Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3fcdb510 by Salvatore Bonaccorso at 2019-10-09T20:33:08Z
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -54,31 +54,31 @@ CVE-2019-17382 (An issue was discovered in
zabbix.php?action=dashboard.view&
CVE-2019-17381
RESERVED
CVE-2019-17380 (cPanel before 82.0.15 allows self XSS in the WHM Update
Preferences in ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17379 (cPanel before 82.0.15 allows self stored XSS in the WHM SSL
Storage Ma ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17378 (cPanel before 82.0.15 allows self XSS in the SSL Key Delete
interface ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17377 (cPanel before 82.0.15 allows self XSS in LiveAPI example
scripts (SEC- ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17376 (cPanel before 82.0.15 allows self XSS in the SSL Certificate
Upload in ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17375 (cPanel before 82.0.15 allows API token credentials to persist
after an ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17374
RESERVED
CVE-2019-17373 (Certain NETGEAR devices allow unauthenticated access to
critical .cgi ...)
- TODO: check
+ NOT-FOR-US: NETGEAR
CVE-2019-17372 (Certain NETGEAR devices allow remote attackers to disable all
authenti ...)
- TODO: check
+ NOT-FOR-US: NETGEAR
CVE-2019-17371 (libpng 1.6.37 has memory leaks in png_malloc_warn and
png_create_info_ ...)
TODO: check
CVE-2019-17370 (OTCMS v3.85 allows arbitrary PHP Code Execution because
admin/sysCheck ...)
- TODO: check
+ NOT-FOR-US: OTCMS
CVE-2019-17369 (OTCMS v3.85 has CSRF in the admin/member_deal.php Admin Panel
page, le ...)
- TODO: check
+ NOT-FOR-US: OTCMS
CVE-2019-17368 (S-CMS v1.5 has XSS in tpl.php via the member/member_login.php
from par ...)
- TODO: check
+ NOT-FOR-US: S-CMS
CVE-2019-17367
RESERVED
CVE-2019-17366
@@ -112,9 +112,9 @@ CVE-2019-17356
CVE-2019-17355
RESERVED
CVE-2019-17354 (wan.htm page on Zyxel NBG-418N v2 with firmware version
V1.00(AARP.9)C ...)
- TODO: check
+ NOT-FOR-US: Zyxel
CVE-2019-17353 (An issue discovered on D-Link DIR-615 devices with firmware
version 20 ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2019-17352 (In JFinal cos before 2019-08-13, as used in JFinal 4.4, there
is a vul ...)
TODO: check
CVE-2019-17339
@@ -561,7 +561,7 @@ CVE-2019-17133 (In the Linux kernel through 5.3.2,
cfg80211_mgd_wext_giwessid in
CVE-2019-17129
RESERVED
CVE-2019-17128 (Netreo OmniCenter through 12.1.1 allows unauthenticated SQL
Injection ...)
- TODO: check
+ NOT-FOR-US: Netreo OmniCenter
CVE-2019-17127
RESERVED
CVE-2019-17126
@@ -569,7 +569,7 @@ CVE-2019-17126
CVE-2019-17125
RESERVED
CVE-2019-17124 (Kramer VIAware 2.5.0719.1034 has Incorrect Access Control. ...)
- TODO: check
+ NOT-FOR-US: Kramer VIAware
CVE-2019-17123
RESERVED
CVE-2019-17122
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/3fcdb51086541c915ea7e2b8280e4c20cb6d3609
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/3fcdb51086541c915ea7e2b8280e4c20cb6d3609
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
