[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso (@carnil) Thu, 18 Jul 2024 13:06:40 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
5ad8676d by Salvatore Bonaccorso at 2024-07-18T22:05:54+02:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -34,7 +34,7 @@ CVE-2024-39678 (Cooked is a recipe plugin for WordPress. The 
Cooked plugin is vu
 CVE-2024-29014 (Vulnerability in SonicWall NetExtender Windows (32 and 64-bit) 
client  ...)
        NOT-FOR-US: SonicWall
 CVE-2023-6708 (The SVG Support plugin for WordPress is vulnerable to Stored 
Cross-Sit ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2023-43971 (Cross Site Scripting vulnerability in ACG-faka v1.1.7 allows a 
remote  ...)
        TODO: check
 CVE-2024-41011 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
@@ -132,31 +132,31 @@ CVE-2024-23466 (SolarWinds Access Rights Manager (ARM) is 
susceptible to a Direc
 CVE-2024-23465 (The SolarWinds Access Rights Manager was found to be 
susceptible to an ...)
        NOT-FOR-US: SolarWinds
 CVE-2024-20435 (A vulnerability in the CLI of Cisco AsyncOS for Secure Web 
Appliance c ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20429 (A vulnerability in the web-based management interface of Cisco 
AsyncOS ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20419 (A vulnerability in the authentication system of Cisco Smart 
Software M ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20416 (A vulnerability in the upload module of Cisco RV340 and RV345 
Dual WAN ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20401 (A vulnerability in the content scanning and message filtering 
features ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20400 (A vulnerability in the web-based management interface of Cisco 
Express ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20396 (A vulnerability in the protocol handlers of Cisco Webex App 
could allo ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20395 (A vulnerability in the media retrieval functionality of Cisco 
Webex Ap ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20323 (A vulnerability in Cisco Intelligent Node (iNode) Software 
could allow ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20296 (A vulnerability in the web-based management interface of Cisco 
Identit ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2023-7272 (In Eclipse Parsson before 1.0.4 and 1.1.3, a document with a 
large dep ...)
-       TODO: check
+       NOT-FOR-US: Eclipse Parsson
 CVE-2023-52291 (In streampark, the project module integrates Maven's 
compilation capab ...)
-       TODO: check
+       NOT-FOR-US: streampark
 CVE-2023-4976 (A flaw exists in Purity//FB whereby a local account is 
permitted to au ...)
-       TODO: check
+       NOT-FOR-US: Purity//FB
 CVE-2023-42010 (IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 
6.1.2.5 a ...)
        NOT-FOR-US: IBM
 CVE-2024-6808 (A vulnerability was found in itsourcecode Simple Task List 1.0. 
It has ...)
@@ -521,7 +521,7 @@ CVE-2024-21686 (This High severity Stored XSS vulnerability 
was introduced in ve
 CVE-2024-1937 (The Brizy \u2013 Page Builder plugin for WordPress is 
vulnerable to un ...)
        NOT-FOR-US: WordPress plugin
 CVE-2023-31456 (There is an SSRF vulnerability in the Fluid Topics platform 
that affec ...)
-       TODO: check
+       NOT-FOR-US: Fluid Topics platform
 CVE-2023-52886 (In the Linux kernel, the following vulnerability has been 
resolved:  U ...)
        - linux 6.5.3-1
        [bookworm] - linux 6.1.55-1
@@ -130345,7 +130345,7 @@ CVE-2022-45451 (Local privilege escalation due to 
insecure driver communication
 CVE-2022-45450 (Sensitive information disclosure and manipulation due to 
improper auth ...)
        NOT-FOR-US: Acronis
 CVE-2022-45449 (Sensitive information disclosure due to excessive privileges 
assigned  ...)
-       TODO: check
+       NOT-FOR-US: Acronis
 CVE-2022-45448 (M4 PDF plugin for Prestashop sites, in its 3.2.3 version and 
before, i ...)
        NOT-FOR-US: M4 PDF plugin for Prestashop sites
 CVE-2022-45447 (M4 PDF plugin for Prestashop sites, in its 3.2.3 version and 
before, i ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ad8676d56efa8fe5d11c71397c1850dfea61dc1

-- 
This project does not include diff previews in email notifications.
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ad8676d56efa8fe5d11c71397c1850dfea61dc1
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process more NFUs

Reply via email to