Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f5c3cfb4 by Moritz Muehlenhoff at 2018-06-29T14:59:58+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,5 +1,5 @@
CVE-2018-12988 (GreenCMS 2.3.0603 has an arbitrary file download vulnerability
via an ...)
- TODO: check
+ NOT-FOR-US: GreenCMS
CVE-2018-12987
RESERVED
CVE-2018-12986
@@ -7,7 +7,7 @@ CVE-2018-12986
CVE-2018-12985
RESERVED
CVE-2018-12984 (Hycus CMS 1.0.4 allows Authentication Bypass via "'='
'OR'" ...)
- TODO: check
+ NOT-FOR-US: Hycus CMS
CVE-2018-12983 (A stack-based buffer over-read in the ...)
TODO: check
CVE-2018-12982 (Invalid memory read in the PoDoFo::PdfVariant::DelayedLoad()
function ...)
@@ -29,11 +29,11 @@ CVE-2018-12975
CVE-2018-12974
RESERVED
CVE-2018-12973 (An issue was discovered in OpenTSDB 2.3.0. There is XSS in
parameter ...)
- TODO: check
+ NOT-FOR-US: OpenTSDB
CVE-2018-12972 (An issue was discovered in OpenTSDB 2.3.0. Many parameters to
the /q ...)
- TODO: check
+ NOT-FOR-US: OpenTSDB
CVE-2018-12971 (EasyCMS 1.3 has CSRF via the index.php?s=/admin/user/delAll
URI to ...)
- TODO: check
+ NOT-FOR-US: EasyCMS
CVE-2018-12970
RESERVED
CVE-2018-12969
@@ -34304,7 +34304,7 @@ CVE-2017-17064
CVE-2017-17063
RESERVED
CVE-2017-17062 (The backend component in Open-Xchange OX App Suite before
7.6.3-rev35, ...)
- TODO: check
+ NOT-FOR-US: Open-Xchange
CVE-2017-17061
RESERVED
CVE-2017-17060
@@ -34392,7 +34392,7 @@ CVE-2018-0714
CVE-2018-0713
RESERVED
CVE-2018-0712 (Command injection vulnerability in LDAP Server in QNAP QTS
4.2.6 build ...)
- TODO: check
+ NOT-FOR-US: QNAP
CVE-2018-0711 (Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3
build ...)
NOT-FOR-US: QNAP
CVE-2018-0710
@@ -34644,47 +34644,47 @@ CVE-2018-0614
CVE-2018-0613
RESERVED
CVE-2018-0612 (Cross-site scripting vulnerability in 5000 trillion yen
converter ...)
- TODO: check
+ NOT-FOR-US: 5000 trillion yen converter
CVE-2018-0611 (The ANA App for iOS version 4.0.22 and earlier does not verify
X.509 ...)
- TODO: check
+ NOT-FOR-US: ANA App
CVE-2018-0610 (Local file inclusion vulnerability in Zenphoto 1.4.14 and
earlier ...)
- TODO: check
+ NOT-FOR-US: Zenphoto
CVE-2018-0609 (Untrusted search path vulnerability in LINE for Windows
versions ...)
- TODO: check
+ NOT-FOR-US: LINE
CVE-2018-0608 (Buffer overflow in H2O version 2.2.4 and earlier allows remote
...)
TODO: check
CVE-2018-0607
RESERVED
CVE-2018-0606 (SQL injection vulnerability in the Pixelpost v1.7.3 and earlier
allows ...)
- TODO: check
+ NOT-FOR-US: Pixelpost
CVE-2018-0605 (Cross-site scripting vulnerability in Pixelpost v1.7.3 and
earlier ...)
- TODO: check
+ NOT-FOR-US: Pixelpost
CVE-2018-0604 (Pixelpost v1.7.3 and earlier allows remote code execution via
...)
- TODO: check
+ NOT-FOR-US: Pixelpost
CVE-2018-0603 (Cross-site scripting vulnerability in Site Reviews versions
prior to ...)
- TODO: check
+ NOT-FOR-US: Site Reviews
CVE-2018-0602 (Cross-site scripting vulnerability in Email Subscribers &
Newsletters ...)
