[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed May 15 10:05:59 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9d7efab7 by Salvatore Bonaccorso at 2024-05-15T11:05:20+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -41,69 +41,69 @@ CVE-2024-3748 (The SP Project & Document Manager WordPress plugin through 4.71 i
 CVE-2024-3744 (A security issue was discovered in azure-file-csi-driver where an acto ...)
 	TODO: check
 CVE-2024-3634 (The month name translation benaceur WordPress plugin before 2.3.8 does ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3631 (The HL Twitter WordPress plugin through 2014.1.18 does not have CSRF c ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3630 (The HL Twitter WordPress plugin through 2014.1.18 does not sanitise an ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3629 (The HL Twitter WordPress plugin through 2014.1.18 does not have CSRF c ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3548 (The WP Shortcodes Plugin \u2014 Shortcodes Ultimate WordPress plugin b ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3407 (The WP Prayer WordPress plugin through 2.0.9 does not have CSRF checks ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3406 (The WP Prayer WordPress plugin through 2.0.9 does not have CSRF check  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3405 (The WP Prayer WordPress plugin through 2.0.9 does not have CSRF check  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3189 (The Gutenberg Blocks by Kadence Blocks \u2013 Page Builder Features pl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-35175 (sshpiper is a reverse proxy for sshd. Starting in version 1.0.50 and p ...)
-	TODO: check
+	NOT-FOR-US: sshpiper
 CVE-2024-35109 (idccms v1.35 was discovered to contain a Cross-Site Request Forgery (C ...)
-	TODO: check
+	NOT-FOR-US: idccms
 CVE-2024-35108 (idccms v1.35 was discovered to contain a Cross-Site Request Forgery (C ...)
-	TODO: check
+	NOT-FOR-US: idccms
 CVE-2024-32888 (The Amazon JDBC Driver for Redshift is a Type 4 JDBC driver that provi ...)
 	TODO: check
 CVE-2024-31556 (An issue in Reportico Web before v.8.1.0 allows a local attacker to ex ...)
-	TODO: check
+	NOT-FOR-US: Reportico Web
 CVE-2024-31483 (An authenticated sensitive information disclosure vulnerability exists ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31482 (An unauthenticated Denial-of-Service (DoS) vulnerability exists in the ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31481 (Unauthenticated Denial of Service (DoS) vulnerabilities exist in the C ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31480 (Unauthenticated Denial of Service (DoS) vulnerabilities exist in the C ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31479 (Unauthenticated Denial of Service (DoS) vulnerabilities exist in the C ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31478 (Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exist ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31477 (Multiple authenticated command injection vulnerabilities exist in the  ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31476 (Multiple authenticated command injection vulnerabilities exist in the  ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31475 (There is an arbitrary file deletion vulnerability in the Central Commu ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31474 (There is an arbitrary file deletion vulnerability in the CLI service a ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31473 (There is a command injection vulnerability in the underlying deauthent ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31472 (There are command injection vulnerabilities in the underlying Soft AP  ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31471 (There is a command injection vulnerability in the underlying Central C ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31470 (There is a buffer overflow vulnerability in the underlying SAE (Simult ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31469 (There are buffer overflow vulnerabilities in the underlying Central Co ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31468 (There are buffer overflow vulnerabilities in the underlying Central Co ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31467 (There are buffer overflow vulnerabilities in the underlying CLI servic ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-31466 (There are buffer overflow vulnerabilities in the underlying CLI servic ...)
-	TODO: check
+	NOT-FOR-US: Aruba
 CVE-2024-0437 (The Password Protected \u2013 Ultimate Plugin to Password Protect Your ...)
 	TODO: check
 CVE-2023-33327 (Improper Privilege Management vulnerability in Teplitsa of social tech ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9d7efab7744ee19542ed787af56aed81914bfe6a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9d7efab7744ee19542ed787af56aed81914bfe6a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240515/7dd436fe/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list