Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5fa7d6d2 by security tracker role at 2020-11-13T08:10:22+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,475 @@
+CVE-2021-1125
+ RESERVED
+CVE-2021-1124
+ RESERVED
+CVE-2021-1123
+ RESERVED
+CVE-2021-1122
+ RESERVED
+CVE-2021-1121
+ RESERVED
+CVE-2021-1120
+ RESERVED
+CVE-2021-1119
+ RESERVED
+CVE-2021-1118
+ RESERVED
+CVE-2021-1117
+ RESERVED
+CVE-2021-1116
+ RESERVED
+CVE-2021-1115
+ RESERVED
+CVE-2021-1114
+ RESERVED
+CVE-2021-1113
+ RESERVED
+CVE-2021-1112
+ RESERVED
+CVE-2021-1111
+ RESERVED
+CVE-2021-1110
+ RESERVED
+CVE-2021-1109
+ RESERVED
+CVE-2021-1108
+ RESERVED
+CVE-2021-1107
+ RESERVED
+CVE-2021-1106
+ RESERVED
+CVE-2021-1105
+ RESERVED
+CVE-2021-1104
+ RESERVED
+CVE-2021-1103
+ RESERVED
+CVE-2021-1102
+ RESERVED
+CVE-2021-1101
+ RESERVED
+CVE-2021-1100
+ RESERVED
+CVE-2021-1099
+ RESERVED
+CVE-2021-1098
+ RESERVED
+CVE-2021-1097
+ RESERVED
+CVE-2021-1096
+ RESERVED
+CVE-2021-1095
+ RESERVED
+CVE-2021-1094
+ RESERVED
+CVE-2021-1093
+ RESERVED
+CVE-2021-1092
+ RESERVED
+CVE-2021-1091
+ RESERVED
+CVE-2021-1090
+ RESERVED
+CVE-2021-1089
+ RESERVED
+CVE-2021-1088
+ RESERVED
+CVE-2021-1087
+ RESERVED
+CVE-2021-1086
+ RESERVED
+CVE-2021-1085
+ RESERVED
+CVE-2021-1084
+ RESERVED
+CVE-2021-1083
+ RESERVED
+CVE-2021-1082
+ RESERVED
+CVE-2021-1081
+ RESERVED
+CVE-2021-1080
+ RESERVED
+CVE-2021-1079
+ RESERVED
+CVE-2021-1078
+ RESERVED
+CVE-2021-1077
+ RESERVED
+CVE-2021-1076
+ RESERVED
+CVE-2021-1075
+ RESERVED
+CVE-2021-1074
+ RESERVED
+CVE-2021-1073
+ RESERVED
+CVE-2021-1072
+ RESERVED
+CVE-2021-1071
+ RESERVED
+CVE-2021-1070
+ RESERVED
+CVE-2021-1069
+ RESERVED
+CVE-2021-1068
+ RESERVED
+CVE-2021-1067
+ RESERVED
+CVE-2021-1066
+ RESERVED
+CVE-2021-1065
+ RESERVED
+CVE-2021-1064
+ RESERVED
+CVE-2021-1063
+ RESERVED
+CVE-2021-1062
+ RESERVED
+CVE-2021-1061
+ RESERVED
+CVE-2021-1060
+ RESERVED
+CVE-2021-1059
+ RESERVED
+CVE-2021-1058
+ RESERVED
+CVE-2021-1057
+ RESERVED
+CVE-2021-1056
+ RESERVED
+CVE-2021-1055
+ RESERVED
+CVE-2021-1054
+ RESERVED
+CVE-2021-1053
+ RESERVED
+CVE-2021-1052
+ RESERVED
+CVE-2021-1051
+ RESERVED
+CVE-2020-28576
+ RESERVED
+CVE-2020-28575
+ RESERVED
+CVE-2020-28574
+ RESERVED
+CVE-2020-28573
+ RESERVED
+CVE-2020-28572
+ RESERVED
+CVE-2020-28571
+ RESERVED
+CVE-2020-28570
+ RESERVED
+CVE-2020-28569
+ RESERVED
