[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) Tue, 12 Apr 2022 02:07:58 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
d8281ce4 by Salvatore Bonaccorso at 2022-04-12T11:07:31+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3442,9 +3442,9 @@ CVE-2022-27847
 CVE-2022-27846
        RESERVED
 CVE-2022-27845 (Authenticated (admin or higher user role) Stored Cross-Site 
Scripting  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2022-27844 (Arbitrary File Read vulnerability in WPvivid Team Migration, 
Backup, S ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2022-1066
        RESERVED
 CVE-2022-1065
@@ -9256,9 +9256,9 @@ CVE-2022-25617
 CVE-2022-25616
        RESERVED
 CVE-2022-25615 (Cross-Site Request Forgery (CSRF) in StylemixThemes eRoom 
&#8211; Zoom ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2022-25614 (Cross-Site Request Forgery (CSRF) in StylemixThemes eRoom 
&#8211; Zoom ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2022-25613 (Authenticated Persistent Cross-Site Scripting (XSS) 
vulnerability in F ...)
        NOT-FOR-US: WordPress plugin
 CVE-2022-25612 (Multiple Authenticated Persistent Cross-Site Scripting (XSS) 
vulnerabi ...)
@@ -43509,7 +43509,7 @@ CVE-2021-39070 (IBM Security Verify Access 10.0.0.0, 
10.0.1.0 and 10.0.2.0 with
 CVE-2021-39069
        RESERVED
 CVE-2021-39068 (IBM Curam Social Program Management 8.0.1 and 7.0.11 is 
vulnerable to  ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2021-39067
        RESERVED
 CVE-2021-39066 (IBM Financial Transaction Manager 3.2.4 does not invalidate 
session an ...)
@@ -43785,9 +43785,9 @@ CVE-2021-38932
 CVE-2021-38931 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 11.1 ...)
        NOT-FOR-US: IBM
 CVE-2021-38930 (IBM System Storage DS8000 Management Console (HMC) R8.5 
88.5x.x.x, R9. ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2021-38929 (IBM System Storage DS8000 Management Console (HMC) R8.5 
88.5x.x.x, R9. ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2021-38928
        RESERVED
 CVE-2021-38927
@@ -45856,7 +45856,7 @@ CVE-2021-38127 (Potential vulnerabilities have been 
identified in Micro Focus Ar
 CVE-2021-38126 (Potential vulnerabilities have been identified in Micro Focus 
ArcSight ...)
        NOT-FOR-US: Micro Focus
 CVE-2021-38125 (Unauthenticated remote code execution in Micro Focus 
Operations Bridge ...)
-       TODO: check
+       NOT-FOR-US: Micro Focus
 CVE-2021-38124 (Remote Code Execution vulnerability in Micro Focus ArcSight 
Enterprise ...)
        NOT-FOR-US: Micro Focus
 CVE-2021-38123 (Open Redirect vulnerability in Micro Focus Network Automation, 
affecti ...)
@@ -48888,7 +48888,7 @@ CVE-2021-36912
 CVE-2021-36911 (Stored Cross-Site Scripting (XSS) vulnerability discovered in 
WordPres ...)
        NOT-FOR-US: WordPress plugin
 CVE-2021-36910 (Authenticated (admin user role) Stored Cross-Site Scripting 
(XSS) in W ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-36909 (Authenticated Database Reset vulnerability in WordPress WP 
Reset PRO P ...)
        NOT-FOR-US: WordPress plugin
 CVE-2021-36908 (Cross-Site Request Forgery (CSRF) vulnerability leading to 
Database Re ...)
@@ -48916,13 +48916,13 @@ CVE-2021-36898
 CVE-2021-36897
        RESERVED
 CVE-2021-36896 (Authenticated (author or higher user role) Stored Cross-Site 
Scripting ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-36895
        RESERVED
 CVE-2021-36894
        RESERVED
 CVE-2021-36893 (Authenticated (author or higher user role) Stored Cross-Site 
Scripting ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-36892
        RESERVED
 CVE-2021-36891
@@ -49012,11 +49012,11 @@ CVE-2021-36850 (Cross-Site Request Forgery (CSRF) 
vulnerability in WordPress Med
 CVE-2021-36849
        RESERVED
 CVE-2021-36848 (Authenticated (admin+) Stored Cross-Site Scripting (XSS) 
vulnerability ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-36847
        RESERVED
 CVE-2021-36846 (Authenticated (admin or higher user role) Stored Cross-Site 
Scripting  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-36845 (Multiple Authenticated Stored Cross-Site Scripting (XSS) 
vulnerabiliti ...)
        NOT-FOR-US: WordPress plugin
 CVE-2021-36844



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8281ce4d2dfa491cbc7d6ec15fe248930ee474f

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8281ce4d2dfa491cbc7d6ec15fe248930ee474f
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to