[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Sep 16 21:25:25 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
05c1bca4 by Salvatore Bonaccorso at 2024-09-16T22:25:01+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,25 +1,25 @@
 CVE-2024-8766 (Local privilege escalation due to DLL hijacking vulnerability. The fol ...)
-	TODO: check
+	NOT-FOR-US: Acronis Cyber Protect Cloud Agent (Windows)
 CVE-2024-8752 (The Windows version of WebIQ 2.15.9 is affected by a directory travers ...)
-	TODO: check
+	NOT-FOR-US: WebIQ
 CVE-2024-8661 (Concrete CMS versions 9.0.0 to 9.3.4 and below 8.5.18 are vulnerable t ...)
-	TODO: check
+	NOT-FOR-US: Concrete CMS
 CVE-2024-7104 (Improper Control of Generation of Code ('Code Injection') vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: SFS Consulting ww.Winsure
 CVE-2024-7098 (Improper Restriction of XML External Entity Reference vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: SFS Consulting ww.Winsure
 CVE-2024-6401 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
-	TODO: check
+	NOT-FOR-US: SFS Consulting InsureE GL
 CVE-2024-46970 (In JetBrains IntelliJ IDEA before 2024.1 hTML injection via the projec ...)
-	TODO: check
+	NOT-FOR-US: JetBrains IntelliJ IDEA
 CVE-2024-46937 (An improper access control (IDOR) vulnerability in the /api-selfportal ...)
-	TODO: check
+	NOT-FOR-US: MFASOFT Secure Authentication Server (SAS)
 CVE-2024-46451 (TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 has a buffer overflow vulner ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2024-46424 (TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 has a buffer overflow vulner ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2024-46419 (TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 has a buffer overflow vulner ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2024-45835 (Mattermost Desktop App versions <=5.8.0 fail to sufficiently configure ...)
 	TODO: check
 CVE-2024-45801 (DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for H ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/05c1bca4612ccd2b7a45ef9c18be17ce96172b3e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/05c1bca4612ccd2b7a45ef9c18be17ce96172b3e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240916/f3313164/attachment.htm>

More information about the debian-security-tracker-commits mailing list