+CVE-2020-28568
+ RESERVED
+CVE-2020-28567
+ RESERVED
+CVE-2020-28566
+ RESERVED
+CVE-2020-28565
+ RESERVED
+CVE-2020-28564
+ RESERVED
+CVE-2020-28563
+ RESERVED
+CVE-2020-28562
+ RESERVED
+CVE-2020-28561
+ RESERVED
+CVE-2020-28560
+ RESERVED
+CVE-2020-28559
+ RESERVED
+CVE-2020-28558
+ RESERVED
+CVE-2020-28557
+ RESERVED
+CVE-2020-28556
+ RESERVED
+CVE-2020-28555
+ RESERVED
+CVE-2020-28554
+ RESERVED
+CVE-2020-28553
+ RESERVED
+CVE-2020-28552
+ RESERVED
+CVE-2020-28551
+ RESERVED
+CVE-2020-28550
+ RESERVED
+CVE-2020-28549
+ RESERVED
+CVE-2020-28548
+ RESERVED
+CVE-2020-28547
+ RESERVED
+CVE-2020-28546
+ RESERVED
+CVE-2020-28545
+ RESERVED
+CVE-2020-28544
+ RESERVED
+CVE-2020-28543
+ RESERVED
+CVE-2020-28542
+ RESERVED
+CVE-2020-28541
+ RESERVED
+CVE-2020-28540
+ RESERVED
+CVE-2020-28539
+ RESERVED
+CVE-2020-28538
+ RESERVED
+CVE-2020-28537
+ RESERVED
+CVE-2020-28536
+ RESERVED
+CVE-2020-28535
+ RESERVED
+CVE-2020-28534
+ RESERVED
+CVE-2020-28533
+ RESERVED
+CVE-2020-28532
+ RESERVED
+CVE-2020-28531
+ RESERVED
+CVE-2020-28530
+ RESERVED
+CVE-2020-28529
+ RESERVED
+CVE-2020-28528
+ RESERVED
+CVE-2020-28527
+ RESERVED
+CVE-2020-28526
+ RESERVED
+CVE-2020-28525
+ RESERVED
+CVE-2020-28524
+ RESERVED
+CVE-2020-28523
+ RESERVED
+CVE-2020-28522
+ RESERVED
+CVE-2020-28521
+ RESERVED
+CVE-2020-28520
+ RESERVED
+CVE-2020-28519
+ RESERVED
+CVE-2020-28518
+ RESERVED
+CVE-2020-28517
+ RESERVED
+CVE-2020-28516
+ RESERVED
+CVE-2020-28515
+ RESERVED
+CVE-2020-28514
+ RESERVED
+CVE-2020-28513
+ RESERVED
+CVE-2020-28512
+ RESERVED
+CVE-2020-28511
+ RESERVED
+CVE-2020-28510
+ RESERVED
+CVE-2020-28509
+ RESERVED
+CVE-2020-28508
+ RESERVED
+CVE-2020-28507
+ RESERVED
+CVE-2020-28506
+ RESERVED
+CVE-2020-28505
+ RESERVED
+CVE-2020-28504
+ RESERVED
+CVE-2020-28503
+ RESERVED
+CVE-2020-28502
+ RESERVED
+CVE-2020-28501
+ RESERVED
+CVE-2020-28500
+ RESERVED
+CVE-2020-28499
+ RESERVED
+CVE-2020-28498
+ RESERVED
+CVE-2020-28497
+ RESERVED
+CVE-2020-28496
+ RESERVED
+CVE-2020-28495
+ RESERVED
+CVE-2020-28494
+ RESERVED
+CVE-2020-28493
+ RESERVED
+CVE-2020-28492
+ RESERVED
+CVE-2020-28491
+ RESERVED
+CVE-2020-28490
+ RESERVED
+CVE-2020-28489
+ RESERVED
+CVE-2020-28488
+ RESERVED
+CVE-2020-28487
+ RESERVED
+CVE-2020-28486
+ RESERVED
+CVE-2020-28485
+ RESERVED
+CVE-2020-28484
+ RESERVED
+CVE-2020-28483
+ RESERVED
+CVE-2020-28482
