[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) Thu, 24 Feb 2022 00:41:41 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
0b8ac524 by Salvatore Bonaccorso at 2022-02-24T09:41:09+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -992,17 +992,17 @@ CVE-2022-25408
 CVE-2022-25407
        RESERVED
 CVE-2022-25406 (Tongda2000 v11.10 was discovered to contain a SQL injection 
vulnerabil ...)
-       TODO: check
+       NOT-FOR-US: Tongda2000
 CVE-2022-25405 (Tongda2000 v11.10 was discovered to contain a SQL injection 
vulnerabil ...)
-       TODO: check
+       NOT-FOR-US: Tongda2000
 CVE-2022-25404 (Tongda2000 v11.10 was discovered to contain a SQL injection 
vulnerabil ...)
-       TODO: check
+       NOT-FOR-US: Tongda2000
 CVE-2022-25403 (HMS v1.0 was discovered to contain a SQL injection 
vulnerability via t ...)
-       TODO: check
+       NOT-FOR-US: HMS
 CVE-2022-25402 (An incorrect access control issue in HMS v1.0 allows 
unauthenticated a ...)
-       TODO: check
+       NOT-FOR-US: HMS
 CVE-2022-25401 (The copy function of the file manager in Cuppa CMS v1.0 allows 
any fil ...)
-       TODO: check
+       NOT-FOR-US: Cuppa CMS
 CVE-2022-25400
        RESERVED
 CVE-2022-25399
@@ -1134,13 +1134,13 @@ CVE-2022-25365 (Docker Desktop before 4.5.1 on Windows 
allows attackers to move
 CVE-2022-25364
        RESERVED
 CVE-2022-25363 (WatchGuard Firebox and XTM appliances allow an authenticated 
remote at ...)
-       TODO: check
+       NOT-FOR-US: WatchGuard
 CVE-2022-25362
        RESERVED
 CVE-2022-25361
        RESERVED
 CVE-2022-25360 (WatchGuard Firebox and XTM appliances allow an authenticated 
remote at ...)
-       TODO: check
+       NOT-FOR-US: WatchGuard
 CVE-2022-25359
        RESERVED
 CVE-2022-25358 (A ..%2F path traversal vulnerability exists in the path 
handler of awf ...)
@@ -1348,13 +1348,13 @@ CVE-2022-25295
 CVE-2022-25294
        RESERVED
 CVE-2022-25293 (A systemd stack-based buffer overflow in WatchGuard Firebox 
and XTM ap ...)
-       TODO: check
+       NOT-FOR-US: WatchGuard
 CVE-2022-25292 (A wgagent stack-based buffer overflow in WatchGuard Firebox 
and XTM ap ...)
-       TODO: check
+       NOT-FOR-US: WatchGuard
 CVE-2022-25291 (An integer overflow in WatchGuard Firebox and XTM appliances 
allows an ...)
-       TODO: check
+       NOT-FOR-US: WatchGuard
 CVE-2022-25290 (WatchGuard Firebox and XTM appliances allow an authenticated 
remote at ...)
-       TODO: check
+       NOT-FOR-US: WatchGuard
 CVE-2022-25289
        RESERVED
 CVE-2022-25288
@@ -1982,19 +1982,19 @@ CVE-2022-25106
 CVE-2022-25105
        RESERVED
 CVE-2022-25104 (HorizontCMS v1.0.0-beta.2 was discovered to contain an 
arbitrary file  ...)
-       TODO: check
+       NOT-FOR-US: HorizontCMS
 CVE-2022-25103
        RESERVED
 CVE-2022-25102
        RESERVED
 CVE-2022-25101 (A vulnerability in the component /templates/install.php of 
WBCE CMS v1 ...)
-       TODO: check
+       NOT-FOR-US: WBCE CMS
 CVE-2022-25100
        RESERVED
 CVE-2022-25099 (A vulnerability in the component /languages/index.php of WBCE 
CMS v1.5 ...)
-       TODO: check
+       NOT-FOR-US: WBCE CMS
 CVE-2022-25098 (ECTouch v2 suffers from arbitrary file deletion due to 
insufficient fi ...)
