[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) Fri, 22 Sep 2023 05:59:24 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
3b27c5d3 by Salvatore Bonaccorso at 2023-09-22T14:58:37+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,11 +7,11 @@ CVE-2023-4716 (The Media Library Assistant plugin for 
WordPress is vulnerable to
 CVE-2023-43784 (Plesk Onyx 17.8.11 has accessKeyId and secretAccessKey fields 
that are ...)
        NOT-FOR-US: Plesk Onyx
 CVE-2023-43783 (Cadence through 0.9.2 2023-08-21 uses an Insecure 
/tmp/cadence-wineasi ...)
-       TODO: check
+       NOT-FOR-US: Cadence
 CVE-2023-43782 (Cadence through 0.9.2 2023-08-21 uses an Insecure 
/tmp/.cadence-aloop- ...)
-       TODO: check
+       NOT-FOR-US: Cadence
 CVE-2023-43771 (In nqptp-message-handlers.c in nqptp before 1.2.3, crafted 
packets rec ...)
-       TODO: check
+       NOT-FOR-US: nqptp
 CVE-2023-43767 (Certain WithSecure products allow Denial of Service via the 
aepack arc ...)
        NOT-FOR-US: WithSecure
 CVE-2023-43766 (Certain WithSecure products allow Local privilege escalation 
via the l ...)
@@ -121,7 +121,7 @@ CVE-2023-40183 (DataEase is an open source data 
visualization and analysis tool.
 CVE-2023-34577 (SQL injection vulnerability in Prestashop opartplannedpopup 
1.4.11 and ...)
        NOT-FOR-US: Prestashop opartplannedpopup
 CVE-2023-34576 (SQL injection vulnerability in updatepos.php in PrestaShop 
opartfaq th ...)
-       TODO: check
+       NOT-FOR-US: PrestaShop opartfaq
 CVE-2023-4760 (In Eclipse RAP versions from 3.0.0 up to and including 3.25.0, 
Remote  ...)
        NOT-FOR-US: Eclipse RAP
 CVE-2023-4292 (Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi v1.4.24 and 
all pre ...)
@@ -146,9 +146,9 @@ CVE-2023-39675 (SimpleImportProduct Prestashop Module 
v6.2.9 was discovered to c
 CVE-2023-39252 (Dell SCG Policy Manager 5.16.00.14  contains a broken 
cryptographic al ...)
        NOT-FOR-US: Dell
 CVE-2023-38876 (A reflected cross-site scripting (XSS) vulnerability in 
msaad1999's PH ...)
-       TODO: check
+       NOT-FOR-US: msaad1999's PHP-Login-System
 CVE-2023-38875 (A reflected cross-site scripting (XSS) vulnerability in 
msaad1999's PH ...)
-       TODO: check
+       NOT-FOR-US: msaad1999's PHP-Login-System
 CVE-2023-37279 (Faktory is a language-agnostic persistent background job 
server. Prior ...)
        TODO: check
 CVE-2023-36234 (Cross Site Scripting (XSS) vulnerability in Netbox 3.5.1, 
allows attac ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3b27c5d36cd359436f57e7503ee5e17ce4a9d9af

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3b27c5d36cd359436f57e7503ee5e17ce4a9d9af
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to