[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue May 28 10:40:53 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
21c219d9 by Moritz Muehlenhoff at 2024-05-28T11:40:31+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,27 +1,27 @@
 CVE-2024-36428 (OrangeHRM 3.3.3 allows admin/viewProjects sortOrder SQL injection.)
-	TODO: check
+	NOT-FOR-US: OrangeHRM
 CVE-2024-36426 (In TARGIT Decision Suite 23.2.15007.0 before Autumn 2023, the session  ...)
-	TODO: check
+	NOT-FOR-US: TARGIT Decision Suite
 CVE-2024-32944 (Path traversal vulnerability exists in UTAU versions prior to v0.4.19. ...)
-	TODO: check
+	NOT-FOR-US: UTAU
 CVE-2024-29078 (Incorrect permission assignment for critical resource issue exists in  ...)
-	TODO: check
+	NOT-FOR-US: MosP kintai kanri
 CVE-2024-28886 (OS command injection vulnerability exists in UTAU versions prior to v0 ...)
-	TODO: check
+	NOT-FOR-US: UTAU
 CVE-2024-28880 (Path traversal vulnerability in MosP kintai kanri V4.6.6 and earlier a ...)
-	TODO: check
+	NOT-FOR-US: MosP kintai kanri
 CVE-2023-52712 (Various Issues Due To Exposed SMI Handler in AmdPspP2CmboxV2. The firs ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-52711 (Various Issues Due To Exposed SMI Handler in AmdPspP2CmboxV2. The firs ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-52710 (Huawei Matebook D16(Model: CREM-WXX9, BIOS: v2.26), As the communicati ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-52548 (Huawei Matebook D16(Model: CREM-WXX9, BIOS: v2.26) Arbitrary Memory Co ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2023-52547 (Huawei Matebook D16(Model: CREM-WXX9, BIOS: v2.26. Memory Corruption i ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2022-48681 (Some Huawei smart speakers have a memory overflow vulnerability. Succe ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2024-5409 (RhinOS 3.0-1190 is vulnerable to an XSS via the "tamper" parameter in  ...)
 	NOT-FOR-US: RhinOS
 CVE-2024-5408 (Vulnerability in RhinOS 3.0-1190 consisting of an XSS through the "sea ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/21c219d985bc8dade4c0a95a42f8bb0be1ca8c38

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/21c219d985bc8dade4c0a95a42f8bb0be1ca8c38
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240528/f0a52409/attachment.htm>

More information about the debian-security-tracker-commits mailing list