[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Nov 5 06:19:40 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
495ecaff by Salvatore Bonaccorso at 2024-11-05T07:19:12+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -25,17 +25,17 @@ CVE-2024-51626 (Improper Neutralization of Special Elements used in an SQL Comma
 CVE-2024-51582 (Path Traversal: '.../...//' vulnerability in ThimPress WP Hotel Bookin ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-51561 (This vulnerability exists in Aero due to improper implementation of OT ...)
-	TODO: check
+	NOT-FOR-US: Aero
 CVE-2024-51560 (This vulnerability exists in the Wave 2.0due to improper exception han ...)
-	TODO: check
+	NOT-FOR-US: Wave 2.0
 CVE-2024-51559 (This vulnerability exists in the Wave 2.0dueto missing authorization c ...)
-	TODO: check
+	NOT-FOR-US: Wave 2.0
 CVE-2024-51558 (This vulnerability exists in the Wave 2.0due to missing restrictions f ...)
-	TODO: check
+	NOT-FOR-US: Wave 2.0
 CVE-2024-51557 (This vulnerability exists in the Wave 2.0 due to missing rate limiting ...)
-	TODO: check
+	NOT-FOR-US: Wave 2.0
 CVE-2024-51556 (This vulnerability exists in the Wave 2.0 due to weak encryption of se ...)
-	TODO: check
+	NOT-FOR-US: Wave 2.0
 CVE-2024-51408 (AppSmith Community 1.8.3 before 1.46 allows SSRF via New DataSource fo ...)
 	NOT-FOR-US: AppSmith Community
 CVE-2024-51329 (A Host header injection vulnerability in Agile-Board 1.0 allows attack ...)
@@ -181,7 +181,7 @@ CVE-2024-10764 (A vulnerability classified as critical has been found in Codezip
 CVE-2024-10523 (This vulnerability exists in TP-Link IoT Smart Hub due to storage of W ...)
 	NOT-FOR-US: TP-Link
 CVE-2024-10389 (There exists a Path Traversal vulnerability in Safearchive on Platform ...)
-	TODO: check
+	NOT-FOR-US: Safearchive
 CVE-2024-10035 (Improper Control of Generation of Code ('Code Injection') vulnerabilit ...)
 	NOT-FOR-US: BG-TEK Informatics Security Technologies CoslatV3
 CVE-2024-23590 (Session Fixation vulnerability in Apache Kylin.  This issue affects Ap ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/495ecaff9362fce83725ce232798da55c6c98f3a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/495ecaff9362fce83725ce232798da55c6c98f3a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241105/e3909203/attachment.htm>

More information about the debian-security-tracker-commits mailing list