[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Nov 10 11:16:06 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fe0eb21e by Salvatore Bonaccorso at 2024-11-10T12:15:44+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,15 +1,15 @@
 CVE-2024-11051 (A vulnerability was found in AMTT Hotel Broadband Operation System up  ...)
-	TODO: check
+	NOT-FOR-US: AMTT Hotel Broadband Operation System
 CVE-2024-11050 (A vulnerability was found in AMTT Hotel Broadband Operation System up  ...)
-	TODO: check
+	NOT-FOR-US: AMTT Hotel Broadband Operation System
 CVE-2024-11049 (A vulnerability classified as problematic has been found in ZKTeco ZKB ...)
-	TODO: check
+	NOT-FOR-US: ZKTeco ZKBio Time
 CVE-2024-11048 (A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been ra ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2024-11047 (A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been de ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2024-11046 (A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been cl ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2024-52032 (Mattermost versions 10.0.x <= 10.0.0 and 9.11.x <= 9.11.2 fail to prop ...)
 	- mattermost-server <itp> (bug #823556)
 CVE-2024-51787 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
@@ -219,15 +219,15 @@ CVE-2024-42000 (Mattermost versions 9.10.x <= 9.10.2, 9.11.x <= 9.11.1, 9.5.x <=
 CVE-2024-36250 (Mattermost versions 9.11.x <= 9.11.2, and 9.5.x <= 9.5.10 fail toprote ...)
 	- mattermost-server <itp> (bug #823556)
 CVE-2024-10837 (The SysBasics Customize My Account for WooCommerce plugin for WordPres ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10676 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10640 (The The FOX \u2013 Currency Switcher Professional for WooCommerce plug ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10352 (The Magical Addons For Elementor plugin for WordPress is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10261 (The The Paid Membership Subscriptions \u2013 Effortless Memberships, R ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-50262 (In the Linux kernel, the following vulnerability has been resolved:  b ...)
 	- linux 6.11.7-1
 	NOTE: https://git.kernel.org/linus/13400ac8fb80c57c2bfb12ebd35ee121ce9b4d21 (6.12-rc6)
@@ -516,7 +516,7 @@ CVE-2024-21994 (StorageGRID (formerly StorageGRID Webscale) versions prior to 11
 CVE-2024-11026 (A vulnerability was found in Intelligent Apps Freenow App 12.10.0 on A ...)
 	NOT-FOR-US: Intelligent Apps Freenow App
 CVE-2024-10953 (An authenticated data.all user is able to perform mutating UPDATE oper ...)
-	TODO: check
+	NOT-FOR-US: AWS data.all
 CVE-2024-10876 (The Charitable \u2013 Donation Plugin for WordPress \u2013 Fundraising ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-10871 (The Category Ajax Filter plugin for WordPress is vulnerable to Local F ...)
@@ -576,7 +576,7 @@ CVE-2024-51997 (Trustee is a set of tools and components for attesting confident
 CVE-2024-51211 (SQL injection vulnerability exists in OS4ED openSIS-Classic Version 9. ...)
 	TODO: check
 CVE-2024-51152 (File Upload vulnerability in Laravel CMS v.1.4.7 and before allows a r ...)
-	TODO: check
+	NOT-FOR-US: Laravel CMS
 CVE-2024-51055 (An issue Hoosk v1.7.1 allows a remote attacker to execute arbitrary co ...)
 	TODO: check
 CVE-2024-51032 (A Cross-site Scripting (XSS) vulnerability in manage_recipient.php of  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe0eb21e014d13f2cb3dbd0642a08d6064b0cd77

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe0eb21e014d13f2cb3dbd0642a08d6064b0cd77
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241110/9ca127a8/attachment.htm>

More information about the debian-security-tracker-commits mailing list