[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso (@carnil) Wed, 02 Aug 2023 13:25:54 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
9f82267a by Salvatore Bonaccorso at 2023-08-02T22:24:39+02:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,27 +5,27 @@ CVE-2023-3978 (Text nodes not in the HTML namespace are 
incorrectly literally re
 CVE-2023-3470 (Specific F5 BIG-IP platforms with Cavium Nitrox FIPS HSM cards 
generat ...)
        NOT-FOR-US: F5 BIG-IP
 CVE-2023-3426 (The organization selector in Liferay Portal 7.4.3.81 through 
7.4.3.85, ...)
-       TODO: check
+       NOT-FOR-US: Liferay
 CVE-2023-38423 (A cross-site scripting (XSS) vulnerability exists in an 
undisclosed pa ...)
        NOT-FOR-US: F5 BIG-IP
 CVE-2023-38419 (An authenticated attacker with guest privileges or higher can 
cause th ...)
-       TODO: check
+       NOT-FOR-US: F5 BIG-IP
 CVE-2023-38418 (The BIG-IP Edge Client Installer on macOS does not follow best 
practic ...)
        NOT-FOR-US: F5 BIG-IP
 CVE-2023-38330 (OXID eShop Enterprise Edition 6.5.0 \u2013 6.5.2 before 6.5.3 
allows u ...)
-       TODO: check
+       NOT-FOR-US: OXID eShop Enterprise Edition
 CVE-2023-38138 (A reflected cross-site scripting (XSS) vulnerability exists in 
an undi ...)
        NOT-FOR-US: F5 BIG-IP
 CVE-2023-36858 (An insufficient verification of data vulnerability exists in 
BIG-IP Ed ...)
        NOT-FOR-US: F5 BIG-IP
 CVE-2023-36494 (Audit logs on F5OS-A may contain undisclosed sensitive 
information. No ...)
-       TODO: check
+       NOT-FOR-US: F5 BIG-IP
 CVE-2023-36081 (Cross Site Scripting vulnerability in GatesAIr Flexiva FM 
Transmitter/ ...)
        TODO: check
 CVE-2023-33383 (Shelly 4PM Pro four-channel smart switch 0.11.0 allows an 
attacker to  ...)
-       TODO: check
+       NOT-FOR-US: Shelly 4PM Pro four-channel smart switch
 CVE-2023-33257 (Verint Engagement Management 15.3 Update 2023R2 is vulnerable 
to HTML  ...)
-       TODO: check
+       NOT-FOR-US: Verint Engagement Management
 CVE-2023-4016 (Under some circumstances, this weakness allows a user who has 
access t ...)
        - procps <unfixed> (bug #1042887)
        NOTE: https://gitlab.com/procps-ng/procps/-/issues/297



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f82267aaa8ddceb97e25edfe23f788e01eba730

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f82267aaa8ddceb97e25edfe23f788e01eba730
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process more NFUs

Reply via email to