- TODO: check
+ NOT-FOR-US: Email Subscribers & Newsletters
CVE-2018-0601 (Untrusted search path vulnerability in axpdfium v0.01 allows an
...)
- TODO: check
+ NOT-FOR-US: axpdfium
CVE-2018-0600 (Untrusted search path vulnerability in the installer of
PlayMemories ...)
- TODO: check
+ NOT-FOR-US: PlayMemories
CVE-2018-0599 (Untrusted search path vulnerability in the installer of Visual
C++ ...)
- TODO: check
+ NOT-FOR-US: Visual C++
CVE-2018-0598 (Untrusted search path vulnerability in Self-extracting archive
files ...)
- TODO: check
+ NOT-FOR-US: IExpress
CVE-2018-0597 (Untrusted search path vulnerability in the installer of Visual
Studio ...)
- TODO: check
+ NOT-FOR-US: Visual Studio
CVE-2018-0596 (Untrusted search path vulnerability in the installer of Visual
Studio ...)
- TODO: check
+ NOT-FOR-US: Visual Studio
CVE-2018-0595 (Untrusted search path vulnerability in the installer of Skype
for ...)
- TODO: check
+ NOT-FOR-US: Skype
CVE-2018-0594 (Untrusted search path vulnerability in Skype for Windows allows
an ...)
- TODO: check
+ NOT-FOR-US: Skype
CVE-2018-0593 (Untrusted search path vulnerability in the installer of
Microsoft ...)
- TODO: check
+ NOT-FOR-US: OneDrive
CVE-2018-0592 (Untrusted search path vulnerability in Microsoft OneDrive
allows an ...)
- TODO: check
+ NOT-FOR-US: OneDrive
CVE-2018-0591 (The KINEPASS App for Android Ver 3.1.1 and earlier, and for iOS
Ver ...)
NOT-FOR-US: KINEPASS
CVE-2018-0590 (Ultimate Member plugin prior to version 2.0.4 for WordPress
allows ...)
@@ -34700,7 +34700,7 @@ CVE-2018-0586 (Directory traversal vulnerability in the
shortcodes function of .
CVE-2018-0585 (Cross-site scripting vulnerability in Ultimate Member plugin
prior to ...)
NOT-FOR-US: WordPress plugin ultimate-member
CVE-2018-0584 (IIJ SmartKey App for Android version 2.1.0 and earlier allows
remote ...)
- TODO: check
+ NOT-FOR-US: IIJ SmartKey
CVE-2018-0583 (Cross-site scripting vulnerability in ASUS RT-AC1200HP Firmware
...)
NOT-FOR-US: ASUS
CVE-2018-0582 (Cross-site scripting vulnerability in ASUS RT-AC68U Firmware
version ...)
@@ -34718,31 +34718,31 @@ CVE-2018-0577 (Cross-site scripting vulnerability in
WP Google Map Plugin prior
CVE-2018-0576 (Cross-site scripting vulnerability in Events Manager plugin
prior to ...)
NOT-FOR-US: WordPress plugin events-manager
CVE-2018-0575 (baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS
3.0.15 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0574 (Cross-site scripting vulnerability in baserCMS (baserCMS
4.1.0.1 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0573 (baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS
3.0.15 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0572 (baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS
3.0.15 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0571 (baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS
3.0.15 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0570 (Cross-site scripting vulnerability in baserCMS (baserCMS
4.1.0.1 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0569 (baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS
3.0.15 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0568 (Unrestricted file upload vulnerability in SiteBridge Inc.
Joruri Gw ...)
NOT-FOR-US: Joruri Gw
CVE-2018-0567 (Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers
to ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0566 (Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers
to ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0565 (Cross-site scripting vulnerability in Cybozu Office 10.0.0 to
10.8.0 ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0564 (Session fixation vulnerability in EC-CUBE (EC-CUBE 3.0.0,
EC-CUBE ...)
NOT-FOR-US: EC-CUBE
CVE-2018-0563 (Untrusted search path vulnerability in the installer of FLET'S
VIRUS ...)
- TODO: check
+ NOT-FOR-US: FLET
CVE-2018-0562 (Untrusted search path vulnerability in Installer of SoundEngine
Free ...)
NOT-FOR-US: Installer of SoundEngine Free
CVE-2018-0561 (Untrusted search path vulnerability in The installer of
PhishWall ...)