+ RESERVED
+CVE-2020-28481
+ RESERVED
+CVE-2020-28480
+ RESERVED
+CVE-2020-28479
+ RESERVED
+CVE-2020-28478
+ RESERVED
+CVE-2020-28477
+ RESERVED
+CVE-2020-28476
+ RESERVED
+CVE-2020-28475
+ RESERVED
+CVE-2020-28474
+ RESERVED
+CVE-2020-28473
+ RESERVED
+CVE-2020-28472
+ RESERVED
+CVE-2020-28471
+ RESERVED
+CVE-2020-28470
+ RESERVED
+CVE-2020-28469
+ RESERVED
+CVE-2020-28468
+ RESERVED
+CVE-2020-28467
+ RESERVED
+CVE-2020-28466
+ RESERVED
+CVE-2020-28465
+ RESERVED
+CVE-2020-28464
+ RESERVED
+CVE-2020-28463
+ RESERVED
+CVE-2020-28462
+ RESERVED
+CVE-2020-28461
+ RESERVED
+CVE-2020-28460
+ RESERVED
+CVE-2020-28459
+ RESERVED
+CVE-2020-28458
+ RESERVED
+CVE-2020-28457
+ RESERVED
+CVE-2020-28456
+ RESERVED
+CVE-2020-28455
+ RESERVED
+CVE-2020-28454
+ RESERVED
+CVE-2020-28453
+ RESERVED
+CVE-2020-28452
+ RESERVED
+CVE-2020-28451
+ RESERVED
+CVE-2020-28450
+ RESERVED
+CVE-2020-28449
+ RESERVED
+CVE-2020-28448
+ RESERVED
+CVE-2020-28447
+ RESERVED
+CVE-2020-28446
+ RESERVED
+CVE-2020-28445
+ RESERVED
+CVE-2020-28444
+ RESERVED
+CVE-2020-28443
+ RESERVED
+CVE-2020-28442
+ RESERVED
+CVE-2020-28441
+ RESERVED
+CVE-2020-28440
+ RESERVED
+CVE-2020-28439
+ RESERVED
+CVE-2020-28438
+ RESERVED
+CVE-2020-28437
+ RESERVED
+CVE-2020-28436
+ RESERVED
+CVE-2020-28435
+ RESERVED
+CVE-2020-28434
+ RESERVED
+CVE-2020-28433
+ RESERVED
+CVE-2020-28432
+ RESERVED
+CVE-2020-28431
+ RESERVED
+CVE-2020-28430
+ RESERVED
+CVE-2020-28429
+ RESERVED
+CVE-2020-28428
+ RESERVED
+CVE-2020-28427
+ RESERVED
+CVE-2020-28426
+ RESERVED
+CVE-2020-28425
+ RESERVED
+CVE-2020-28424
+ RESERVED
+CVE-2020-28423
+ RESERVED
+CVE-2020-28422
+ RESERVED
+CVE-2020-28421
+ RESERVED
+CVE-2020-28420
+ RESERVED
+CVE-2020-28419
+ RESERVED
+CVE-2020-28418
+ RESERVED
+CVE-2020-28417
+ RESERVED
+CVE-2020-28416
+ RESERVED
CVE-2020-25710 [assertion failure in CSN normalization with invalid input]
RESERVED
- openldap 2.4.56+dfsg-1
@@ -8,10 +480,10 @@ CVE-2020-25709 [assertion failure in Certificate List
syntax validation]
- openldap 2.4.56+dfsg-1
NOTE: https://bugs.openldap.org/show_bug.cgi?id=9383
NOTE:
https://git.openldap.org/openldap/openldap/-/commit/67670f4544e28fb09eb7319c39f404e1d3229e65
(OPENLDAP_REL_ENG_2_4_56)
-CVE-2020-28415
- RESERVED
-CVE-2020-28414
- RESERVED
+CVE-2020-28415 (A reflected cross-site scripting (XSS) vulnerability exists in
the Tra ...)
