[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) Fri, 15 Sep 2023 13:25:00 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
3037478b by Salvatore Bonaccorso at 2023-09-15T22:24:27+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,69 +1,69 @@
 CVE-2023-4991 (A vulnerability was found in NextBX QWAlerter 4.50. It has been 
rated  ...)
-       TODO: check
+       NOT-FOR-US: NextBX QWAlerter
 CVE-2023-4988 (A vulnerability, which was classified as problematic, was found 
in Bet ...)
-       TODO: check
+       NOT-FOR-US: Bettershop LaikeTui
 CVE-2023-4987 (A vulnerability, which was classified as critical, has been 
found in i ...)
-       TODO: check
+       NOT-FOR-US: infinitietech taskhub
 CVE-2023-4986 (A vulnerability classified as problematic was found in Supcon 
InPlant  ...)
-       TODO: check
+       NOT-FOR-US: Supcon InPlant SCADA
 CVE-2023-4985 (A vulnerability classified as critical has been found in Supcon 
InPlan ...)
-       TODO: check
+       NOT-FOR-US: Supcon InPlant SCADA
 CVE-2023-4984 (A vulnerability was found in didi KnowSearch 0.3.2/0.3.1.2. It 
has bee ...)
-       TODO: check
+       NOT-FOR-US: didi KnowSearch
 CVE-2023-4983 (A vulnerability was found in app1pro Shopicial up to 20230830. 
It has  ...)
-       TODO: check
+       NOT-FOR-US: app1pro Shopicial
 CVE-2023-4982 (Cross-site Scripting (XSS) - Stored in GitHub repository 
librenms/libr ...)
-       TODO: check
+       NOT-FOR-US: LibreNMS
 CVE-2023-4981 (Cross-site Scripting (XSS) - DOM in GitHub repository 
librenms/librenm ...)
-       TODO: check
+       NOT-FOR-US: LibreNMS
 CVE-2023-4980 (Cross-site Scripting (XSS) - Generic in GitHub repository 
librenms/lib ...)
-       TODO: check
+       NOT-FOR-US: LibreNMS
 CVE-2023-4979 (Cross-site Scripting (XSS) - Reflected in GitHub repository 
librenms/l ...)
-       TODO: check
+       NOT-FOR-US: LibreNMS
 CVE-2023-4978 (Cross-site Scripting (XSS) - DOM in GitHub repository 
librenms/librenm ...)
-       TODO: check
+       NOT-FOR-US: LibreNMS
 CVE-2023-4977 (Code Injection in GitHub repository librenms/librenms prior to 
23.9.0.)
-       TODO: check
+       NOT-FOR-US: LibreNMS
 CVE-2023-4974 (A vulnerability was found in Academy LMS 6.2. It has been rated 
as cri ...)
-       TODO: check
+       NOT-FOR-US: Academy LMS
 CVE-2023-4973 (A vulnerability was found in Academy LMS 6.2 on Windows. It has 
been d ...)
-       TODO: check
+       NOT-FOR-US: Academy LMS
 CVE-2023-4963 (The WS Facebook Like Box Widget for WordPress plugin for 
WordPress is  ...)
        NOT-FOR-US: WS Facebook Like Box Widget for WordPress plugin for 
WordPress
 CVE-2023-4959 (A flaw was found in Quay. Cross-site request forgery (CSRF) 
attacks fo ...)
-       TODO: check
+       NOT-FOR-US: Quay
 CVE-2023-4835 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
-       TODO: check
+       NOT-FOR-US: CF Software Oil Management Software
 CVE-2023-4833 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
-       TODO: check
+       NOT-FOR-US: Besttem Network Marketing Software
 CVE-2023-4831 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
-       TODO: check
+       NOT-FOR-US: Ncode Ncep
 CVE-2023-4830 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
-       TODO: check
+       NOT-FOR-US: Tura Signalix
 CVE-2023-4680 (HashiCorp Vault and Vault Enterprise transit secrets engine 
allowed au ...)
-       TODO: check
+       NOT-FOR-US: HashiCorp Vault
 CVE-2023-4673 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
-       TODO: check
+       NOT-FOR-US: Sanalogy Turasistan
 CVE-2023-4670 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
-       TODO: check
+       NOT-FOR-US: Innosa Probbys
 CVE-2023-4665 (Incorrect Execution-Assigned Permissions vulnerability in 
Saphira Saph ...)
-       TODO: check
+       NOT-FOR-US: Saphira Saphira Connect
 CVE-2023-4664 (Incorrect Default Permissions vulnerability in Saphira Saphira 
Connect ...)
-       TODO: check
+       NOT-FOR-US: Saphira Saphira Connect
 CVE-2023-4663 (Improper Neutralization of Script-Related HTML Tags in a Web 
Page (Bas ...)
-       TODO: check
+       NOT-FOR-US: Saphira Saphira Connect
 CVE-2023-4662 (Execution with Unnecessary Privileges vulnerability in Saphira 
Saphira ...)
-       TODO: check
+       NOT-FOR-US: Saphira Saphira Connect
 CVE-2023-4661 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
-       TODO: check
+       NOT-FOR-US: Saphira Saphira Connect
 CVE-2023-4231 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
-       TODO: check
+       NOT-FOR-US: Cevik Informatics Online Payment System
 CVE-2023-42405 (SQL injection vulnerability in FIT2CLOUD RackShift v1.7.1 
allows attac ...)
-       TODO: check
+       NOT-FOR-US: FIT2CLOUD RackShift
 CVE-2023-42398 (An issue in zzCMS v.2023 allows a remote attacker to execute 
arbitrary ...)
-       TODO: check
+       NOT-FOR-US: zzCMS
 CVE-2023-42362 (An arbitrary file upload vulnerability in Teller Web App 
v.4.4.0 allow ...)
-       TODO: check
+       NOT-FOR-US: Teller Web App
 CVE-2023-42270 (Grocy <= 4.0.2 is vulnerable to Cross Site Request Forgery 
(CSRF).)
        TODO: check
 CVE-2023-41889 (SHIRASAGI is a Content Management System. Prior to version 
1.18.0, SHI ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3037478b1b1396f90bead5376d25e64bed6e0d22

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3037478b1b1396f90bead5376d25e64bed6e0d22
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process NFUs

Reply via email to