[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Mon May 27 09:52:04 BST 2024



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
292b400b by Moritz Muehlenhoff at 2024-05-27T10:51:35+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,85 +1,85 @@
 CVE-2024-5403 (ASKEY 5G NR Small Cell fails to properly filter user input for certain ...)
-	TODO: check
+	NOT-FOR-US: ASKEY
 CVE-2024-5400 (Openfind Mail2000 does not properly filter parameters of specific CGI. ...)
-	TODO: check
+	NOT-FOR-US: Openfind Mail2000
 CVE-2024-5399 (Openfind Mail2000 does not properly filter parameters of specific API. ...)
-	TODO: check
+	NOT-FOR-US: Openfind Mail2000
 CVE-2024-5397 (A vulnerability classified as critical was found in itsourcecode Onlin ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode Online Student Enrollment System
 CVE-2024-5396 (A vulnerability classified as critical has been found in itsourcecode  ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode Online Student Enrollment System
 CVE-2024-5395 (A vulnerability was found in itsourcecode Online Student Enrollment Sy ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode Online Student Enrollment System
 CVE-2024-5394 (A vulnerability was found in itsourcecode Online Student Enrollment Sy ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode Online Student Enrollment System
 CVE-2024-5393 (A vulnerability was found in itsourcecode Online Student Enrollment Sy ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode Online Student Enrollment System
 CVE-2024-5392 (A vulnerability was found in itsourcecode Online Student Enrollment Sy ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode Online Student Enrollment System
 CVE-2024-5391 (A vulnerability has been found in itsourcecode Online Student Enrollme ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode Online Student Enrollment System
 CVE-2024-5390 (A vulnerability, which was classified as critical, was found in itsour ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode Online Student Enrollment System
 CVE-2024-5385 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2024-5384 (A vulnerability classified as critical was found in SourceCodester Fac ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2024-5383 (A vulnerability classified as problematic has been found in lakernote  ...)
-	TODO: check
+	NOT-FOR-US: lakernote EasyAdmin
 CVE-2024-5381 (A vulnerability classified as critical was found in itsourcecode Stude ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode Online Student Enrollment System
 CVE-2024-5380 (A vulnerability classified as problematic has been found in jsy-1 shor ...)
-	TODO: check
+	NOT-FOR-US: jsy-1 short-url
 CVE-2024-5379 (A vulnerability was found in JFinalCMS up to 20240111. It has been rat ...)
-	TODO: check
+	NOT-FOR-US: JFinalCMS
 CVE-2024-5378 (A vulnerability was found in SourceCodester School Intramurals Student ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2024-5377 (A vulnerability was found in SourceCodester Vehicle Management System  ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2024-5376 (A vulnerability was found in Kashipara College Management System 1.0 a ...)
-	TODO: check
+	NOT-FOR-US: Kashipara College Management System
 CVE-2024-5035 (The affected device expose a network service called "rftest" that is v ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2024-4535 (The KKProgressbar2 Free  WordPress plugin through 1.1.4.2 does not hav ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4534 (The KKProgressbar2 Free  WordPress plugin through 1.1.4.2 does not hav ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4533 (The KKProgressbar2 Free  WordPress plugin through 1.1.4.2 does not san ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4532 (The Business Card WordPress plugin through 1.0.0 does not have CSRF ch ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4531 (The Business Card WordPress plugin through 1.0.0 does not have CSRF ch ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4530 (The Business Card WordPress plugin through 1.0.0 does not have CSRF ch ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4529 (The Business Card WordPress plugin through 1.0.0 does not have CSRF ch ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4286 (Mintplex-Labs' anything-llm application is vulnerable to improper neut ...)
-	TODO: check
+	NOT-FOR-US: anything-llm
 CVE-2024-3939 (The Ditty  WordPress plugin before 3.1.36 does not sanitise and escape ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3933 (In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, w ...)
-	TODO: check
+	NOT-FOR-US: Eclipse OpenJ9
 CVE-2024-36384 (Pointsharp Cryptshare Server before 7.0.0 has an XSS issue that is rel ...)
-	TODO: check
+	NOT-FOR-US: Pointsharp Cryptshare Server
 CVE-2024-36056 (Hw64.sys in Marvin Test HW.exe before 5.0.5.0 allows unprivileged user ...)
-	TODO: check
+	NOT-FOR-US: Marvin Test HW.exe
 CVE-2024-36055 (Hw64.sys in Marvin Test HW.exe before 5.0.5.0 allows unprivileged user ...)
-	TODO: check
+	NOT-FOR-US: Marvin Test HW.exe
 CVE-2024-36054 (Hw64.sys in Marvin Test HW.exe before 5.0.5.0 allows unprivileged user ...)
-	TODO: check
+	NOT-FOR-US: Marvin Test HW.exe
 CVE-2024-35297 (Cross-site scripting vulnerability exists in WP Booking versions prior ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-35291 (Cross-site scripting vulnerability exists in Splunk Config Explorer ve ...)
-	TODO: check
+	NOT-FOR-US: Splunk Config Explorer
 CVE-2024-34454 (Nintendo Wii U OS 5.5.5 allows man-in-the-middle attackers to forge SS ...)
-	TODO: check
+	NOT-FOR-US: Nintendo Wii
 CVE-2024-30658
 	REJECTED
 CVE-2024-30657
 	REJECTED
 CVE-2024-27314 (Zoho ManageEngineServiceDesk Plus versions below14730,ServiceDesk Plus ...)
-	TODO: check
+	NOT-FOR-US: Zoho
 CVE-2024-26289 (Deserialization of Untrusted Data vulnerability in PMB Services PMB al ...)
 	TODO: check
 CVE-2024-5375 (A vulnerability has been found in Kashipara College Management System  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/292b400b527476ea4b95e211bc341555b3f1470e

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/292b400b527476ea4b95e211bc341555b3f1470e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240527/893ad517/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list