+ TODO: check
+CVE-2020-28414 (A reflected cross-site scripting (XSS) vulnerability exists in
the Tra ...)
+ TODO: check
CVE-2020-28413
RESERVED
CVE-2020-28412
@@ -4690,8 +5162,8 @@ CVE-2020-27195 (HashiCorp Nomad and Nomad Enterprise
version 0.9.0 up to 0.12.5
- nomad <unfixed> (bug #972795)
NOTE: https://github.com/hashicorp/nomad/issues/9129
NOTE:
https://github.com/hashicorp/nomad/commit/a8ea7c5f421297db434b45046fca7a9deef6df85
(0.12.6)
-CVE-2020-27193
- RESERVED
+CVE-2020-27193 (A cross-site scripting (XSS) vulnerability in the Color Dialog
plugin ...)
+ TODO: check
CVE-2020-27192
RESERVED
CVE-2020-27191
@@ -5198,7 +5670,7 @@ CVE-2020-26951
RESERVED
CVE-2020-26950
RESERVED
- {DSA-4788-1 DLA-2448-1}
+ {DSA-4790-1 DSA-4788-1 DLA-2448-1}
- firefox 82.0.3-1
- firefox-esr 78.4.1esr-1
- thunderbird 1:78.4.2-1
@@ -7319,7 +7791,7 @@ CVE-2020-25968
RESERVED
CVE-2020-25967
RESERVED
-CVE-2020-25966 (Sectona Spectra before 3.4.0 has a vulnerable SOAP API
endpoint that l ...)
+CVE-2020-25966 (** DISPUTED ** Sectona Spectra before 3.4.0 has a vulnerable
SOAP API ...)
NOT-FOR-US: Sectona Spectra
CVE-2020-25965
RESERVED
@@ -9461,7 +9933,7 @@ CVE-2020-25073 (FreedomBox through 20.13 allows remote
attackers to obtain sensi
[stretch] - plinth <no-dsa> (Minor issue)
NOTE: https://salsa.debian.org/freedombox-team/freedombox/-/issues/1935
NOTE:
https://salsa.debian.org/freedombox-team/freedombox/-/commit/822c322d20d12f81c6cfca47b66f900542a5aac2
-CVE-2020-25068 (** DISPUTED ** Setelsa Conacwin v3.7.1.2 is vulnerable to a
local file ...)
+CVE-2020-25068 (Setelsa Conacwin v3.7.1.2 is vulnerable to a local file
inclusion vuln ...)
NOT-FOR-US: Setelsa Conacwin
CVE-2020-25067 (NETGEAR R8300 devices before 1.0.2.134 are affected by command
injecti ...)
NOT-FOR-US: Netgear
@@ -10203,8 +10675,8 @@ CVE-2020-24721 (An issue was discovered in the GAEN
(aka Google/Apple Exposure N
NOT-FOR-US: GAEN (Google Apple Encounter Notification) protocol
CVE-2020-24720
RESERVED
-CVE-2020-24719
- RESERVED
+CVE-2020-24719 (Exposed Erlang Cookie could lead to Remote Command Execution
(RCE) att ...)
+ TODO: check
CVE-2020-24718 (bhyve, as used in FreeBSD through 12.1 and illumos (e.g.,
OmniOS CE th ...)
NOT-FOR-US: bhyve
CVE-2020-24717 (OpenZFS before 2.0.0-rc1, when used on FreeBSD, misinterprets
group pe ...)
