[Git][security-tracker-team/security-tracker][master] Process some NFUs

Thu, 01 Dec 2022 07:19:17 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
e5f2fc2b by Salvatore Bonaccorso at 2022-12-01T16:18:45+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -580,7 +580,7 @@ CVE-2022-46164
 CVE-2022-46163
        RESERVED
 CVE-2022-46162 (discourse-bbcode is the official BBCode plugin for Discourse. 
Prior to ...)
-       TODO: check
+       NOT-FOR-US: BBCode plugin for Discourse
 CVE-2022-46161
        RESERVED
 CVE-2022-46160
@@ -1352,7 +1352,7 @@ CVE-2022-45844
 CVE-2022-45843
        RESERVED
 CVE-2022-45842 (Unauth. Race Condition vulnerability in WP ULike Plugin <= 
4.6.4 on ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2022-45841
        RESERVED
 CVE-2022-45840
@@ -3846,7 +3846,7 @@ CVE-2022-3892
 CVE-2022-3891
        RESERVED
 CVE-2022-45045 (Multiple Xiongmai NVR devices, including MBD6304T 
V4.02.R11.00000117.1 ...)
-       TODO: check
+       NOT-FOR-US: Xiongmai
 CVE-2022-3890 (Heap buffer overflow in Crashpad in Google Chrome on Android 
prior to  ...)
        {DSA-5275-1}
        - chromium 107.0.5304.110-1
@@ -4648,7 +4648,7 @@ CVE-2022-3861 (The Betheme theme for WordPress is 
vulnerable to PHP Object Injec
 CVE-2022-3860
        RESERVED
 CVE-2022-3859 (An uncontrolled search path vulnerability exists in Trellix 
Agent (TA) ...)
-       TODO: check
+       NOT-FOR-US: Trellix
 CVE-2022-3858
        RESERVED
 CVE-2022-3857 [Null pointer dereference leads to segmentation fault]
@@ -6287,9 +6287,9 @@ CVE-2022-44535
 CVE-2022-44534
        RESERVED
 CVE-2022-44533 (A vulnerability in the Aruba EdgeConnect Enterprise web 
management int ...)
-       TODO: check
+       NOT-FOR-US: Aruba
 CVE-2022-44532 (An authenticated path traversal vulnerability exists in the 
Aruba Edge ...)
-       TODO: check
+       NOT-FOR-US: Aruba
 CVE-2022-3785 (A vulnerability, which was classified as critical, has been 
found in A ...)
        NOT-FOR-US: Bento4
 CVE-2022-3784 (A vulnerability classified as critical was found in Axiomatic 
Bento4 5 ...)
@@ -6829,11 +6829,11 @@ CVE-2022-44298
 CVE-2022-44297
        RESERVED
 CVE-2022-44296 (Sanitization Management System v1.0 is vulnerable to SQL 
Injection via ...)
-       TODO: check
+       NOT-FOR-US: Sanitization Management System
 CVE-2022-44295 (Sanitization Management System v1.0 is vulnerable to SQL 
Injection via ...)
-       TODO: check
+       NOT-FOR-US: Sanitization Management System
 CVE-2022-44294 (Sanitization Management System v1.0 is vulnerable to SQL 
Injection via ...)
-       TODO: check
+       NOT-FOR-US: Sanitization Management System
 CVE-2022-44293
        RESERVED
 CVE-2022-44292
@@ -7119,7 +7119,7 @@ CVE-2022-44153
 CVE-2022-44152
        RESERVED
 CVE-2022-44151 (Simple Inventory Management System v1.0 is vulnerable to SQL 
Injection ...)
-       TODO: check
+       NOT-FOR-US: Simple Inventory Management System
 CVE-2022-44150
        RESERVED
 CVE-2022-44149
@@ -7149,7 +7149,7 @@ CVE-2022-44138
 CVE-2022-44137
        RESERVED
 CVE-2022-44136 (Zenario CMS 9.3.57186 is vulnerable to Remote Code Excution 
(RCE). ...)
-       TODO: check
+       NOT-FOR-US: Zenario CMS
 CVE-2022-44135
        RESERVED
 CVE-2022-44134
@@ -10375,9 +10375,9 @@ CVE-2022-43546 (A vulnerability has been identified in 
POWER METER SICAM Q100 (A
 CVE-2022-43545 (A vulnerability has been identified in POWER METER SICAM Q100 
(All ver ...)
        NOT-FOR-US: Siemens
 CVE-2022-43542 (Vulnerabilities in the Aruba EdgeConnect Enterprise command 
line inter ...)
-       TODO: check
+       NOT-FOR-US: Aruba
 CVE-2022-43541 (Vulnerabilities in the Aruba EdgeConnect Enterprise command 
line inter ...)
-       TODO: check
+       NOT-FOR-US: Aruba
 CVE-2022-43540
        RESERVED
 CVE-2022-43539
@@ -10423,7 +10423,7 @@ CVE-2022-43520
 CVE-2022-43519
        RESERVED
 CVE-2022-43518 (An authenticated path traversal vulnerability exists in the 
Aruba Edge ...)
-       TODO: check
+       NOT-FOR-US: Aruba
 CVE-2022-43517
        RESERVED
 CVE-2022-43516



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5f2fc2ba07c835f4c8411b3722dd16661c85db0

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5f2fc2ba07c835f4c8411b3722dd16661c85db0
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to