@@ -34750,11 +34750,11 @@ CVE-2018-0561 (Untrusted search path vulnerability in
The installer of PhishWall
CVE-2018-0560 (Hatena Bookmark App for iOS Version 3.0 to 3.70 allows remote
...)
NOT-FOR-US: Hatena Bookmark App for iOS
CVE-2018-0559 (Cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to
5.4.1 ...)
- TODO: check
+ NOT-FOR-US: Cybozu Mailwise
CVE-2018-0558 (Reflected cross-site scripting vulnerability in Cybozu Mailwise
5.0.0 ...)
- TODO: check
+ NOT-FOR-US: Cybozu Mailwise
CVE-2018-0557 (Stored cross-site scripting vulnerability in Cybozu Mailwise
5.0.0 to ...)
- TODO: check
+ NOT-FOR-US: Cybozu Mailwise
CVE-2018-0556 (Buffalo WZR-1750DHP2 Ver.2.30 and earlier allows an attacker to
...)
NOT-FOR-US: Buffalo WZR-1750DHP2
CVE-2018-0555 (Buffer overflow in Buffalo WZR-1750DHP2 Ver.2.30 and earlier
allows an ...)
@@ -34810,13 +34810,13 @@ CVE-2018-0531 (Cybozu Garoon 3.0.0 to 4.2.6 allows
remote authenticated attacker
CVE-2018-0530 (SQL injection vulnerability in the Cybozu Garoon 3.5.0 to 4.2.6
allows ...)
NOT-FOR-US: Cybozu Garoon
CVE-2018-0529 (Cybozu Office 10.0.0 to 10.7.0 allows remote attackers to cause
a ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0528 (Cybozu Office 10.0.0 to 10.7.0 allows authenticated attackers
to ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0527 (Cross-site scripting vulnerability in Cybozu Office 10.0.0 to
10.7.0 ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0526 (Cybozu Office 10.0.0 to 10.7.0 allow remote attackers to
display an ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0525 (Directory traversal vulnerability in Jubatus 1.0.2 and earlier
allows ...)
- jubatus <itp> (bug #704100)
CVE-2018-0524 (Jubatus 1.0.2 and earlier allows remote code execution via
unspecified ...)
@@ -35277,11 +35277,11 @@ CVE-2018-0375
CVE-2018-0374
RESERVED
CVE-2018-0373 (A vulnerability in vpnva-6.sys for 32-bit Windows and
vpnva64-6.sys for ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0372
RESERVED
CVE-2018-0371 (A vulnerability in the Web Admin Interface of Cisco Meeting
Server ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0370
RESERVED
CVE-2018-0369
@@ -35293,21 +35293,21 @@ CVE-2018-0367
CVE-2018-0366
RESERVED
CVE-2018-0365 (A vulnerability in the web-based management interface of Cisco
...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0364 (A vulnerability in the web-based management interface of Cisco
Unified ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0363 (A vulnerability in the web-based management interface of Cisco
Unified ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0362 (A vulnerability in BIOS authentication management of Cisco 5000
Series ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0361
RESERVED
CVE-2018-0360
RESERVED
CVE-2018-0359 (A vulnerability in the session identification management
functionality ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0358 (A vulnerability in the file descriptor handling of Cisco
TelePresence ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0357 (A vulnerability in the web framework of Cisco WebEx could allow
an ...)
NOT-FOR-US: Cisco
CVE-2018-0356 (A vulnerability in the web framework of Cisco WebEx could allow
an ...)
@@ -35349,7 +35349,7 @@ CVE-2018-0339 (A vulnerability in the web-based
management interface of Cisco Id
CVE-2018-0338 (A vulnerability in the role-based access-checking mechanisms of
Cisco ...)
NOT-FOR-US: Cisco
CVE-2018-0337 (A vulnerability in the role-based access-checking mechanisms of
Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0336 (A vulnerability in the batch provisioning feature of Cisco
Prime ...)
NOT-FOR-US: Cisco
CVE-2018-0335 (A vulnerability in the web portal authentication process of
Cisco Prime ...)