@@ -24808,8 +25280,8 @@ CVE-2020-17495 (django-celery-results through 1.2.1
stores task results in the d
- python-django-celery-results <unfixed> (bug #968305)
[buster] - python-django-celery-results <no-dsa> (Minor issue)
NOTE: https://github.com/celery/django-celery-results/issues/142
-CVE-2020-17494
- RESERVED
+CVE-2020-17494 (Untangle Firewall NG before 16.0 uses MD5 for passwords. ...)
+ TODO: check
CVE-2020-17493
RESERVED
CVE-2020-17492
@@ -25602,33 +26074,33 @@ CVE-2020-17115
RESERVED
CVE-2020-17114
RESERVED
-CVE-2020-17113 (, aka 'Windows Camera Codec Information Disclosure
Vulnerability'. ...)
+CVE-2020-17113 (Windows Camera Codec Information Disclosure Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2020-17112
RESERVED
CVE-2020-17111
RESERVED
-CVE-2020-17110 (, aka 'HEVC Video Extensions Remote Code Execution
Vulnerability'. Thi ...)
+CVE-2020-17110 (HEVC Video Extensions Remote Code Execution Vulnerability This
CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17109 (, aka 'HEVC Video Extensions Remote Code Execution
Vulnerability'. Thi ...)
+CVE-2020-17109 (HEVC Video Extensions Remote Code Execution Vulnerability This
CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17108 (, aka 'HEVC Video Extensions Remote Code Execution
Vulnerability'. Thi ...)
+CVE-2020-17108 (HEVC Video Extensions Remote Code Execution Vulnerability This
CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17107 (, aka 'HEVC Video Extensions Remote Code Execution
Vulnerability'. Thi ...)
+CVE-2020-17107 (HEVC Video Extensions Remote Code Execution Vulnerability This
CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17106 (, aka 'HEVC Video Extensions Remote Code Execution
Vulnerability'. Thi ...)
+CVE-2020-17106 (HEVC Video Extensions Remote Code Execution Vulnerability This
CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17105 (, aka 'AV1 Video Extension Remote Code Execution
Vulnerability'. ...)
+CVE-2020-17105 (AV1 Video Extension Remote Code Execution Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17104 (, aka 'Visual Studio Code JSHint Extension Remote Code
Execution Vulne ...)
+CVE-2020-17104 (Visual Studio Code JSHint Extension Remote Code Execution
Vulnerabilit ...)
NOT-FOR-US: Microsoft
CVE-2020-17103
RESERVED
-CVE-2020-17102 (, aka 'WebP Image Extensions Information Disclosure
Vulnerability'. ...)
+CVE-2020-17102 (WebP Image Extensions Information Disclosure Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17101 (, aka 'HEIF Image Extensions Remote Code Execution
Vulnerability'. ...)
+CVE-2020-17101 (HEIF Image Extensions Remote Code Execution Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17100 (, aka 'Visual Studio Tampering Vulnerability'. ...)
+CVE-2020-17100 (Visual Studio Tampering Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2020-17099
RESERVED
@@ -25646,231 +26118,231 @@ CVE-2020-17093
RESERVED
CVE-2020-17092
RESERVED
-CVE-2020-17091 (, aka 'Microsoft Teams Remote Code Execution Vulnerability'.
...)
+CVE-2020-17091 (Microsoft Teams Remote Code Execution Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17090 (, aka 'Microsoft Defender for Endpoint Security Feature Bypass
Vulnera ...)
+CVE-2020-17090 (Microsoft Defender for Endpoint Security Feature Bypass
Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2020-17089
RESERVED
-CVE-2020-17088 (, aka 'Windows Common Log File System Driver Elevation of
Privilege Vu ...)
+CVE-2020-17088 (Windows Common Log File System Driver Elevation of Privilege
Vulnerabi ...)
NOT-FOR-US: Microsoft
-CVE-2020-17087 (, aka 'Windows Kernel Local Elevation of Privilege
Vulnerability'. ...)
