
-	TODO: check
+	NOT-FOR-US: Teamwire Windows desktop client
 CVE-2024-22889 (Due to incorrect access control in Plone version v6.0.9, remote attack ...)
 	TODO: check
 CVE-2024-1989 (The Social Sharing Plugin \u2013 Sassy Social Share plugin for WordPre ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3200d56575a356cdf6bd96b56b410acfe317846a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3200d56575a356cdf6bd96b56b410acfe317846a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240306/a12664c4/attachment.htm>