Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
42ba9559 by Moritz Muehlenhoff at 2019-09-11T16:42:29Z
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3009,7 +3009,7 @@ CVE-2019-15104 (An issue was discovered in Zoho
ManageEngine OpManager through 1
CVE-2019-15103
RESERVED
CVE-2019-15102 (An issue was discovered in Tyto Sahi Pro 6.x through 8.0.0.
TestRunner ...)
- TODO: check
+ NOT-FOR-US: Tyto Sahi Pro
CVE-2019-15101
RESERVED
CVE-2019-15100
@@ -6026,7 +6026,7 @@ CVE-2019-14280 (In some circumstances, Craft 2 before
2.7.10 and 3 before 3.2.6
CVE-2019-14279
RESERVED
CVE-2019-14278 (In Knowage through 6.1.1, an unauthenticated user can
enumerated valid ...)
- TODO: check
+ NOT-FOR-US: Knowage
CVE-2019-14277 (** DISPUTED ** Axway SecureTransport 5.x through 5.3 (or 5.x
through 5 ...)
NOT-FOR-US: Axway SecureTransport
CVE-2019-14276
@@ -6083,9 +6083,9 @@ CVE-2019-14260 (On the Alcatel-Lucent Enterprise (ALE)
8008 Cloud Edition Deskph
CVE-2019-14259 (On the Polycom Obihai Obi1022 VoIP phone with firmware 5.1.11,
a comma ...)
NOT-FOR-US: Polycom Obihai Obi1022 VoIP phone
CVE-2019-14258 (The XML-RPC subsystem in Zenoss 2.5.3 allows XXE attacks that
lead to ...)
- TODO: check
+ - zenoss <itp> (bug #361253)
CVE-2019-14257 (pyraw in Zenoss 2.5.3 allows local privilege escalation by
modifying e ...)
- TODO: check
+ - zenoss <itp> (bug #361253)
CVE-2019-14256
RESERVED
CVE-2019-14255 (A Server Side Request Forgery (SSRF) vulnerability in go-camo
up to ve ...)
@@ -6182,11 +6182,11 @@ CVE-2019-14226
CVE-2019-14225
RESERVED
CVE-2019-14224 (An issue was discovered in Alfresco Community Edition 5.2
201707. By l ...)
- TODO: check
+ NOT-FOR-US: Alfresco
CVE-2019-14223 (An issue was discovered in Alfresco Community Edition versions
below 5 ...)
- TODO: check
+ NOT-FOR-US: Alfresco
CVE-2019-14222 (An issue was discovered in Alfresco Community Edition versions
6.0 and ...)
- TODO: check
+ NOT-FOR-US: Alfresco
CVE-2019-14221 (1CRM On-Premise Software 8.5.7 allows XSS via a payload that
is mishan ...)
NOT-FOR-US: 1CRM On-Premise Software
CVE-2019-14220
@@ -6737,9 +6737,9 @@ CVE-2019-13978 (Ovidentia 8.4.3 has SQL Injection via the
id parameter in an ind
CVE-2019-13977 (index.php in Ovidentia 8.4.3 has XSS via tg=groups,
tg=maildoms&id ...)
NOT-FOR-US: Ovidentia
CVE-2019-13976 (eGain Chat 15.0.3 allows unrestricted file upload. ...)
- TODO: check
+ NOT-FOR-US: eGain Chat
CVE-2019-13975 (eGain Chat 15.0.3 allows HTML Injection. ...)
- TODO: check
+ NOT-FOR-US: eGain Chat
CVE-2019-13974 (LayerBB 1.1.3 allows conversations.php/cmd/new CSRF. ...)
NOT-FOR-US: LayerBB
CVE-2019-13973 (LayerBB 1.1.3 allows admin/general.php arbitrary file upload
because t ...)
@@ -7394,7 +7394,7 @@ CVE-2019-13658
CVE-2019-13657
RESERVED
CVE-2019-13656 (An access vulnerability in CA Common Services DIA of CA
Technologies C ...)
- TODO: check
+ NOT-FOR-US: CA Technologies Client Automation
CVE-2019-13655 (Imgix through 2019-06-19 allows remote attackers to cause a
denial of ...)
NOT-FOR-US: Imgix
CVE-2019-13654
@@ -8761,7 +8761,7 @@ CVE-2019-13524
CVE-2019-13523
RESERVED
CVE-2019-13522 (An attacker could use a specially crafted project file to
corrupt the ...)
- TODO: check
+ NOT-FOR-US: EZ PLC Editor
CVE-2019-13521
RESERVED
CVE-2019-13520 (Multiple buffer overflow issues have been identified in Alpha5
Smart L ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/42ba9559db43d793c6a0c42eda044d1a393c6827
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/42ba9559db43d793c6a0c42eda044d1a393c6827
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