+CVE-2020-17087 (Windows Kernel Local Elevation of Privilege Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17086 (, aka 'Raw Image Extension Remote Code Execution
Vulnerability'. This ...)
+CVE-2020-17086 (Raw Image Extension Remote Code Execution Vulnerability This
CVE ID is ...)
NOT-FOR-US: Microsoft
-CVE-2020-17085 (, aka 'Microsoft Exchange Server Denial of Service
Vulnerability'. ...)
+CVE-2020-17085 (Microsoft Exchange Server Denial of Service Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17084 (, aka 'Microsoft Exchange Server Remote Code Execution
Vulnerability'. ...)
+CVE-2020-17084 (Microsoft Exchange Server Remote Code Execution Vulnerability
This CVE ...)
NOT-FOR-US: Microsoft
-CVE-2020-17083 (, aka 'Microsoft Exchange Server Remote Code Execution
Vulnerability'. ...)
+CVE-2020-17083 (Microsoft Exchange Server Remote Code Execution Vulnerability
This CVE ...)
NOT-FOR-US: Microsoft
-CVE-2020-17082 (, aka 'Raw Image Extension Remote Code Execution
Vulnerability'. This ...)
+CVE-2020-17082 (Raw Image Extension Remote Code Execution Vulnerability This
CVE ID is ...)
NOT-FOR-US: Microsoft
-CVE-2020-17081 (, aka 'Microsoft Raw Image Extension Information Disclosure
Vulnerabil ...)
+CVE-2020-17081 (Microsoft Raw Image Extension Information Disclosure
Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2020-17080
RESERVED
-CVE-2020-17079 (, aka 'Raw Image Extension Remote Code Execution
Vulnerability'. This ...)
+CVE-2020-17079 (Raw Image Extension Remote Code Execution Vulnerability This
CVE ID is ...)
NOT-FOR-US: Microsoft
-CVE-2020-17078 (, aka 'Raw Image Extension Remote Code Execution
Vulnerability'. This ...)
+CVE-2020-17078 (Raw Image Extension Remote Code Execution Vulnerability This
CVE ID is ...)
NOT-FOR-US: Microsoft
-CVE-2020-17077 (, aka 'Windows Update Stack Elevation of Privilege
Vulnerability'. ...)
+CVE-2020-17077 (Windows Update Stack Elevation of Privilege Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17076 (, aka 'Windows Update Orchestrator Service Elevation of
Privilege Vuln ...)
+CVE-2020-17076 (Windows Update Orchestrator Service Elevation of Privilege
Vulnerabili ...)
NOT-FOR-US: Microsoft
-CVE-2020-17075 (, aka 'Windows USO Core Worker Elevation of Privilege
Vulnerability'. ...)
+CVE-2020-17075 (Windows USO Core Worker Elevation of Privilege Vulnerability
...)
NOT-FOR-US: Microsoft
-CVE-2020-17074 (, aka 'Windows Update Orchestrator Service Elevation of
Privilege Vuln ...)
+CVE-2020-17074 (Windows Update Orchestrator Service Elevation of Privilege
Vulnerabili ...)
NOT-FOR-US: Microsoft
-CVE-2020-17073 (, aka 'Windows Update Orchestrator Service Elevation of
Privilege Vuln ...)
+CVE-2020-17073 (Windows Update Orchestrator Service Elevation of Privilege
Vulnerabili ...)
NOT-FOR-US: Microsoft
CVE-2020-17072
RESERVED
-CVE-2020-17071 (, aka 'Windows Delivery Optimization Information Disclosure
Vulnerabil ...)
+CVE-2020-17071 (Windows Delivery Optimization Information Disclosure
Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17070 (, aka 'Windows Update Medic Service Elevation of Privilege
Vulnerabili ...)
+CVE-2020-17070 (Windows Update Medic Service Elevation of Privilege
Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17069 (, aka 'Windows NDIS Information Disclosure Vulnerability'. ...)