-       TODO: check
+       NOT-FOR-US: ECTouch
 CVE-2022-25097
        RESERVED
 CVE-2022-25096
@@ -3629,7 +3629,7 @@ CVE-2022-24411
 CVE-2022-24410
        RESERVED
 CVE-2022-24409 (Only customers with active BSAFE maintenance contracts can 
receive det ...)
-       TODO: check
+       NOT-FOR-US: Dell
 CVE-2022-24380
        RESERVED
 CVE-2022-22147
@@ -6613,7 +6613,7 @@ CVE-2022-23657
 CVE-2022-23656
        RESERVED
 CVE-2022-23655 (Octobercms is a self-hosted CMS platform based on the Laravel 
PHP Fram ...)
-       TODO: check
+       NOT-FOR-US: October CMS
 CVE-2022-23654 (Wiki.js is a wiki app built on Node.js. In affected versions 
an authen ...)
        NOT-FOR-US: Wiki.js
 CVE-2022-23653 (B2 Command Line Tool is the official command line tool for the 
backbla ...)
@@ -8339,7 +8339,7 @@ CVE-2022-23178 (An issue was discovered on Crestron 
HD-MD4X2-4K-E 1.0.0.2159 dev
 CVE-2022-23177
        RESERVED
 CVE-2022-23176 (WatchGuard Firebox and XTM appliances allow a remote attacker 
with unp ...)
-       TODO: check
+       NOT-FOR-US: WatchGuard
 CVE-2022-23175
        RESERVED
 CVE-2022-23174
@@ -12440,7 +12440,7 @@ CVE-2021-45748
 CVE-2021-45747
        RESERVED
 CVE-2021-45746 (A Directory Traversal vulnerability exists in WeBankPartners 
wecube-pl ...)
-       TODO: check
+       NOT-FOR-US: WeBankPartners
 CVE-2021-45745 (A Stored Cross Site Scripting (XSS) vulnerability exists in 
Bludit 3.1 ...)
        NOT-FOR-US: Bludit
 CVE-2021-45744 (A Stored Cross Site Scripting (XSS) vulnerability exists in 
bludit 3.1 ...)
@@ -16484,7 +16484,7 @@ CVE-2021-44612
 CVE-2021-44611
        RESERVED
 CVE-2021-44610 (Multiple SQL Injection vulnerabilities exist in bloofoxCMS 
0.5.2.1 - 0 ...)
-       TODO: check
+       NOT-FOR-US: bloofoxCMS
 CVE-2021-44609
        RESERVED
 CVE-2021-44608 (Multiple Cross Site Scripting (XSS) vulnerabilities exists in 
bloofoxC ...)
@@ -18867,7 +18867,7 @@ CVE-2021-43945
 CVE-2021-43944
        RESERVED
 CVE-2021-43943 (Affected versions of Atlassian Jira Service Management Server 
and Data ...)
-       TODO: check
+       NOT-FOR-US: Atlassian
 CVE-2021-43942 (Affected versions of Atlassian Jira Server and Data Center 
allow remot ...)
        NOT-FOR-US: Atlassian
 CVE-2021-43941 (Affected versions of Atlassian Jira Server and Data Center 
allow remot ...)
@@ -42413,7 +42413,7 @@ CVE-2021-35691
 CVE-2021-35690
        RESERVED
 CVE-2021-35689 (A potential vulnerability in the Oracle Talent Acquisition 
Cloud - Tal ...)
-       TODO: check
+       NOT-FOR-US: Oracle
 CVE-2021-35688
        RESERVED
 CVE-2021-35687 (Vulnerability in the Oracle Financial Services Analytical 
Applications ...)
@@ -66751,7 +66751,7 @@ CVE-2021-26094
 CVE-2021-26093
        RESERVED
 CVE-2021-26092 (Failure to sanitize input in the SSL VPN web portal of FortiOS 
5.2.10  ...)
-       TODO: check
+       NOT-FOR-US: FortiGuard
 CVE-2021-26091
        RESERVED
 CVE-2021-26090 (A missing release of memory after its effective lifetime 
vulnerability ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b8ac524075619b9a1a96b36c12947066dce5bfb

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b8ac524075619b9a1a96b36c12947066dce5bfb
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process NFUs

Reply via email to