[Git][security-tracker-team/security-tracker][master] Process NFUs

Sun Mar 31 12:30:27 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cab3ce90 by Salvatore Bonaccorso at 2024-03-31T13:29:41+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
 CVE-2024-3118 (A vulnerability, which was classified as critical, has been found in D ...)
-	TODO: check
+	NOT-FOR-US: Dreamer CMS
 CVE-2024-3117 (A vulnerability classified as critical was found in YouDianCMS up to 9 ...)
-	TODO: check
+	NOT-FOR-US: YouDianCMS
 CVE-2023-46808 (An file upload vulnerability in Ivanti ITSM before 2023.4, allows an a ...)
-	TODO: check
+	NOT-FOR-US: Ivanti
 CVE-2023-41724 (A command injection vulnerability in Ivanti Sentry prior to 9.19.0 all ...)
-	TODO: check
+	NOT-FOR-US: Ivanti
 CVE-2015-10131 (A vulnerability was found in chrisy TFO Graphviz Plugin up to 1.9 on W ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3091 (A vulnerability was found in PHPGurukul Emergency Ambulance Hiring Por ...)
 	NOT-FOR-US: PHPGurukul Emergency Ambulance Hiring Portal
 CVE-2024-3090 (A vulnerability was found in PHPGurukul Emergency Ambulance Hiring Por ...)
@@ -49,7 +49,7 @@ CVE-2024-2086 (The Integrate Google Drive \u2013 Browse, Upload, Download, Embed
 CVE-2024-2047 (The ElementsKit Elementor addons plugin for WordPress is vulnerable to ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-29278 (funboot v1.1 is vulnerable to Cross Site Scripting (XSS) via the title ...)
-	TODO: check
+	NOT-FOR-US: funboot
 CVE-2024-28288 (Ruijie RG-NBR700GW 10.3(4b12) router lacks cookie verification when re ...)
 	NOT-FOR-US: Ruijie RG-NBR700GW router
 CVE-2024-1692 (The BoldGrid Easy SEO \u2013 Simple and Effective SEO plugin for WordP ...)
@@ -731,7 +731,7 @@ CVE-2024-25923 (Insertion of Sensitive Information into Log File vulnerability i
 CVE-2024-25599 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-25354 (RegEx Denial of Service in domain-suffix 1.0.8 allows attackers to cra ...)
-	TODO: check
+	NOT-FOR-US: domain-suffix Nodejs module
 CVE-2024-23500 (Server-Side Request Forgery (SSRF) vulnerability in Kadence WP Gutenbe ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-22138 (Insertion of Sensitive Information into Log File vulnerability in Sera ...)
@@ -747,13 +747,13 @@ CVE-2024-0673 (The Pz-LinkCard WordPress plugin through 2.5.1 does not sanitise
 CVE-2024-0672 (The Pz-LinkCard WordPress plugin through 2.5.1 does not sanitise and e ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-0079 (NVIDIA GPU Display Driver for Windows and Linux contains a vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA GPU Display Driver
 CVE-2024-0077 (NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA Virtual GPU Manager
 CVE-2024-0073 (NVIDIA GPU Display Driver for Windows contains a vulnerability in the  ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA GPU Display Driver
 CVE-2024-0071 (NVIDIA GPU Display Driver for Windows contains a vulnerability in the  ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA GPU Display Driver
 CVE-2023-6371 (An issue has been discovered in GitLab CE/EE affecting all versions be ...)
 	- gitlab <unfixed>
 CVE-2023-52628 (In the Linux kernel, the following vulnerability has been resolved:  n ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cab3ce90c25ed050bde96741b55ef1124f48721f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cab3ce90c25ed050bde96741b55ef1124f48721f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240331/f8019bb8/attachment.htm>