+CVE-2020-17069 (Windows NDIS Information Disclosure Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17068 (, aka 'Windows GDI+ Remote Code Execution Vulnerability'. ...)
+CVE-2020-17068 (Windows GDI+ Remote Code Execution Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17067 (, aka 'Microsoft Excel Security Feature Bypass Vulnerability'.
...)
+CVE-2020-17067 (Microsoft Excel Security Feature Bypass Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17066 (, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
This CVE ...)
+CVE-2020-17066 (Microsoft Excel Remote Code Execution Vulnerability This CVE
ID is uni ...)
NOT-FOR-US: Microsoft
-CVE-2020-17065 (, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
This CVE ...)
+CVE-2020-17065 (Microsoft Excel Remote Code Execution Vulnerability This CVE
ID is uni ...)
NOT-FOR-US: Microsoft
-CVE-2020-17064 (, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
This CVE ...)
+CVE-2020-17064 (Microsoft Excel Remote Code Execution Vulnerability This CVE
ID is uni ...)
NOT-FOR-US: Microsoft
-CVE-2020-17063 (, aka 'Microsoft Office Online Spoofing Vulnerability'. ...)
+CVE-2020-17063 (Microsoft Office Online Spoofing Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17062 (, aka 'Microsoft Office Access Connectivity Engine Remote Code
Executi ...)
+CVE-2020-17062 (Microsoft Office Access Connectivity Engine Remote Code
Execution Vuln ...)
NOT-FOR-US: Microsoft
-CVE-2020-17061 (, aka 'Microsoft SharePoint Remote Code Execution
Vulnerability'. ...)
+CVE-2020-17061 (Microsoft SharePoint Remote Code Execution Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17060 (, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE
ID is un ...)
+CVE-2020-17060 (Microsoft SharePoint Spoofing Vulnerability This CVE ID is
unique from ...)
NOT-FOR-US: Microsoft
CVE-2020-17059
RESERVED
-CVE-2020-17058 (, aka 'Microsoft Browser Memory Corruption Vulnerability'. ...)
+CVE-2020-17058 (Microsoft Browser Memory Corruption Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17057 (, aka 'Windows Win32k Elevation of Privilege Vulnerability'.
...)
+CVE-2020-17057 (Windows Win32k Elevation of Privilege Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17056 (, aka 'Windows Network File System Information Disclosure
Vulnerabilit ...)
+CVE-2020-17056 (Windows Network File System Information Disclosure
Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17055 (, aka 'Windows Remote Access Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17055 (Windows Remote Access Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17054 (, aka 'Chakra Scripting Engine Memory Corruption
Vulnerability'. This ...)
+CVE-2020-17054 (Chakra Scripting Engine Memory Corruption Vulnerability This
CVE ID is ...)
NOT-FOR-US: Microsoft
-CVE-2020-17053 (, aka 'Internet Explorer Memory Corruption Vulnerability'. ...)
+CVE-2020-17053 (Internet Explorer Memory Corruption Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17052 (, aka 'Scripting Engine Memory Corruption Vulnerability'. ...)
+CVE-2020-17052 (Scripting Engine Memory Corruption Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17051 (, aka 'Windows Network File System Remote Code Execution
Vulnerability ...)
+CVE-2020-17051 (Windows Network File System Remote Code Execution
Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2020-17050
RESERVED
-CVE-2020-17049 (, aka 'Kerberos Security Feature Bypass Vulnerability'. ...)
+CVE-2020-17049 (Kerberos Security Feature Bypass Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17048 (, aka 'Chakra Scripting Engine Memory Corruption
Vulnerability'. This ...)
+CVE-2020-17048 (Chakra Scripting Engine Memory Corruption Vulnerability This
CVE ID is ...)
NOT-FOR-US: Microsoft
-CVE-2020-17047 (, aka 'Windows Network File System Denial of Service
Vulnerability'. ...)
+CVE-2020-17047 (Windows Network File System Denial of Service Vulnerability
...)