@@ -35359,13 +35359,13 @@ CVE-2018-0334 (A vulnerability in the certificate
management subsystem of Cisco
CVE-2018-0333 (A vulnerability in the VPN configuration management of Cisco
FireSIGHT ...)
NOT-FOR-US: Cisco
CVE-2018-0332 (A vulnerability in the Session Initiation Protocol (SIP)
ingress packet ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0331 (A vulnerability in the Cisco Discovery Protocol (formerly known
as CDP) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0330 (A vulnerability in the NX-API management application
programming ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0329 (A vulnerability in the default configuration of the Simple
Network ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0328 (A vulnerability in the web framework of Cisco Unified
Communications ...)
NOT-FOR-US: Cisco
CVE-2018-0327 (A vulnerability in the web framework of Cisco Identity Services
Engine ...)
@@ -35379,69 +35379,69 @@ CVE-2018-0324 (A vulnerability in the CLI of Cisco
Enterprise NFV Infrastructure
CVE-2018-0323 (A vulnerability in the web management interface of Cisco
Enterprise NFV ...)
NOT-FOR-US: Cisco
CVE-2018-0322 (A vulnerability in the web management interface of Cisco Prime
...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0321 (A vulnerability in Cisco Prime Collaboration Provisioning (PCP)
could ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0320 (A vulnerability in the web framework code of Cisco Prime
Collaboration ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0319 (A vulnerability in the password recovery function of Cisco
Prime ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0318 (A vulnerability in the password reset function of Cisco Prime
...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0317 (A vulnerability in the web interface of Cisco Prime
Collaboration ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0316 (A vulnerability in the Session Initiation Protocol (SIP)
call-handling ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0315 (A vulnerability in the authentication, authorization, and
accounting ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0314 (A vulnerability in the Cisco Fabric Services (CFS) component of
Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0313 (A vulnerability in the NX-API feature of Cisco NX-OS Software
could ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0312 (A vulnerability in the Cisco Fabric Services component of Cisco
FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0311 (A vulnerability in the Cisco Fabric Services component of Cisco
FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0310 (A vulnerability in the Cisco Fabric Services component of Cisco
FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0309 (A vulnerability in the implementation of a specific CLI command
and the ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0308 (A vulnerability in the Cisco Fabric Services component of Cisco
FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0307 (A vulnerability in the CLI of Cisco NX-OS Software could allow
an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0306 (A vulnerability in the CLI parser of Cisco NX-OS Software could
allow ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0305 (A vulnerability in the Cisco Fabric Services component of Cisco
FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0304 (A vulnerability in the Cisco Fabric Services component of Cisco
FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0303 (A vulnerability in the Cisco Discovery Protocol component of
Cisco FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0302 (A vulnerability in the CLI parser of Cisco FXOS Software and
Cisco UCS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0301 (A vulnerability in the NX-API feature of Cisco NX-OS Software
could ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0300 (A vulnerability in the process of uploading new application
images to ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0299 (A vulnerability in the Simple Network Management Protocol
(SNMP) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0298 (A vulnerability in the web UI of Cisco FXOS and Cisco UCS
Fabric ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0297 (A vulnerability in the detection engine of Cisco Firepower
Threat ...)
NOT-FOR-US: Cisco
CVE-2018-0296 (A vulnerability in the web interface of the Cisco Adaptive
Security ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0295 (A vulnerability in the Border Gateway Protocol (BGP)
implementation of ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0294 (A vulnerability in the write-erase feature of Cisco FXOS
Software and ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0293 (A vulnerability in role-based access control (RBAC) for Cisco
NX-OS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0292 (A vulnerability in the Internet Group Management Protocol
(IGMP) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0291 (A vulnerability in the Simple Network Management Protocol
(SNMP) input ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0290 (A vulnerability in the TCP stack of Cisco SocialMiner could
allow an ...)
NOT-FOR-US: Cisco
CVE-2018-0289 (A vulnerability in the logs component of Cisco Identity
Services Engine ...)
@@ -35475,7 +35475,7 @@ CVE-2018-0276 (A vulnerability in Cisco WebEx Connect
IM could allow an ...)
CVE-2018-0275 (A vulnerability in the support tunnel feature of Cisco Identity
...)
