[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) Wed, 07 Aug 2024 13:29:25 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
a504b349 by Salvatore Bonaccorso at 2024-08-07T22:28:37+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,37 +1,37 @@
 CVE-2024-7585 (A vulnerability has been found in Tenda i22 1.0.0.3(4687) and 
classifi ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-7584 (A vulnerability, which was classified as critical, was found in 
Tenda  ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-7583 (A vulnerability, which was classified as critical, has been 
found in T ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-7582 (A vulnerability classified as critical was found in Tenda i22 
1.0.0.3( ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-7581 (A vulnerability classified as critical has been found in Tenda 
A301 15 ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-7580 (A vulnerability was found in Alien Technology ALR-F800 up to 
19.10.24. ...)
-       TODO: check
+       NOT-FOR-US: Alien Technology ALR-F800
 CVE-2024-7579 (A vulnerability was found in Alien Technology ALR-F800 up to 
19.10.24. ...)
-       TODO: check
+       NOT-FOR-US: Alien Technology ALR-F800
 CVE-2024-7578 (A vulnerability was found in Alien Technology ALR-F800 up to 
19.10.24. ...)
-       TODO: check
+       NOT-FOR-US: Alien Technology ALR-F800
 CVE-2024-7553 (Incorrect validation of files loaded from a local untrusted 
directory  ...)
        TODO: check
 CVE-2024-7355 (The Organization chart plugin for WordPress is vulnerable to 
Stored Cr ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-7353 (The Accept Stripe Payments plugin for WordPress is vulnerable 
to Store ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-7267 (Exposure of Sensitive Informationvulnerability in Naukowa i 
Akademicka ...)
-       TODO: check
+       NOT-FOR-US: EZD RP
 CVE-2024-7266 (Incorrect User Management vulnerability in Naukowa i Akademicka 
Sie\u0 ...)
-       TODO: check
+       NOT-FOR-US: EZD RP
 CVE-2024-7265 (Incorrect User Management vulnerability in Naukowa i Akademicka 
Sie\u0 ...)
-       TODO: check
+       NOT-FOR-US: EZD RP
 CVE-2024-7143 (A flaw was found in the Pulp package. When a role-based access 
control ...)
-       TODO: check
+       NOT-FOR-US: Pulp (Red Hat)
 CVE-2024-7061 (Okta Verify for Windows is vulnerable to privilege escalation 
through  ...)
-       TODO: check
+       NOT-FOR-US: Okta Verify for Windows
 CVE-2024-6522 (The Modern Events Calendar plugin for WordPress is vulnerable 
to Serve ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-43199 (Nagios NDOUtils before 2.1.4 allows privilege escalation from 
nagios t ...)
        TODO: check
 CVE-2024-43045 (Jenkins 2.470 and earlier, LTS 2.452.3 and earlier does not 
perform a  ...)
@@ -39,47 +39,47 @@ CVE-2024-43045 (Jenkins 2.470 and earlier, LTS 2.452.3 and 
earlier does not perf
 CVE-2024-43044 (Jenkins 2.470 and earlier, LTS 2.452.3 and earlier allows 
agent proces ...)
        TODO: check
 CVE-2024-41912 (A vulnerability was discovered in the firmware builds up to 
10.10.2.2  ...)
-       TODO: check
+       NOT-FOR-US: HP
 CVE-2024-41432 (An IP Spoofing vulnerability has been discovered in Likeshop 
up to 2.5 ...)
-       TODO: check
+       NOT-FOR-US: Likeshop
 CVE-2024-41309 (An issue in the Hardware info module of IT Solutions Enjay CRM 
OS v1.0 ...)
-       TODO: check
+       NOT-FOR-US: IT Solutions Enjay CRM OS
 CVE-2024-41308 (An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 
allows  ...)
-       TODO: check
+       NOT-FOR-US: IT Solutions Enjay CRM OS
 CVE-2024-41252 (An Incorrect Access Control vulnerability was found in 
/smsa/admin_stu ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41251 (An Incorrect Access Control vulnerability was found in 
/smsa/admin_tea ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41250 (An Incorrect Access Control vulnerability was found in 
/smsa/view_stud ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41249 (An Incorrect Access Control vulnerability was found in 
/smsa/view_subj ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41248 (An Incorrect Access Control vulnerability was found in 
/smsa/add_subje ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41247 (An Incorrect Access Control vulnerability was found in 
/smsa/add_class ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41246 (An Incorrect Access Control vulnerability was found in 
/smsa/admin_das ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41245 (An Incorrect Access Control vulnerability was found in 
/smsa/view_teac ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41244 (An Incorrect Access Control vulnerability was found in 
/smsa/view_clas ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41243 (An Incorrect Access Control vulnerability was found in 
/smsa/view_mark ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41242 (A Reflected Cross Site Scripting (XSS) vulnerability was found 
in /sms ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41241 (A Reflected Cross Site Scripting (XSS) vulnerability was found 
in " /s ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41240 (A Reflected Cross Site Scripting (XSS) vulnerability was found 
in " /s ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41239 (A Stored Cross Site Scripting (XSS) vulnerability was found in 
"/smsa/ ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-41237 (A SQL injection vulnerability in /smsa/teacher_login.php in 
Kashipara  ...)
-       TODO: check
+       NOT-FOR-US: Kashipara Responsive School Management System
 CVE-2024-34480 (SourceCodester Computer Laboratory Management System 1.0 
allows admin/ ...)
-       TODO: check
+       NOT-FOR-US: SourceCodester Computer Laboratory Management System
 CVE-2024-34479 (SourceCodester Computer Laboratory Management System 1.0 
allows classe ...)
-       TODO: check
+       NOT-FOR-US: SourceCodester Computer Laboratory Management System
 CVE-2024-20479 (A vulnerability in the web-based management interface of Cisco 
ISE cou ...)
        TODO: check
 CVE-2024-20454 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a504b3498bdb38a3340ef8b911c53b2bb0b6cddd

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a504b3498bdb38a3340ef8b911c53b2bb0b6cddd
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to