[Git][security-tracker-team/security-tracker][master] Process more NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5982d1af by Salvatore Bonaccorso at 2025-02-18T21:46:42+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -45,9 +45,9 @@ CVE-2025-22645 (Improper Restriction of Excessive Authentication Attempts vulner
 CVE-2025-22639 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-22207 (Improperly built order clauses lead to a SQL injection vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: Joomla plugin
 CVE-2025-21608 (Meshtastic is an open source mesh networking solution. In affected fir ...)
-	TODO: check
+	NOT-FOR-US: Meshtastic firmware
 CVE-2025-1414 (Memory safety bugs present in Firefox 135. Some of these bugs showed e ...)
 	TODO: check
 CVE-2025-1269 (URL Redirection to Untrusted Site ('Open Redirect') vulnerability in H ...)
@@ -75,27 +75,27 @@ CVE-2024-57046 (A vulnerability in the Netgear DGN2200 router with firmware vers
 CVE-2024-57045 (A vulnerability in the D-Link DIR-859 router with firmware version A3  ...)
 	NOT-FOR-US: D-Link
 CVE-2024-56883 (Sage DPW before 2024_12_001 is vulnerable to Incorrect Access Control. ...)
-	TODO: check
+	NOT-FOR-US: Sage
 CVE-2024-56882 (Sage DPW before 2024_12_000 is vulnerable to Cross Site Scripting (XSS ...)
-	TODO: check
+	NOT-FOR-US: Sage
 CVE-2024-56000 (Incorrect Privilege Assignment vulnerability in NotFound K Elements al ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-55460 (A time-based SQL injection vulnerability in the login page of BoardRoo ...)
 	NOT-FOR-US: BoardRoom Limited Dividend Distribution Tax Election System
 CVE-2024-51505 (An issue was discovered in Atos Eviden IDRA before 2.7.1. A highly tru ...)
-	TODO: check
+	NOT-FOR-US: Atos Eviden
 CVE-2024-50609 (An issue was discovered in Fluent Bit 3.1.9. When the OpenTelemetry in ...)
-	TODO: check
+	NOT-FOR-US: Fluent Bit
 CVE-2024-50608 (An issue was discovered in Fluent Bit 3.1.9. When the Prometheus Remot ...)
-	TODO: check
+	NOT-FOR-US: Fluent Bit
 CVE-2024-4028 (A vulnerability was found in Keycloak. This issue may allow a privileg ...)
 	- keycloak <itp> (bug #1088287)
 CVE-2024-49589 (Foundry Artifacts was found to be vulnerable to a Denial Of Service at ...)
 	TODO: check
 CVE-2024-39328 (Insecure Permissions in Atos Eviden IDRA and IDCA before 2.7.0. A high ...)
-	TODO: check
+	NOT-FOR-US: Atos Eviden
 CVE-2024-39327 (Incorrect Access Control vulnerability in Atos Eviden IDRA before 2.6. ...)
-	TODO: check
+	NOT-FOR-US: Atos Eviden
 CVE-2024-13797 (The PressMart - Modern Elementor WooCommerce WordPress Theme theme for ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-13783 (The FormCraft plugin for WordPress is vulnerable to unauthorized acces ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5982d1af41aea41639b1ca7476fa5d03e73ab7ea

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5982d1af41aea41639b1ca7476fa5d03e73ab7ea
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250218/6d50d832/attachment-0001.htm>