Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4ada52b2 by Salvatore Bonaccorso at 2023-11-14T21:21:55+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,103 +1,103 @@
CVE-2023-6131 (Code Injection in GitHub repository salesagility/suitecrm prior
to 7.1 ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6130 (Path Traversal: '\..\filename' in GitHub repository
salesagility/suite ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6128 (Cross-site Scripting (XSS) - Reflected in GitHub repository
salesagili ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6127 (Unrestricted Upload of File with Dangerous Type in GitHub
repository s ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6126 (Code Injection in GitHub repository salesagility/suitecrm prior
to 7.1 ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6125 (Code Injection in GitHub repository salesagility/suitecrm prior
to 7.1 ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6124 (Server-Side Request Forgery (SSRF) in GitHub repository
salesagility/s ...)
- TODO: check
+ NOT-FOR-US: suitecrm
CVE-2023-6111 (A use-after-free vulnerability in the Linux kernel's netfilter:
nf_tab ...)
TODO: check
CVE-2023-48094 (A cross-site scripting (XSS) vulnerability in CesiumJS v1.111
allows a ...)
TODO: check
CVE-2023-48021 (Dreamer CMS v4.1.3 was discovered to contain a Cross-Site
Request Forg ...)
- TODO: check
+ NOT-FOR-US: Dreamer CMS
CVE-2023-48020 (Dreamer CMS v4.1.3 was discovered to contain a Cross-Site
Request Forg ...)
- TODO: check
+ NOT-FOR-US: Dreamer CMS
CVE-2023-47660 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in WP W ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47659 (Auth. (contributor+) Stored Cross-Site Scripting (XSS)
vulnerability i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47658 (Auth. (ShopManager+) Stored Cross-Site Scripting (XSS)
vulnerability i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47656 (Auth. (editor+) Stored Cross-Site Scripting (XSS)
vulnerability in Mar ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47654 (Auth. (contributor+) Stored Cross-Site Scripting (XSS)
vulnerability i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47653 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Abu ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47646 (Auth. (Shop Manager+) Stored Cross-Site Scripting (XSS)
vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47554 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in DenK ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47550 (Cross-Site Request Forgery (CSRF) vulnerability in RedNao
Donations Ma ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-47384 (MP4Box GPAC v2.3-DEV-rev617-g671976fcc-master was discovered
to contai ...)
TODO: check
CVE-2023-47262 (In Abbott ID NOW before 7.1, settings can be modified via
physical acc ...)
- TODO: check
+ NOT-FOR-US: Abbott ID NOW
CVE-2023-47127 (TYPO3 is an open source PHP based web content management
system releas ...)
- TODO: check
+ NOT-FOR-US: Typo3
CVE-2023-47126 (TYPO3 is an open source PHP based web content management
system releas ...)
- TODO: check
+ NOT-FOR-US: Typo3
CVE-2023-46601 (A vulnerability has been identified in COMOS (All versions).
The affec ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-46590 (A vulnerability has been identified in Siemens OPC UA
Modelling Editor ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-46099 (A vulnerability has been identified in SIMATIC PCS neo (All
versions < ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-46098 (A vulnerability has been identified in SIMATIC PCS neo (All
versions < ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-46097 (A vulnerability has been identified in SIMATIC PCS neo (All
versions < ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-46096 (A vulnerability has been identified in SIMATIC PCS neo (All
versions < ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-45794 (A vulnerability has been identified in Mendix Applications
using Mendi ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-45684 (Northern.tech CFEngine Enterprise before 3.21.3 allows SQL
Injection. ...)
TODO: check
CVE-2023-45585 (An insertion of sensitive information into log file
vulnerability [CWE ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-45582 (An improper restriction of excessive authentication attempts
vulnerabi ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-44374 (A vulnerability has been identified in SCALANCE XB205-3 (SC,
PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44373 (A vulnerability has been identified in SCALANCE XB205-3 (SC,
PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44322 (A vulnerability has been identified in SCALANCE XB205-3 (SC,
PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44321 (A vulnerability has been identified in SCALANCE XB205-3 (SC,
PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44320 (A vulnerability has been identified in SCALANCE XB205-3 (SC,
PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44319 (A vulnerability has been identified in SCALANCE XB205-3 (SC,
PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44318 (A vulnerability has been identified in SCALANCE XB205-3 (SC,
PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44317 (A vulnerability has been identified in SCALANCE XB205-3 (SC,
PN) (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-44248 (An improper access control vulnerability [CWE-284]
inFortiEDRCollector ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-43505 (A vulnerability has been identified in COMOS (All versions).
The affec ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-43504 (A vulnerability has been identified in COMOS (All versions <
V10.4.4). ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-43503 (A vulnerability has been identified in COMOS (All versions <
V10.4.4). ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2023-42783 (A relative path traversal in Fortinet FortiWLM version 8.6.0
through 8 ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-41840 (A untrusted search path vulnerability in Fortinet
FortiClientWindows 7 ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-41676 (An exposure of sensitive information to an unauthorized actor
[CWE-200 ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-40719 (A use of hard-coded credentials vulnerability in Fortinet
FortiAnalyze ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-40540 (Non-Transparent Sharing of Microarchitectural Resources in
some Intel( ...)
TODO: check
CVE-2023-40220 (Improper buffer restrictions in some Intel(R) NUC BIOS
firmware may al ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4ada52b2d44aaa45f4cbb81f3e87740245912477
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4ada52b2d44aaa45f4cbb81f3e87740245912477
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
