Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c93c06f7 by Salvatore Bonaccorso at 2023-09-19T22:20:11+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,19 +1,19 @@
CVE-2023-4376 (The Serial Codes Generator and Validator with WooCommerce
Support Word ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-4096 (Weak password recovery mechanism vulnerability in Fujitsu
Arconte \xc1 ...)
- TODO: check
+ NOT-FOR-US: Fujitsu
CVE-2023-4095 (User enumeration vulnerability in Arconte \xc1urea 1.5.0.0
version. Th ...)
- TODO: check
+ NOT-FOR-US: Fujitsu
CVE-2023-4094 (ARCONTE Aurea's authentication system, in its 1.5.0.0 version,
could a ...)
- TODO: check
+ NOT-FOR-US: Fujitsu
CVE-2023-4093 (Reflected and persistent XSS vulnerability in Arconte \xc1urea,
in its ...)
- TODO: check
+ NOT-FOR-US: Fujitsu
CVE-2023-4092 (SQL injection vulnerability in Arconte \xc1urea, in its 1.5.0.0
versio ...)
- TODO: check
+ NOT-FOR-US: Fujitsu
CVE-2023-43566 (In JetBrains TeamCity before 2023.05.4 stored XSS was possible
during ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2023-42793 (In JetBrains TeamCity before 2023.05.4 authentication bypass
leading t ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2023-42452 (Mastodon is a free, open-source social network server based on
Activit ...)
TODO: check
CVE-2023-42451 (Mastodon is a free, open-source social network server based on
Activit ...)
@@ -33,21 +33,21 @@ CVE-2023-41387 (A SQL injection in the flutter_downloader
component through 1.11
CVE-2023-41179 (A vulnerability in the 3rd party AV uninstaller module
contained in Tr ...)
NOT-FOR-US: Trend Micro
CVE-2023-3892 (Improper Restriction of XML External Entity Reference
vulnerability in ...)
- TODO: check
+ NOT-FOR-US: MIM Assistant and Client DICOM RTst Loading modules
CVE-2023-38356 (MiniTool Power Data Recovery 11.6 contains an insecure
installation pr ...)
- TODO: check
+ NOT-FOR-US: MiniTool Power Data Recovery
CVE-2023-38355 (MiniTool Movie Maker 6.1.0 contains an insecure installation
process t ...)
- TODO: check
+ NOT-FOR-US: MiniTool Movie Maker
CVE-2023-38354 (MiniTool Movie Maker 4.1 contains an insecure installation
process tha ...)
- TODO: check
+ NOT-FOR-US: MiniTool Movie Maker
CVE-2023-38353 (MiniTool Power Data Recovery 11.5 contains an insecure in-app
payment ...)
- TODO: check
+ NOT-FOR-US: MiniTool Power Data Recovery
CVE-2023-38352 (MiniTool Partition Wizard 12.8 contains an insecure update
mechanism t ...)
- TODO: check
+ NOT-FOR-US: MiniTool Partition Wizard
CVE-2023-38351 (MiniTool Partition Wizard 12.8 contains an insecure
installation mecha ...)
- TODO: check
+ NOT-FOR-US: MiniTool Partition Wizard
CVE-2023-32649 (A Denial of Service (Dos) vulnerability in Nozomi Networks
Guardian an ...)
- TODO: check
+ NOT-FOR-US: Nozomi Networks
CVE-2023-32186 (A Allocation of Resources Without Limits or Throttling
vulnerability i ...)
TODO: check
CVE-2023-32182 (A Improper Link Resolution Before File Access ('Link
Following') vulne ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c93c06f7f896ae927697bf5bac185e473151b92e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c93c06f7f896ae927697bf5bac185e473151b92e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
