Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0126f3f1 by Salvatore Bonaccorso at 2020-02-20T09:15:43+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5193,7 +5193,7 @@ CVE-2020-6972
CVE-2020-6971
RESERVED
CVE-2020-6970 (A Heap-based Buffer Overflow was found in Emerson
OpenEnterprise SCADA ...)
- TODO: check
+ NOT-FOR-US: Emerson OpenEnterprise SCADA Server
CVE-2020-6969 (It is possible to unmask credentials and other sensitive
information o ...)
NOT-FOR-US: AutomationDirect
CVE-2020-6968
@@ -12033,11 +12033,11 @@ CVE-2020-3947
CVE-2020-3946
RESERVED
CVE-2020-3945 (vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1
and 6.6. ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2020-3944 (vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1
and 6.6. ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2020-3943 (vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1
and 6.6. ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2020-3942
RESERVED
CVE-2020-3941 (The repair operation of VMware Tools for Windows 10.x.y has a
race con ...)
@@ -14687,27 +14687,27 @@ CVE-2020-3165
CVE-2020-3164
RESERVED
CVE-2020-3163 (A vulnerability in the Live Data server of Cisco Unified
Contact Cente ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3162
RESERVED
CVE-2020-3161
RESERVED
CVE-2020-3160 (A vulnerability in the Extensible Messaging and Presence
Protocol (XMP ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3159 (A vulnerability in the web-based management interface of Cisco
Finesse ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3158 (A vulnerability in the High Availability (HA) service of Cisco
Smart S ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3157
RESERVED
CVE-2020-3156 (A vulnerability in the logging component of Cisco Identity
Services En ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3155
RESERVED
CVE-2020-3154 (A vulnerability in the web UI of Cisco Cloud Web Security (CWS)
could ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3153 (A vulnerability in the installer component of Cisco AnyConnect
Secure ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3152
RESERVED
CVE-2020-3151
@@ -14737,7 +14737,7 @@ CVE-2020-3140
CVE-2020-3139 (A vulnerability in the out of band (OOB) management interface
IP table ...)
NOT-FOR-US: Cisco
CVE-2020-3138 (A vulnerability in the upgrade component of Cisco Enterprise
NFV Infra ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3137
RESERVED
CVE-2020-3136 (A vulnerability in the web-based management interface of Cisco
Jabber ...)
@@ -14749,7 +14749,7 @@ CVE-2020-3134 (A vulnerability in the zip decompression
engine of Cisco AsyncOS
CVE-2020-3133
RESERVED
CVE-2020-3132 (A vulnerability in the email message scanning feature of Cisco
AsyncOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3131 (A vulnerability in the Cisco Webex Teams client for Windows
could allo ...)
NOT-FOR-US: Cisco
CVE-2020-3130
@@ -14789,11 +14789,11 @@ CVE-2020-3116
CVE-2020-3115 (A vulnerability in the CLI of the Cisco SD-WAN Solution vManage
softwa ...)
NOT-FOR-US: Cisco
CVE-2020-3114 (A vulnerability in the web-based management interface of Cisco
Data Ce ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3113 (A vulnerability in the web-based management interface of Cisco
Data Ce ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3112 (A vulnerability in the REST API endpoint of Cisco Data Center
Network ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-3111 (A vulnerability in the Cisco Discovery Protocol implementation
for the ...)
NOT-FOR-US: Cisco
CVE-2020-3110 (A vulnerability in the Cisco Discovery Protocol implementation
for the ...)
@@ -27410,7 +27410,7 @@ CVE-2019-17335 (The Data access layer component of
TIBCO Software Inc.'s TIBCO S
CVE-2019-17334 (The Visualizations component of TIBCO Software Inc.'s TIBCO
Spotfire A ...)
NOT-FOR-US: TIBCO
CVE-2019-17333 (The Web server component of TIBCO Software Inc.'s TIBCO EBX
contains a ...)
- TODO: check
+ NOT-FOR-US: TIBCO EBX
CVE-2019-17332 (The Digital Asset Manager Web Interface component of TIBCO
Software In ...)
