[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue May 14 22:58:50 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1274349a by Salvatore Bonaccorso at 2024-05-14T23:58:13+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2,51 +2,51 @@ CVE-2024-3044 [Graphic on-click binding allows unchecked script execution]
 	- libreoffice 4:24.2.3~rc1-2
 	NOTE: https://www.libreoffice.org/about-us/security/advisories/cve-2024-3044/
 CVE-2024-4871 (A vulnerability was found in Satellite. When running a remote executio ...)
-	TODO: check
+	NOT-FOR-US: Red Hat Satellite
 CVE-2024-4860 (The 'WordPress RSS Aggregator' WordPress Plugin, versions < 4.23.9 are ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4859 (Solidus <= 4.3.4is affected by a Stored Cross-Site Scripting vulnerabi ...)
-	TODO: check
+	NOT-FOR-US: Solidus
 CVE-2024-4624 (The Essential Addons for Elementor \u2013 Best Elementor Templates, Wi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4473 (The Sydney Toolbox plugin for WordPress is vulnerable to Stored Cross- ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4440 (The 140+ Widgets | Best Addons For Elementor \u2013 FREE plugin for Wo ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4392 (The Jetpack \u2013 WP Security, Backup, Speed, & Growth plugin for Wor ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4333 (The Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data T ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3676 (The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3579 (Open-source project Online Shopping System Advanced is vulnerable to R ...)
-	TODO: check
+	NOT-FOR-US: Open-source project Online Shopping System Advanced
 CVE-2024-3374 (An unauthenticated user can trigger a fatal assertion in the server wh ...)
 	TODO: check
 CVE-2024-3372 (Improper validation of certain metadata input may result in the server ...)
 	TODO: check
 CVE-2024-35012 (idccms v1.35 was discovered to contain a Cross-Site Request Forgery (C ...)
-	TODO: check
+	NOT-FOR-US: idccms
 CVE-2024-35011 (idccms v1.35 was discovered to contain a Cross-Site Request Forgery (C ...)
-	TODO: check
+	NOT-FOR-US: idccms
 CVE-2024-35010 (idccms v1.35 was discovered to contain a Cross-Site Request Forgery (C ...)
-	TODO: check
+	NOT-FOR-US: idccms
 CVE-2024-35009 (idccms v1.35 was discovered to contain a Cross-Site Request Forgery (C ...)
-	TODO: check
+	NOT-FOR-US: idccms
 CVE-2024-34950 (D-Link DIR-822+ v1.0.5 was discovered to contain a stack-based buffer  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2024-34914 (php-censor v2.1.4 and fixed in v.2.1.5 was discovered to utilize a wea ...)
 	TODO: check
 CVE-2024-34773 (A vulnerability has been identified in Solid Edge (All versions < V224 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2024-34772 (A vulnerability has been identified in Solid Edge (All versions < V224 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2024-34771 (A vulnerability has been identified in Solid Edge (All versions < V224 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2024-34717 (PrestaShop is an open source e-commerce web application. In PrestaShop ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2024-34716 (PrestaShop is an open source e-commerce web application. A cross-site  ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2024-34714 (The Hoppscotch Browser Extension is a browser extension for Hoppscotch ...)
 	TODO: check
 CVE-2024-34713 (sshproxy is used on a gateway to transparently proxy a user SSH connec ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1274349a463fb472f2ea6d6535c66578cc38d73e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1274349a463fb472f2ea6d6535c66578cc38d73e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240514/130a0657/attachment.htm>

More information about the debian-security-tracker-commits mailing list