[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) Wed, 25 Sep 2024 13:39:33 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
98e29bde by Salvatore Bonaccorso at 2024-09-25T22:38:47+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -58,7 +58,7 @@ CVE-2024-45750 (An issue in TheGreenBow Windows Standard VPN 
Client 6.87.108 (an
 CVE-2024-45613 (CKEditor 5 is a JavaScript rich-text editor. Starting in 
version 40.0. ...)
        TODO: check
 CVE-2024-44825 (Directory Traversal vulnerability in Centro de Tecnologia da 
Informaco ...)
-       TODO: check
+       NOT-FOR-US: Centro de Tecnologia da Informaco Renato Archer InVesalius3
 CVE-2024-44678 (Gigastone TR1 Travel Router R101 v1.0.2 is vulnerable to 
Command Injec ...)
        NOT-FOR-US: Gigastone TR1 Travel Router R101
 CVE-2024-43990 (Insertion of Sensitive Information into Log File vulnerability 
in Styl ...)
@@ -68,47 +68,47 @@ CVE-2024-43959 (Improper Neutralization of Input During Web 
Page Generation (XSS
 CVE-2024-43237 (Exposure of Sensitive Information to an Unauthorized Actor 
vulnerabili ...)
        NOT-FOR-US: WordPress plugin
 CVE-2024-41708 (An issue was discovered in AdaCore ada_web_services 20.0 
allows an att ...)
-       TODO: check
+       NOT-FOR-US: AdaCore ada_web_services
 CVE-2024-41445 (Library MDF (mdflib) v2.1 is vulnerable to a heap-based buffer 
overrea ...)
-       TODO: check
+       NOT-FOR-US: Library MDF (mdflib)
 CVE-2024-30128 (HCL Nomad server on Domino is affected by an open proxy 
vulnerability  ...)
-       TODO: check
+       NOT-FOR-US: HCL
 CVE-2024-22893 (OpenSlides 4.0.15 verifies passwords by comparing password 
hashes usin ...)
-       TODO: check
+       NOT-FOR-US: OpenSlides
 CVE-2024-22892 (OpenSlides 4.0.15 was discovered to be using a weak hashing 
algorithm  ...)
-       TODO: check
+       NOT-FOR-US: OpenSlides
 CVE-2024-20510 (A vulnerability in the Central Web Authentication (CWA) 
feature of Cis ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20508 (A vulnerability in Cisco Unified Threat Defense (UTD) Snort 
Intrusion  ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20496 (A vulnerability in the UDP packet validation code of Cisco 
SD-WAN vEdg ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20480 (A vulnerability in the DHCP Snooping feature of Cisco IOS XE 
Software  ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20475 (A vulnerability in the web-based management interface of Cisco 
Catalys ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20467 (A vulnerability in the implementation of the IPv4 
fragmentation reasse ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20465 (A vulnerability in the access control list (ACL) programming 
of Cisco  ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20464 (A vulnerability in the Protocol Independent Multicast (PIM) 
feature of ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20455 (A vulnerability in the process that classifies traffic that is 
going t ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20437 (A vulnerability in the web-based management interface of Cisco 
IOS XE  ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20436 (A vulnerability in the HTTP Server feature of Cisco IOS XE 
Software wh ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20434 (A vulnerability in Cisco IOS XE Software could allow an 
unauthenticate ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20433 (A vulnerability in the Resource Reservation Protocol (RSVP) 
feature of ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20414 (A vulnerability in the web UI feature of Cisco IOS Software 
and Cisco  ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2024-20350 (A vulnerability in the SSH server of Cisco Catalyst Center, 
formerly C ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2023-51157 (Cross Site Scripting vulnerability in ZKTeco WDMS v.5.1.3 Pro 
allows a ...)
-       TODO: check
+       NOT-FOR-US: ZKTeco WDMS
 CVE-2024-9073 (The GutenGeek Free Gutenberg Blocks for WordPress plugin for 
WordPress ...)
        NOT-FOR-US: WordPress plugin
 CVE-2024-9069 (The Graphicsly \u2013 The ultimate graphics plugin for 
WordPress websi ...)
@@ -126951,7 +126951,7 @@ CVE-2017-20176 (A vulnerability classified as 
problematic was found in ciubotaru
 CVE-2017-20175 (A vulnerability classified as problematic has been found in 
DaSchTour  ...)
        NOT-FOR-US: Mamoto extension for MediaWiki
 CVE-2023-25189 (BTS is affected by information disclosure vulnerability where 
mobile n ...)
-       TODO: check
+       NOT-FOR-US: Nokia
 CVE-2023-25188 (An issue was discovered on NOKIA Airscale ASIKA Single RAN 
devices bef ...)
        NOT-FOR-US: NOKIA
 CVE-2023-25187 (An issue was discovered on NOKIA Airscale ASIKA Single RAN 
devices bef ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/98e29bde1f062029918ec76c788f940e98bdb0dc

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/98e29bde1f062029918ec76c788f940e98bdb0dc
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to