NOT-FOR-US: TIBCO
CVE-2019-17331 (The Data Exchange Web Interface component of TIBCO Software
Inc.'s TIB ...)
@@ -38056,7 +38056,7 @@ CVE-2019-13948 (SyGuestBook A5 Version 1.2 allows
stored XSS because the isValid
CVE-2019-13947 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
NOT-FOR-US: Siemens
CVE-2019-13946 (A vulnerability has been identified in Development/Evaluation
Kits for ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2019-13945 (A vulnerability has been identified in SIMATIC S7-1200 CPU
family (inc ...)
NOT-FOR-US: Siemens
CVE-2019-13944 (A vulnerability has been identified in EN100 Ethernet module
DNP3 vari ...)
@@ -38066,9 +38066,9 @@ CVE-2019-13943 (A vulnerability has been identified in
EN100 Ethernet module DNP
CVE-2019-13942 (A vulnerability has been identified in EN100 Ethernet module
DNP3 vari ...)
NOT-FOR-US: Siemens
CVE-2019-13941 (A vulnerability has been identified in OZW672 (All versions
< V10.0 ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2019-13940 (A vulnerability has been identified in SIMATIC S7-1200 CPU
family (inc ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2019-13939 (A vulnerability has been identified in Nucleus NET (All
versions), Nuc ...)
NOT-FOR-US: Nucleus
CVE-2019-13938
@@ -38096,11 +38096,11 @@ CVE-2019-13928
CVE-2019-13927 (A vulnerability has been identified in Desigo PX automation
controller ...)
NOT-FOR-US: Siemens
CVE-2019-13926 (A vulnerability has been identified in SCALANCE S602 (All
versions > ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2019-13925 (A vulnerability has been identified in SCALANCE S602 (All
versions > ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2019-13924 (A vulnerability has been identified in SCALANCE X-200 switch
family (i ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2019-13923 (A vulnerability has been identified in IE/WSN-PA Link
WirelessHART Gat ...)
NOT-FOR-US: Siemens
CVE-2019-13922 (A vulnerability has been identified in SINEMA Remote Connect
Server (A ...)
@@ -237081,13 +237081,13 @@ CVE-2014-9611 (Netsweeper before 4.0.5 allows
remote attackers to bypass authent
CVE-2014-9610 (Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before
4.1.2 a ...)
NOT-FOR-US: Netsweeper
CVE-2014-9609 (Directory traversal vulnerability in
webadmin/reporter/view_server_log ...)
- TODO: check
+ NOT-FOR-US: Netsweeper
CVE-2014-9608 (Cross-site scripting (XSS) vulnerability in
webadmin/policy/group_tabl ...)
- TODO: check
+ NOT-FOR-US: Netsweeper
CVE-2014-9607 (Cross-site scripting (XSS) vulnerability in
remotereporter/load_logfil ...)
- TODO: check
+ NOT-FOR-US: Netsweeper
CVE-2014-9606 (Multiple cross-site scripting (XSS) vulnerabilities in
Netsweeper befo ...)
- TODO: check
+ NOT-FOR-US: Netsweeper
CVE-2014-9605 (WebUpgrade in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and
4.1.x ...)
NOT-FOR-US: Netsweeper
CVE-2014-9604 (libavcodec/utvideodec.c in FFmpeg before 2.5.2 does not check
for a ze ...)
@@ -238275,7 +238275,7 @@ CVE-2015-0751 (Cisco IP Phone 7861, when firmware
from Cisco Unified Communicati
CVE-2015-0750 (The administrative web interface in Cisco Hosted Collaboration
Solutio ...)
NOT-FOR-US: Cisco
CVE-2015-0749 (A vulnerability in Cisco Unified Communications Manager could
allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-0748
RESERVED
CVE-2015-0747 (Cisco Conductor for Videoscape 3.0 and Cisco Headend System
Release al ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0126f3f1a9b36934ddc8d86869bf11d01da25949
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0126f3f1a9b36934ddc8d86869bf11d01da25949
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
