[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Mar 18 20:27:14 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
835750ea by Salvatore Bonaccorso at 2024-03-18T21:26:48+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -41,13 +41,13 @@ CVE-2024-2051 (CWE-307: Improper Restriction of Excessive Authentication Attempt
 CVE-2024-2050 (CWE-79: Improper Neutralization of Input During Web Page Generation (\ ...)
 	TODO: check
 CVE-2024-28550 (Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the file ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-28547 (Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the fire ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-28537 (Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the page ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-28039 (Improper restriction of XML external entity references vulnerability e ...)
-	TODO: check
+	NOT-FOR-US: FitNesse
 CVE-2024-27937 (GLPI is a Free Asset and IT Management Software package, Data center m ...)
 	- glpi <removed>
 	NOTE: https://github.com/glpi-project/glpi/security/advisories/GHSA-98qw-hpg3-2hpj
@@ -60,19 +60,19 @@ CVE-2024-27914 (GLPI is a Free Asset and IT Management Software package, Data ce
 	NOTE: https://github.com/glpi-project/glpi/security/advisories/GHSA-rcxj-fqr4-q34r
 	NOTE: https://github.com/glpi-project/glpi/commit/69e0dee8de0c0df139b42dbfa1a8997888c2af95
 CVE-2024-27774 (Unitronics Unistream Unilogic \u2013 Versions prior to 1.35.227 -  CWE ...)
-	TODO: check
+	NOT-FOR-US: Unitronics Unistream Unilogic
 CVE-2024-27773 (Unitronics Unistream Unilogic \u2013 Versions prior to 1.35.227 -  CWE ...)
-	TODO: check
+	NOT-FOR-US: Unitronics Unistream Unilogic
 CVE-2024-27772 (Unitronics Unistream Unilogic \u2013 Versions prior to 1.35.227 -  CWE ...)
-	TODO: check
+	NOT-FOR-US: Unitronics Unistream Unilogic
 CVE-2024-27771 (Unitronics Unistream Unilogic \u2013 Versions prior to 1.35.227 -  CWE ...)
-	TODO: check
+	NOT-FOR-US: Unitronics Unistream Unilogic
 CVE-2024-27770 (Unitronics Unistream Unilogic \u2013 Versions prior to 1.35.227 -   CW ...)
-	TODO: check
+	NOT-FOR-US: Unitronics Unistream Unilogic
 CVE-2024-27769 (Unitronics Unistream Unilogic \u2013 Versions prior to 1.35.227 -   CW ...)
-	TODO: check
+	NOT-FOR-US: Unitronics Unistream Unilogic
 CVE-2024-27768 (Unitronics Unistream Unilogic \u2013 Versions prior to 1.35.227 - CWE- ...)
-	TODO: check
+	NOT-FOR-US: Unitronics Unistream Unilogic
 CVE-2024-27767 (CWE-287: Improper Authentication may allow Authentication Bypass)
 	TODO: check
 CVE-2024-27104 (GLPI is a Free Asset and IT Management Software package, Data center m ...)
@@ -88,89 +88,89 @@ CVE-2024-27096 (GLPI is a Free Asset and IT Management Software package, Data ce
 	NOTE: https://github.com/glpi-project/glpi/security/advisories/GHSA-2x8m-vrcm-2jqv
 	NOTE: https://github.com/glpi-project/glpi/commit/61a0c2302b4f633f5065358adc36058e1abc37f9
 CVE-2024-26125 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26124 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26120 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26119 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26118 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26107 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26106 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26105 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26104 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26103 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26102 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26101 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26096 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26094 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26080 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26073 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26069 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26067 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26065 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26064 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26063 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26062 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26061 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26059 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26056 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26052 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26051 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26050 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26045 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26044 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26043 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26042 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26041 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26040 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26038 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26035 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26034 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26033 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26032 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26031 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26030 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-26028 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-25657 (An open redirect in the Login/Logout functionality of web management i ...)
 	TODO: check
 CVE-2024-25656 (Improper input validation in AVSystem Unified Management Platform (UMP ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/835750ea0b5ec72a942ecce2e93b1e17acaf2ecc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/835750ea0b5ec72a942ecce2e93b1e17acaf2ecc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240318/f1ced76f/attachment.htm>

More information about the debian-security-tracker-commits mailing list