[Git][security-tracker-team/security-tracker][master] lots of bogus ROS CVEs finally rejected
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon May 27 09:48:05 BST 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e1f125f7 by Moritz Muehlenhoff at 2024-05-27T10:47:13+02:00
lots of bogus ROS CVEs finally rejected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -17373,7 +17373,6 @@ CVE-2024-30271 (Illustrator versions 28.3, 27.9.2 and earlier are affected by an
NOT-FOR-US: Adobe
CVE-2024-29454
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-25852 (Linksys RE7000 v2.0.9, v2.0.11, and v2.0.15 have a command execution v ...)
NOT-FOR-US: Linksys
CVE-2024-22722 (Server Side Template Injection (SSTI) vulnerability in Form Tools 3.1. ...)
@@ -17490,7 +17489,6 @@ CVE-2024-30878 (A cross-site scripting (XSS) vulnerability in RageFrame2 v2.6.43
NOT-FOR-US: RageFrame2
CVE-2024-30728
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-2966 (The Element Pack Elementor Addons (Header Footer, Template Library, Dy ...)
NOT-FOR-US: WordPress plugin
CVE-2024-29903 (Cosign provides code signing and transparency for containers and binar ...)
@@ -17503,37 +17501,26 @@ CVE-2024-29460 (An issue in PX4 Autopilot v.1.14.0 allows an attacker to manipul
NOT-FOR-US: PX4 Autopilot
CVE-2024-29455
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29452
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29450
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29449
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29448
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29447
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29445
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29444
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29443
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29441
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29439
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29399 (An issue was discovered in GNU Savane v.3.13 and before, allows a remo ...)
NOT-FOR-US: GNU Savane
CVE-2024-29220 (Ninja Forms prior to 3.8.1 contains a cross-site scripting vulnerabili ...)
@@ -18066,70 +18053,48 @@ CVE-2024-3020 (The plugin is vulnerable to PHP Object Injection in versions up t
NOT-FOR-US: WordPress plugin
CVE-2024-30737
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30736
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30735
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30733
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30730
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30729
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30727
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30726
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30724
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30723
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30722
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30721
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30719
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30718
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30716
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30715
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30713
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30712
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30711
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30710
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30708
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30707
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-2736 (The Bold Page Builder plugin for WordPress is vulnerable to Stored Cro ...)
NOT-FOR-US: WordPress plugin
CVE-2024-2735 (The Bold Page Builder plugin for WordPress is vulnerable to Stored Cro ...)
@@ -18265,16 +18230,12 @@ CVE-2024-31367 (Missing Authorization vulnerability in PenciDesign Soledad.This
NOT-FOR-US: WordPress plugin
CVE-2024-30706
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30704
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30703
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30702
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30262 (Contao is an open source content management system. Prior to version 4 ...)
NOT-FOR-US: Contao CMS
CVE-2024-30191 (A vulnerability has been identified in SCALANCE W1748-1 M12 (6GK5748-1 ...)
@@ -18966,61 +18927,42 @@ CVE-2024-31047 (An issue in Academy Software Foundation openexr v.3.2.3 and befo
NOTE: Fixed by: https://github.com/AcademySoftwareFoundation/openexr/commit/7aa89e1d09b09d9f5dbb96976ee083a331ab9d71
CVE-2024-30701
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30699
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30697
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30696
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30695
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30694
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30692
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30691
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30690
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30688
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30687
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30686
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30684
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30683
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30681
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30680
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30679
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30678
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30676
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30218 (The ABAP Application Server of SAP NetWeaver as well as ABAP Platforma ...)
NOT-FOR-US: SAP
CVE-2024-30217 (Cash Management in SAP S/4 HANA does not perform necessary authorizati ...)
@@ -19282,34 +19224,24 @@ CVE-2024-31022 (An issue was discovered in CandyCMS version 1.0.0, allows remote
NOT-FOR-US: CandyCMS
CVE-2024-30675
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30674
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30672
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30667
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30666
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30665
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30663
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30662
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30661
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-30659
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-28744 (The password is empty in the initial configuration of ACERA 9010-08 fi ...)
NOT-FOR-US: ACERA
CVE-2024-27488 (Incorrect Access Control vulnerability in ZLMediaKit versions 1.0 thro ...)
@@ -23581,10 +23513,8 @@ CVE-2024-2170 (The VK All in One Expansion Unit plugin for WordPress is vulnerab
NOT-FOR-US: WordPress plugin
CVE-2024-29442
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29440
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2024-29303 (The delete admin users function of SourceCodester PHP Task Management ...)
NOT-FOR-US: SourceCodester PHP Task Management System
CVE-2024-29302 (SourceCodester PHP Task Management System 1.0 is vulnerable to SQL Inj ...)
@@ -37185,16 +37115,12 @@ CVE-2024-0836 (The WordPress Review & Structure Data Schema Plugin \u2013 Review
NOT-FOR-US: WordPress plugin
CVE-2023-51204
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2023-51202
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2023-51198
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2023-51197
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2023-3934
REJECTED
CVE-2023-31505 (An arbitrary file upload vulnerability in Schlix CMS v2.2.8-1, allows ...)
@@ -38428,16 +38354,12 @@ CVE-2023-51711 (An issue was discovered in Regify Regipay Client for Windows ver
NOT-FOR-US: Regify Regipay Client
CVE-2023-51208
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2023-51201
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2023-51200
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2023-51199
REJECTED
- NOTE: Bogus report on ROS, lacks all details and apparently never reported either
CVE-2023-47202 (A local file inclusion vulnerability on the Trend Micro Apex One manag ...)
NOT-FOR-US: Trend Micro
CVE-2023-47201 (A plug-in manager origin validation vulnerability in the Trend Micro A ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e1f125f760f865db2024b689c76cdf6b15e19bea
--
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e1f125f760f865db2024b689c76cdf6b15e19bea
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240527/a9ebb46d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list