[Git][security-tracker-team/security-tracker][master] Process some more NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
23645a3e by Salvatore Bonaccorso at 2024-03-06T09:42:22+01:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -51,11 +51,11 @@ CVE-2024-1356 (Authenticated command injection vulnerabilities exist in the Arub
 CVE-2024-1220 (A stack-based buffer overflow in the built-in web server in Moxa NPort ...)
 	NOT-FOR-US: Moxa
 CVE-2023-49977 (A cross-site scripting (XSS) vulnerability in Customer Support System  ...)
-	TODO: check
+	NOT-FOR-US: Customer Support System
 CVE-2023-49976 (A cross-site scripting (XSS) vulnerability in Customer Support System  ...)
-	TODO: check
+	NOT-FOR-US: Customer Support System
 CVE-2023-49974 (A cross-site scripting (XSS) vulnerability in Customer Support System  ...)
-	TODO: check
+	NOT-FOR-US: Customer Support System
 CVE-2023-49973 (A cross-site scripting (XSS) vulnerability in Customer Support System  ...)
 	NOT-FOR-US: Customer Support System
 CVE-2023-49971 (A cross-site scripting (XSS) vulnerability in Customer Support System  ...)
@@ -300,29 +300,29 @@ CVE-2024-1202 (Authentication Bypass by Primary Weakness vulnerability in XPodas
 CVE-2023-7103 (Authentication Bypass by Primary Weakness vulnerability in ZKSoftware  ...)
 	NOT-FOR-US: ZKSoftware Biometric Security Solutions UFace
 CVE-2023-5457 (A CWE-1269 \u201cProduct Released in Non-Release Configuration\u201d v ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-5456 (A CWE-798 \u201cUse of Hard-coded Credentials\u201d vulnerability in t ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-45600 (A CWE-613 \u201cInsufficient Session Expiration\u201d vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-45599 (A CWE-646 \u201cReliance on File Name or Extension of Externally-Suppl ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-45598 (A CWE-862 \u201cMissing Authorization\u201d vulnerability in the \u201 ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-45597 (A CWE-1236 \u201cImproper Neutralization of Formula Elements in a CSV  ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-45596 (A CWE-862 \u201cMissing Authorization\u201d vulnerability in the \u201 ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-45595 (A CWE-434 \u201cUnrestricted Upload of File with Dangerous Type\u201d  ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-45594 (A CWE-552 \u201cFiles or Directories Accessible to External Parties\u2 ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-45593 (A CWE-693 \u201cProtection Mechanism Failure\u201d vulnerability in th ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-45592 (A CWE-250 \u201cExecution with Unnecessary Privileges\u201d vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-45591 (A CWE-122 \u201cHeap-based Buffer Overflow\u201d vulnerability in the  ...)
-	TODO: check
+	NOT-FOR-US: AiLux imx6
 CVE-2023-35899 (IBM Cloud Pak for Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 1 ...)
 	NOT-FOR-US: IBM
 CVE-2022-48630 (In the Linux kernel, the following vulnerability has been resolved:  c ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/23645a3e1054dce7aba6c839fde8d5c52a0a1d05

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/23645a3e1054dce7aba6c839fde8d5c52a0a1d05
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240306/e8efe39f/attachment-0001.htm>