[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Wed Oct 2 21:39:54 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
42c033bd by Salvatore Bonaccorso at 2024-10-02T22:39:31+02:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2024-9441 (The Linear eMerge e3-Series through version 1.00-07 is vulnerable to a ...)
-	TODO: check
+	NOT-FOR-US: Linear eMerge e3-Series
 CVE-2024-9440 (Slim Select 2.0 versions through 2.9.0 are affected by a potential cro ...)
 	TODO: check
 CVE-2024-9429 (A vulnerability has been found in code-projects Restaurant Reservation ...)
@@ -43,43 +43,43 @@ CVE-2024-47612 (DataDump is a MediaWiki extension that provides dumps of wikis.
 CVE-2024-47611 (XZ Utils provide a general-purpose data-compression library plus comma ...)
 	TODO: check
 CVE-2024-47529 (OpenC3 COSMOS provides the functionality needed to send commands to an ...)
-	TODO: check
+	NOT-FOR-US: OpenC3 COSMOS
 CVE-2024-46977 (OpenC3 COSMOS provides the functionality needed to send commands to an ...)
-	TODO: check
+	NOT-FOR-US: OpenC3 COSMOS
 CVE-2024-46626 (OS4ED openSIS-Classic v9.1 was discovered to contain a SQL injection v ...)
-	TODO: check
+	NOT-FOR-US: OS4ED openSIS-Classic
 CVE-2024-45965 (Contao 5.4.1 allows an authenticated admin account to upload a SVG fil ...)
-	TODO: check
+	NOT-FOR-US: Contao CMS
 CVE-2024-45964 (Zenario 9.7.61188 is vulnerable to Cross Site Scripting (XSS) in the I ...)
-	TODO: check
+	NOT-FOR-US: Zenario
 CVE-2024-45962 (October 3.6.30 allows an authenticated admin account to upload a PDF f ...)
-	TODO: check
+	NOT-FOR-US: October CMS
 CVE-2024-45960 (Zenario 9.7.61188 allows authenticated admin users to upload PDF files ...)
-	TODO: check
+	NOT-FOR-US: Zenario
 CVE-2024-44193 (A logic issue was addressed with improved restrictions. This issue is  ...)
 	TODO: check
 CVE-2024-44097 (According to the researcher: "The TLS connections are encrypted agains ...)
 	TODO: check
 CVE-2024-44030 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-44017 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43795 (OpenC3 COSMOS provides the functionality needed to send commands to an ...)
-	TODO: check
+	NOT-FOR-US: OpenC3 COSMOS
 CVE-2024-41290 (FlatPress CMS v1.3.1 1.3 was discovered to use insecure methods to sto ...)
-	TODO: check
+	NOT-FOR-US: FlatPress
 CVE-2024-35294 (An unauthenticated remote attacker may use the devices traffic capture ...)
 	TODO: check
 CVE-2024-35293 (An unauthenticated remote attacker may use a missing authentication fo ...)
 	TODO: check
 CVE-2024-33210 (A cross-site scripting (XSS) vulnerability has been identified in Flat ...)
-	TODO: check
+	NOT-FOR-US: FlatPress
 CVE-2024-33209 (FlatPress v1.3 is vulnerable to Cross Site Scripting (XSS). An attacke ...)
-	TODO: check
+	NOT-FOR-US: FlatPress
 CVE-2024-24122 (A remote code execution vulnerability in the project management of Wan ...)
 	TODO: check
 CVE-2024-24116 (An issue in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release(9736) allows ...)
-	TODO: check
+	NOT-FOR-US: Ruijie
 CVE-2024-20524 (A vulnerability in the web-based management interface of Cisco Small B ...)
 	TODO: check
 CVE-2024-20523 (A vulnerability in the web-based management interface of Cisco Small B ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/42c033bdc49acdac6c05c153ed5d89dbd56a52c2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/42c033bdc49acdac6c05c153ed5d89dbd56a52c2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241002/b7347e7d/attachment.htm>
