[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jan 14 20:47:07 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fb3ce4c2 by Salvatore Bonaccorso at 2025-01-14T21:44:28+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -391,57 +391,57 @@ CVE-2025-0462 (A vulnerability was found in Shanghai Lingdang Information Techno
 CVE-2025-0461 (A vulnerability has been found in Shanghai Lingdang Information Techno ...)
 	NOT-FOR-US: Shanghai Lingdang Information Technology Lingdang CRM
 CVE-2025-0460 (A vulnerability, which was classified as critical, was found in Blog B ...)
-	TODO: check
+	NOT-FOR-US: Blog Botz for Journal Theme on OpenCart
 CVE-2025-0459 (A vulnerability, which was classified as problematic, has been found i ...)
 	TODO: check
 CVE-2025-0458 (A vulnerability classified as problematic was found in Virtual Compute ...)
-	TODO: check
+	NOT-FOR-US: Virtual Computer Vysual RH Solution
 CVE-2025-0394 (The WordPress CRM, Email & Marketing Automation for WordPress | Award  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-0393 (The Royal Elementor Addons and Templates plugin for WordPress is vulne ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7344 (Howyar UEFI Application "Reloader"  (32-bit and 64-bit)  is vulnerable ...)
-	TODO: check
+	NOT-FOR-US: Howyar UEFI Application "Reloader"
 CVE-2024-5175
 	REJECTED
 CVE-2024-56841 (A vulnerability has been identified in Mendix LDAP (All versions < V1. ...)
 	TODO: check
 CVE-2024-56497 (An improper neutralization of special elements used in an os command ( ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-56374 (An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, ...)
 	TODO: check
 CVE-2024-55945 (TYPO3 is a free and open source Content Management Framework. A vulner ...)
-	TODO: check
+	NOT-FOR-US: TYPO3
 CVE-2024-55924 (TYPO3 is a free and open source Content Management Framework. A vulner ...)
-	TODO: check
+	NOT-FOR-US: TYPO3
 CVE-2024-55923 (TYPO3 is a free and open source Content Management Framework. A vulner ...)
-	TODO: check
+	NOT-FOR-US: TYPO3
 CVE-2024-55922 (TYPO3 is a free and open source Content Management Framework. A vulner ...)
-	TODO: check
+	NOT-FOR-US: TYPO3
 CVE-2024-55921 (TYPO3 is a free and open source Content Management Framework. A vulner ...)
-	TODO: check
+	NOT-FOR-US: TYPO3
 CVE-2024-55920 (TYPO3 is a free and open source Content Management Framework. A vulner ...)
-	TODO: check
+	NOT-FOR-US: TYPO3
 CVE-2024-55894 (TYPO3 is a free and open source Content Management Framework. A vulner ...)
-	TODO: check
+	NOT-FOR-US: TYPO3
 CVE-2024-55893 (TYPO3 is a free and open source Content Management Framework. A vulner ...)
-	TODO: check
+	NOT-FOR-US: TYPO3
 CVE-2024-55892 (TYPO3 is a free and open source Content Management Framework. Applicat ...)
-	TODO: check
+	NOT-FOR-US: TYPO3
 CVE-2024-55891 (TYPO3 is a free and open source Content Management Framework. It has b ...)
-	TODO: check
+	NOT-FOR-US: TYPO3
 CVE-2024-55593 (A improper neutralization of special elements used in an sql command ( ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-55591 (AnAuthentication Bypass Using an Alternate Path or Channel vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-55000 (Sourcecodester House Rental Management system v1.0 is vulnerable to Cr ...)
-	TODO: check
+	NOT-FOR-US: Sourcecodester House Rental Management system
 CVE-2024-54021 (An improper neutralization of crlf sequences in http headers ('http re ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-53996
 	REJECTED
 CVE-2024-53649 (A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All v ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2024-53563 (A stored cross-site scripting (XSS) vulnerability in Arcadyan Meteor 2 ...)
 	TODO: check
 CVE-2024-53561 (A remote code execution (RCE) vulnerability in Arcadyan Meteor 2 CPE F ...)
@@ -449,29 +449,29 @@ CVE-2024-53561 (A remote code execution (RCE) vulnerability in Arcadyan Meteor 2
 CVE-2024-53263 (Git LFS is a Git extension for versioning large files. When Git LFS re ...)
 	TODO: check
 CVE-2024-52969 (An Improper Neutralization of Special Elements used in an SQL Command  ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-52967 (An improper neutralization of script-related html tags in a web page ( ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-52963 (A out-of-bounds write in Fortinet FortiOS versions 7.6.0, 7.4.0 throug ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-52898 (IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD web console could allow a  ...)
 	NOT-FOR-US: IBM
 CVE-2024-50566 (A improper neutralization of special elements used in an os command (' ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-50564 (A use of hard-coded cryptographic key in Fortinet FortiClientWindows v ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-50338 (Git Credential Manager (GCM) is a secure Git credential helper built o ...)
 	TODO: check
 CVE-2024-49375 (Open source machine learning framework. A vulnerability has been ident ...)
 	TODO: check
 CVE-2024-48893 (An improper neutralization of input during web page generation vulnera ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-48890 (An improper neutralization of special elements used in an OS command ( ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-48886 (A weak authentication in Fortinet FortiOS versions 7.4.0 through 7.4.4 ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-48884 (A improper limitation of a pathname to a restricted directory ('path t ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2024-48858 (Improper input validation in the PCX image codec in QNX SDP versions 8 ...)
 	TODO: check
 CVE-2024-48857 (NULL pointer dereference in the PCX image codec in QNX SDP versions 8. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fb3ce4c2450398c875dfeaa1df3ff57c6a8cbf0a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fb3ce4c2450398c875dfeaa1df3ff57c6a8cbf0a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250114/68b5ddbe/attachment.htm>

More information about the debian-security-tracker-commits mailing list