[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Nov 14 20:37:51 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6619ddc4 by Salvatore Bonaccorso at 2024-11-14T21:37:28+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,27 +3,27 @@ CVE-2024-9693 (An issue was discovered in GitLab CE/EE affecting all versions st
 CVE-2024-9633 (An issue has been discovered in GitLab CE/EE affecting all versions st ...)
 	TODO: check
 CVE-2024-9472 (A null pointer dereference in Palo Alto Networks PAN-OS software on PA ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks PAN-OS
 CVE-2024-8648 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
 	TODO: check
 CVE-2024-8180 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
 	TODO: check
 CVE-2024-7787 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: ITG Computer Technology vSRM Supplier Relationship Management System
 CVE-2024-7404 (An issue was discovered in GitLab CE/EE affecting all versions startin ...)
 	TODO: check
 CVE-2024-7124 (Improper Neutralization of Input During Web Page Generation vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: DInGO dLibra software
 CVE-2024-6068 (A memory corruption vulnerability exists in the affected products when ...)
-	TODO: check
+	NOT-FOR-US: Rockwell Automation
 CVE-2024-5920 (A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-O ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks PAN-OS
 CVE-2024-5919 (A blind XML External Entities (XXE) injection vulnerability in the Pal ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks PAN-OS
 CVE-2024-5918 (An improper certificate validation vulnerability in Palo Alto Networks ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks PAN-OS
 CVE-2024-5917 (A server-side request forgery in PAN-OS software enables an unauthenti ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks PAN-OS
 CVE-2024-5125 (parisneo/lollms-webui version 9.6 is vulnerable to Cross-Site Scriptin ...)
 	TODO: check
 CVE-2024-52524 (Giskard is an evaluation and testing framework for AI systems. A Remot ...)
@@ -31,41 +31,41 @@ CVE-2024-52524 (Giskard is an evaluation and testing framework for AI systems. A
 CVE-2024-52505 (matrix-appservice-irc is a Node.js IRC bridge for the Matrix messaging ...)
 	TODO: check
 CVE-2024-52396 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
-	TODO: check
+	NOT-FOR-US: realmag777 WOLF
 CVE-2024-52393 (Improper Neutralization of Special Elements Used in a Template Engine  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52384 (Unrestricted Upload of File with Dangerous Type vulnerability in Sage  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52383 (Missing Authorization vulnerability in KCT Ai Auto Tool Content Writin ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52382 (Missing Authorization vulnerability in Medma Technologies Matix Popup  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52381 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52380 (Unrestricted Upload of File with Dangerous Type vulnerability in Softp ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52379 (Unrestricted Upload of File with Dangerous Type vulnerability in Kinet ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52378 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52377 (Unrestricted Upload of File with Dangerous Type vulnerability in BdThe ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52376 (Unrestricted Upload of File with Dangerous Type vulnerability in cmsMi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52375 (Unrestricted Upload of File with Dangerous Type vulnerability in Artti ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52374 (Unrestricted Upload of File with Dangerous Type vulnerability in DoTha ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52373 (Unrestricted Upload of File with Dangerous Type vulnerability in Team  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52372 (Unrestricted Upload of File with Dangerous Type vulnerability in WebTe ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52371 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52370 (Unrestricted Upload of File with Dangerous Type vulnerability in Hive  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52369 (Unrestricted Upload of File with Dangerous Type vulnerability in Optim ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-52302 (common-user-management is a robust Spring Boot application featuring u ...)
 	TODO: check
 CVE-2024-51688 (Cross-Site Request Forgery (CSRF) vulnerability in FraudLabs Pro Fraud ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6619ddc4f87a3e127f18095a4753c84f5fb3ee29

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6619ddc4f87a3e127f18095a4753c84f5fb3ee29
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241114/5fa8779e/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list