[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Nov 1 13:16:51 GMT 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
49d7c5f2 by Moritz Muehlenhoff at 2024-11-01T14:16:35+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,71 +1,71 @@
 CVE-2024-9655 (The Gutenberg Blocks with AI by Kadence WP \u2013 Page Builder Feature ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7424 (The Multiple Page Generator Plugin \u2013 MPG plugin for WordPress is  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6480 (The SIP Reviews Shortcode for WooCommerce plugin for WordPress is vuln ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6479 (The SIP Reviews Shortcode for WooCommerce plugin for WordPress is vuln ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-49501 (Sysmac Studio provided by OMRON Corporation contains an incorrect auth ...)
-	TODO: check
+	NOT-FOR-US: OMROM
 CVE-2024-47939 (Stack-based buffer overflow vulnerability exists in multiple Ricoh las ...)
-	TODO: check
+	NOT-FOR-US: Ricoh
 CVE-2024-21510 (Versions of the package sinatra from 0.0.0 are vulnerable to Reliance  ...)
 	TODO: check
 CVE-2024-10620 (A vulnerability was found in knightliao Disconf 2.6.36. It has been cl ...)
-	TODO: check
+	NOT-FOR-US: knightliao Disconf
 CVE-2024-10619 (A vulnerability, which was classified as critical, was found in Tongda ...)
-	TODO: check
+	NOT-FOR-US: Tongda OA
 CVE-2024-10618 (A vulnerability, which was classified as critical, has been found in T ...)
-	TODO: check
+	NOT-FOR-US: Tongda OA
 CVE-2024-10617 (A vulnerability classified as critical was found in Tongda OA up to 11 ...)
-	TODO: check
+	NOT-FOR-US: Tongda OA
 CVE-2024-10616 (A vulnerability classified as critical has been found in Tongda OA up  ...)
-	TODO: check
+	NOT-FOR-US: Tongda OA
 CVE-2024-10615 (A vulnerability was found in Tongda OA 2017 up to 11.10. It has been r ...)
-	TODO: check
+	NOT-FOR-US: Tongda OA
 CVE-2024-10613 (A vulnerability was found in ESAFENET CDG 5. It has been declared as c ...)
-	TODO: check
+	NOT-FOR-US: ESAFENET
 CVE-2024-10612 (A vulnerability was found in ESAFENET CDG 5. It has been classified as ...)
-	TODO: check
+	NOT-FOR-US: ESAFENET
 CVE-2024-10611 (A vulnerability was found in ESAFENET CDG 5 and classified as critical ...)
-	TODO: check
+	NOT-FOR-US: ESAFENET
 CVE-2024-10610 (A vulnerability has been found in ESAFENET CDG 5 and classified as cri ...)
-	TODO: check
+	NOT-FOR-US: ESAFENET
 CVE-2024-10609 (A vulnerability, which was classified as critical, was found in itsour ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode Tailoring Management System Project
 CVE-2024-10608 (A vulnerability was found in code-projects Courier Management System 1 ...)
-	TODO: check
+	NOT-FOR-US: code-projects Courier Management System
 CVE-2024-10607 (A vulnerability was found in code-projects Courier Management System 1 ...)
-	TODO: check
+	NOT-FOR-US: code-projects Courier Management System
 CVE-2024-10605 (A vulnerability was found in code-projects Blood Bank Management Syste ...)
-	TODO: check
+	NOT-FOR-US: code-projects Blood Bank Management System
 CVE-2024-10602 (A vulnerability was found in Tongda OA 2017 up to 11.9 and classified  ...)
-	TODO: check
+	NOT-FOR-US: Tongda OA
 CVE-2024-10601 (A vulnerability has been found in Tongda OA 2017 up to 11.10 and class ...)
-	TODO: check
+	NOT-FOR-US: Tongda OA
 CVE-2024-10600 (A vulnerability, which was classified as critical, was found in Tongda ...)
-	TODO: check
+	NOT-FOR-US: Tongda OA
 CVE-2024-10599 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: Tongda OA
 CVE-2024-10598 (A vulnerability classified as critical was found in Tongda OA 11.2/11. ...)
-	TODO: check
+	NOT-FOR-US: Tongda OA
 CVE-2024-10597 (A vulnerability classified as critical has been found in ESAFENET CDG  ...)
-	TODO: check
+	NOT-FOR-US: ESAFENET
 CVE-2024-10596 (A vulnerability was found in ESAFENET CDG 5. It has been rated as crit ...)
-	TODO: check
+	NOT-FOR-US: ESAFENET
 CVE-2024-10595 (A vulnerability was found in ESAFENET CDG 5. It has been declared as c ...)
-	TODO: check
+	NOT-FOR-US: ESAFENET
 CVE-2024-10594 (A vulnerability was found in ESAFENET CDG 5. It has been classified as ...)
-	TODO: check
+	NOT-FOR-US: ESAFENET
 CVE-2024-0106 (NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit ( ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2024-0105 (NVIDIA ConnectX Firmware contains a vulnerability where an attacker ma ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2024-8934 (A local user with administrative access rights can enter specialy craf ...)
 	NOT-FOR-US: TwinCAT Package Manager
 CVE-2024-8553 (A vulnerability was found in Foreman's loader macros introduced with r ...)
-	TODO: check
+	- foreman <itp> (bug #663101)
 CVE-2024-8185 (Vault Community and Vault Enterprise (\u201cVault\u201d) clusters usin ...)
 	NOT-FOR-US: HashiCorp Vault
 CVE-2024-7883 (When using Arm Cortex-M Security Extensions (CMSE), Secure stack  cont ...)
@@ -114,7 +114,7 @@ CVE-2024-50356 (Press, a Frappe custom app that runs Frappe Cloud, manages infra
 CVE-2024-50354 (gnark is a fast zk-SNARK library that offers a high-level API to desig ...)
 	TODO: check
 CVE-2024-50347 (Laravel Reverb provides a real-time WebSocket communication backend fo ...)
-	TODO: check
+	NOT-FOR-US: Laravel Reverb
 CVE-2024-49685 (Cross-Site Request Forgery (CSRF) vulnerability in Smash Balloon Custo ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-49674 (Cross-Site Request Forgery (CSRF) vulnerability in Lukas Huser EKC Tou ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/49d7c5f2102d901b6ae4352e0d02194dc03e6822

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/49d7c5f2102d901b6ae4352e0d02194dc03e6822
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241101/dd121f55/attachment.htm>

More information about the debian-security-tracker-commits mailing list