[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Sep 14 21:31:05 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2438c349 by Salvatore Bonaccorso at 2024-09-14T22:30:08+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2024-8862 (A vulnerability, which was classified as critical, has been found in h ...)
 	TODO: check
 CVE-2024-6482 (The Login with phone number plugin for WordPress is vulnerable to priv ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-3410 (The Bricks theme for WordPress is vulnerable to Stored Cross-Site Scri ...)
-	TODO: check
+	NOT-FOR-US: WordPress theme
 CVE-2024-8768
 	NOT-FOR-US: vLLM
 CVE-2024-8797 (The WP Booking System \u2013 Booking Calendar plugin for WordPress is  ...)
@@ -128,7 +128,7 @@ CVE-2024-46044 (CH22 V1.0.0.6(468) has a stack overflow vulnerability located in
 CVE-2024-45368 (The H2-DM1E PLC's authentication protocol appears to utilize either a  ...)
 	NOT-FOR-US: H2-DM1E PLC
 CVE-2024-45113 (ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Imp ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-45112 (Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.0 ...)
 	NOT-FOR-US: Adobe
 CVE-2024-45111 (Illustrator versions 28.6, 27.9.5 and earlier are affected by an out-o ...)
@@ -164,7 +164,7 @@ CVE-2024-43099 (The session hijacking attack targets the application layer's con
 CVE-2024-42025 (A Command Injection vulnerability found in a Self-Hosted UniFi Network ...)
 	NOT-FOR-US: UniFi Network Application
 CVE-2024-41874 (ColdFusion versions 2023.9, 2021.15 and earlier are affected by a Dese ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2024-41869 (Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.0 ...)
 	NOT-FOR-US: Adobe
 CVE-2024-41867 (After Effects versions 23.6.6, 24.5 and earlier are affected by a Stac ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2438c34925381137ec641a31e0e6a0af891abd0b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2438c34925381137ec641a31e0e6a0af891abd0b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240914/28b40430/attachment.htm>

More information about the debian-security-tracker-commits mailing list