NOT-FOR-US: Cisco
CVE-2018-0274 (A vulnerability in the CLI parser of Cisco Network Services ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0273 (A vulnerability in the IPsec Manager of Cisco StarOS for Cisco
...)
NOT-FOR-US: Cisco
CVE-2018-0272 (A vulnerability in the Secure Sockets Layer (SSL) Engine of
Cisco ...)
@@ -35497,7 +35497,7 @@ CVE-2018-0265
CVE-2018-0264 (A vulnerability in the Cisco WebEx Network Recording Player for
...)
NOT-FOR-US: Cisco
CVE-2018-0263 (A vulnerability in Cisco Meeting Server (CMS) could allow an
...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0262 (A vulnerability in Cisco Meeting Server could allow an
unauthenticated, ...)
NOT-FOR-US: Cisco
CVE-2018-0261
@@ -35573,7 +35573,7 @@ CVE-2018-0227 (A vulnerability in the Secure Sockets
Layer (SSL) Virtual Private
CVE-2018-0226 (A vulnerability in the assignment and management of default
user ...)
NOT-FOR-US: Cisco
CVE-2018-0225 (The Enterprise Console in Cisco AppDynamics App iQ Platform
before ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0224 (A vulnerability in the CLI of the Cisco StarOS operating system
for ...)
NOT-FOR-US: Cisco
CVE-2018-0223 (A vulnerability in DesktopServlet in the web-based management
interface ...)
@@ -35735,7 +35735,7 @@ CVE-2018-0151 (A vulnerability in the quality of
service (QoS) subsystem of Cisc
CVE-2018-0150 (A vulnerability in Cisco IOS XE Software could allow an ...)
NOT-FOR-US: Cisco
CVE-2018-0149 (A vulnerability in the web-based management interface of Cisco
...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0148 (A vulnerability in the web-based management interface of Cisco
UCS ...)
NOT-FOR-US: Cisco
CVE-2018-0147 (A vulnerability in Java deserialization used by Cisco Secure
Access ...)
@@ -36695,7 +36695,7 @@ CVE-2017-16861 (It was possible for double OGNL
evaluation in certain redirect a
CVE-2017-16860 (The invalidRedirectUrl template in Atlassian Application Links
before ...)
NOT-FOR-US: Atlassian
CVE-2017-16859 (The review attachment resource in Atlassian Fisheye and
Crucible ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2017-16858 (The 'crowd-application' plugin module (notably used by the
Google Apps ...)
NOT-FOR-US: 'crowd-application' plugin module in Atlassian Crowd
CVE-2017-16857 (It is possible to bypass the bitbucket auto-unapprove plugin
via ...)
@@ -37075,7 +37075,7 @@ CVE-2017-16728 (An Untrusted Pointer Dereference issue
was discovered in Advante
CVE-2017-16727 (A Credentials Management issue was discovered in Moxa NPort
W2150A ...)
NOT-FOR-US: Moxa
CVE-2017-16726 (Beckhoff TwinCAT supports communication over ADS. ADS is a
protocol ...)
- TODO: check
+ NOT-FOR-US: Beckhoff TwinCAT
CVE-2017-16725 (A Stack-based Buffer Overflow issue was discovered in Xiongmai
...)
NOT-FOR-US: Xiongmai Technology IP Cameras and DVRs
CVE-2017-16724 (A Stack-based Buffer Overflow issue was discovered in
Advantech ...)
@@ -37091,7 +37091,7 @@ CVE-2017-16720 (A Path Traversal issue was discovered
in WebAccess versions prio
CVE-2017-16719 (An Injection issue was discovered in Moxa NPort 5110 Version
2.2, NPort ...)
NOT-FOR-US: Moxa
CVE-2017-16718 (Beckhoff TwinCAT 3 supports communication over ADS. ADS is a
protocol ...)
- TODO: check
+ NOT-FOR-US: Beckhoff TwinCAT
CVE-2017-16717 (A Heap-based Buffer Overflow issue was discovered in WECON
LeviStudio ...)
NOT-FOR-US: WECON LeviStudio HMI
CVE-2017-16716 (A SQL Injection issue was discovered in WebAccess versions
prior to ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f5c3cfb4b1f5750eb27d387a09583d646330706c
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f5c3cfb4b1f5750eb27d387a09583d646330706c
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
