[Git][security-tracker-team/security-tracker][master] Process some NFUs

Wed, 03 May 2023 13:15:25 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
7a2f8081 by Salvatore Bonaccorso at 2023-05-03T22:14:44+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1886,15 +1886,15 @@ CVE-2023-28724 (NGINX Management Suite default file 
permissions are set such tha
 CVE-2023-28656 (NGINX Management Suite may allow an authenticated attacker to 
gain acc ...)
        TODO: check
 CVE-2023-28406 (A directory traversal vulnerability exists in an undisclosed 
page of t ...)
-       TODO: check
+       NOT-FOR-US: F5 BIG-IP
 CVE-2023-27378 (Multiple reflected cross-site scripting (XSS) vulnerabilities 
exist in ...)
-       TODO: check
+       NOT-FOR-US: F5 BIG-IP
 CVE-2023-24594 (When an SSL profile is configured on a Virtual Server, 
undisclosed tra ...)
        TODO: check
 CVE-2023-24461 (An improper certificate validationvulnerability exists in the 
BIG-IP E ...)
-       TODO: check
+       NOT-FOR-US: F5 BIG-IP
 CVE-2023-22372 (In the pre connection stage, an improper enforcement of 
message integr ...)
-       TODO: check
+       NOT-FOR-US: F5 BIG-IP
 CVE-2023-2089 (A vulnerability was found in SourceCodester Complaint 
Management Syste ...)
        NOT-FOR-US: SourceCodester Complaint Management System
 CVE-2023-2088
@@ -15678,7 +15678,7 @@ CVE-2023-26019
 CVE-2023-26018
        RESERVED
 CVE-2023-26017 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in Blue ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2023-26016
        RESERVED
 CVE-2023-26015
@@ -16248,7 +16248,7 @@ CVE-2023-25799
 CVE-2023-25798 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) 
vulnerability i ...)
        TODO: check
 CVE-2023-25797 (Auth. Stored Cross-Site Scripting (XSS) vulnerability in 
Mr.Vibe vSlid ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2023-25796 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in Incl ...)
        TODO: check
 CVE-2023-25795 (Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in 
WP-master.I ...)
@@ -22487,7 +22487,7 @@ CVE-2023-23710 (Auth. (admin+) Stored Cross-Site 
Scripting (XSS) vulnerability i
 CVE-2023-23709
        RESERVED
 CVE-2023-23708 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) 
vulnerability i ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2023-23707 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
        NOT-FOR-US: WordPress plugin
 CVE-2023-23706



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a2f808147febf72b81a27cd7354553b8b9bcbb8

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a2f808147febf72b81a27cd7354553b8b9bcbb8
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to