[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Mar 22 08:24:43 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
171757a9 by Salvatore Bonaccorso at 2024-03-22T09:24:16+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,67 +1,67 @@
 CVE-2024-2817 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2816 (A vulnerability classified as problematic was found in Tenda AC15 15.0 ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2815 (A vulnerability classified as critical has been found in Tenda AC15 15 ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2814 (A vulnerability was found in Tenda AC15 15.03.20_multi. It has been ra ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2813 (A vulnerability was found in Tenda AC15 15.03.20_multi. It has been de ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2812 (A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20_multi. It ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2811 (A vulnerability was found in Tenda AC15 15.03.20_multi and classified  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2810 (A vulnerability has been found in Tenda AC15 15.03.05.18/15.03.20_mult ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2809 (A vulnerability, which was classified as critical, was found in Tenda  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2808 (A vulnerability, which was classified as critical, has been found in T ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2807 (A vulnerability classified as critical was found in Tenda AC15 15.03.0 ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2806 (A vulnerability classified as critical has been found in Tenda AC15 15 ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2805 (A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20_multi. It ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2780 (A vulnerability was found in Campcodes Online Marriage Registration Sy ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Online Marriage Registration System
 CVE-2024-2779 (A vulnerability was found in Campcodes Online Marriage Registration Sy ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Online Marriage Registration System
 CVE-2024-2778 (A vulnerability was found in Campcodes Online Marriage Registration Sy ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Online Marriage Registration System
 CVE-2024-2777 (A vulnerability has been found in Campcodes Online Marriage Registrati ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Online Marriage Registration System
 CVE-2024-2776 (A vulnerability, which was classified as critical, was found in Campco ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Online Marriage Registration System
 CVE-2024-2775 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Online Marriage Registration System
 CVE-2024-2774 (A vulnerability classified as critical was found in Campcodes Online M ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Online Marriage Registration System
 CVE-2024-2773 (A vulnerability classified as problematic has been found in Campcodes  ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Online Marriage Registration System
 CVE-2024-2770 (A vulnerability was found in Campcodes Complete Online Beauty Parlor M ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Online Beauty Parlor Management System
 CVE-2024-2769 (A vulnerability was found in Campcodes Complete Online Beauty Parlor M ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Online Beauty Parlor Management System
 CVE-2024-2768 (A vulnerability was found in Campcodes Complete Online Beauty Parlor M ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Online Beauty Parlor Management System
 CVE-2024-2767 (A vulnerability was found in Campcodes Complete Online Beauty Parlor M ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Online Beauty Parlor Management System
 CVE-2024-2766 (A vulnerability has been found in Campcodes Complete Online Beauty Par ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Online Beauty Parlor Management System
 CVE-2024-2764 (A vulnerability, which was classified as critical, was found in Tenda  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2763 (A vulnerability, which was classified as critical, has been found in T ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-2500 (The ColorMag theme for WordPress is vulnerable to Stored Cross-Site Sc ...)
-	TODO: check
+	NOT-FOR-US: WordPress theme
 CVE-2024-2453 (There is an SQL injection vulnerability in Advantech WebAccess/SCADA s ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2024-2392 (The Blocksy Companion plugin for WordPress is vulnerable to Stored Cro ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-2080 (The LiquidPoll \u2013 Polls, Surveys, NPS and Feedback Reviews plugin  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-29275 (SQL injection vulnerability in SeaCMS version 12.9, allows remote unau ...)
 	NOT-FOR-US: SeaCMS
 CVE-2024-29273 (There is Stored Cross-Site Scripting (XSS) in dzzoffice 2.02.1 SC UTF8 ...)
@@ -83,7 +83,7 @@ CVE-2024-28521 (SQL Injection vulnerability in Netcome NS-ASG Application Securi
 CVE-2024-28441 (File Upload vulnerability in magicflue v.7.0 and before allows a remot ...)
 	NOT-FOR-US: magicflue
 CVE-2024-28171 (It is possible to perform a path traversal attack and write outside of ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2024-28119 (Grav is an open-source, flat-file content management system. Prior to  ...)
 	TODO: check
 CVE-2024-28118 (Grav is an open-source, flat-file content management system. Prior to  ...)
@@ -93,11 +93,11 @@ CVE-2024-28117 (Grav is an open-source, flat-file content management system. Pri
 CVE-2024-28116 (Grav is an open-source, flat-file content management system. Grav CMS  ...)
 	TODO: check
 CVE-2024-28045 (Improper neutralization of input within the affected product could lea ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2024-28040 (SQL injection vulnerability exists in GetDIAE_astListParameters.)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2024-28029 (Privileges are not fully verified server-side, which can be abused by  ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2024-27921 (Grav is an open-source, flat-file content management system. A file up ...)
 	TODO: check
 CVE-2024-26557 (Codiad v2.8.4 allows reflected XSS via the components/market/dialog.ph ...)
@@ -109,15 +109,15 @@ CVE-2024-25808 (Cross-site Request Forgery (CSRF) vulnerability in Lychee versio
 CVE-2024-25807 (Cross Site Scripting (XSS) vulnerability in Lychee 3.1.6, allows remot ...)
 	TODO: check
 CVE-2024-25567 (Path traversal attack is possible and write outside of the intended di ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2024-24272 (An issue in iTop DualSafe Password Manager & Digital Vault before 1.4. ...)
-	TODO: check
+	NOT-FOR-US: iTop DualSafe Password Manager & Digital Vault
 CVE-2024-23975 (SQL injection vulnerability exists in GetDIAE_slogListParameters.)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2024-23494 (SQL injection vulnerability exists in GetDIAE_unListParameters.)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2024-0957 (The WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shippi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-42954 (A privilege escalation issue existed in FileMaker Server, potentially  ...)
 	TODO: check
 CVE-2024-2742 (Operating system command injection vulnerability in Planet IGS-4215-16 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/171757a99f60994f62270f2c1d6d14ab9420b2b6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/171757a99f60994f62270f2c1d6d14ab9420b2b6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240322/2fd9591f/attachment.htm>

More information about the debian-security-tracker-commits mailing list