[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Sep 25 09:26:37 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
016e3a66 by Salvatore Bonaccorso at 2024-09-25T10:26:19+02:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -81,23 +81,23 @@ CVE-2024-6590 (The Spreadsheet Integration \u2013 Automate Google Sheets With Wo
 CVE-2024-47303 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-46612 (IceCMS v3.4.7 and before was discovered to contain a hardcoded JWT key ...)
-	TODO: check
+	NOT-FOR-US: IceCMS
 CVE-2024-45373 (Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can chang ...)
-	TODO: check
+	NOT-FOR-US: ProGauge MAGLINK LX4 CONSOLE
 CVE-2024-45066 (A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP ...)
-	TODO: check
+	NOT-FOR-US: ProGauge MAGLINK LX CONSOLE
 CVE-2024-43693 (A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE  U ...)
-	TODO: check
+	NOT-FOR-US: ProGauge MAGLINK LX CONSOLE
 CVE-2024-43692 (An attacker can directly request the ProGauge MAGLINK LX CONSOLE  reso ...)
-	TODO: check
+	NOT-FOR-US: ProGauge MAGLINK LX CONSOLE
 CVE-2024-43423 (The web application for ProGauge MAGLINK LX4 CONSOLE contains an  admi ...)
-	TODO: check
+	NOT-FOR-US: ProGauge MAGLINK LX CONSOLE
 CVE-2024-41725 (ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on inpu ...)
-	TODO: check
+	NOT-FOR-US: ProGauge MAGLINK LX CONSOLE
 CVE-2024-40761 (Inadequate Encryption Strength vulnerability in Apache Answer.  This i ...)
-	TODO: check
+	NOT-FOR-US: Apache Answer
 CVE-2024-3866 (The Ninja Forms Contact Form plugin for WordPress is vulnerable to Ref ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-38809
 	- libspring-java <unfixed> (unimportant)
 	NOTE: https://spring.io/security/cve-2024-38809



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/016e3a66db6946664f2e799270be7e1749a03f19

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/016e3a66db6946664f2e799270be7e1749a03f19
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240925/53006f85/attachment.htm>

More information about the debian-security-tracker-commits mailing list