NOT-FOR-US: Microsoft
-CVE-2020-17046 (, aka 'Windows Error Reporting Denial of Service
Vulnerability'. ...)
+CVE-2020-17046 (Windows Error Reporting Denial of Service Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17045 (, aka 'Windows KernelStream Information Disclosure
Vulnerability'. ...)
+CVE-2020-17045 (Windows KernelStream Information Disclosure Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17044 (, aka 'Windows Remote Access Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17044 (Windows Remote Access Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17043 (, aka 'Windows Remote Access Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17043 (Windows Remote Access Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17042 (, aka 'Windows Print Spooler Remote Code Execution
Vulnerability'. ...)
+CVE-2020-17042 (Windows Print Spooler Remote Code Execution Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17041 (, aka 'Windows Print Configuration Elevation of Privilege
Vulnerabilit ...)
+CVE-2020-17041 (Windows Print Configuration Elevation of Privilege
Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17040 (, aka 'Windows Hyper-V Security Feature Bypass Vulnerability'.
...)
+CVE-2020-17040 (Windows Hyper-V Security Feature Bypass Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2020-17039
RESERVED
-CVE-2020-17038 (, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE
ID is un ...)
+CVE-2020-17038 (Win32k Elevation of Privilege Vulnerability This CVE ID is
unique from ...)
NOT-FOR-US: Microsoft
-CVE-2020-17037 (, aka 'Windows WalletService Elevation of Privilege
Vulnerability'. ...)
+CVE-2020-17037 (Windows WalletService Elevation of Privilege Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17036 (, aka 'Windows Function Discovery SSDP Provider Information
Disclosure ...)
+CVE-2020-17036 (Windows Function Discovery SSDP Provider Information
Disclosure Vulner ...)
NOT-FOR-US: Microsoft
-CVE-2020-17035 (, aka 'Windows Kernel Elevation of Privilege Vulnerability'.
...)
+CVE-2020-17035 (Windows Kernel Elevation of Privilege Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17034 (, aka 'Windows Remote Access Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17034 (Windows Remote Access Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17033 (, aka 'Windows Remote Access Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17033 (Windows Remote Access Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17032 (, aka 'Windows Remote Access Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17032 (Windows Remote Access Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17031 (, aka 'Windows Remote Access Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17031 (Windows Remote Access Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17030 (, aka 'Windows MSCTF Server Information Disclosure
Vulnerability'. ...)
+CVE-2020-17030 (Windows MSCTF Server Information Disclosure Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17029 (, aka 'Windows Canonical Display Driver Information Disclosure
Vulnera ...)
+CVE-2020-17029 (Windows Canonical Display Driver Information Disclosure
Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17028 (, aka 'Windows Remote Access Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17028 (Windows Remote Access Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17027 (, aka 'Windows Remote Access Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17027 (Windows Remote Access Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17026 (, aka 'Windows Remote Access Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17026 (Windows Remote Access Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17025 (, aka 'Windows Remote Access Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17025 (Windows Remote Access Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17024 (, aka 'Windows Client Side Rendering Print Provider Elevation
of Privi ...)
+CVE-2020-17024 (Windows Client Side Rendering Print Provider Elevation of
Privilege Vu ...)
NOT-FOR-US: Microsoft
CVE-2020-17023 (A remote code execution vulnerability exists in Visual Studio
Code whe ...)
NOT-FOR-US: Microsoft
CVE-2020-17022 (A remote code execution vulnerability exists in the way that
Microsoft ...)
NOT-FOR-US: Microsoft
-CVE-2020-17021 (, aka 'Microsoft Dynamics 365 (on-premises) Cross-site
Scripting Vulne ...)
+CVE-2020-17021 (Microsoft Dynamics 365 (on-premises) Cross-site Scripting
Vulnerabilit ...)
NOT-FOR-US: Microsoft
-CVE-2020-17020 (, aka 'Microsoft Word Security Feature Bypass Vulnerability'.
...)
+CVE-2020-17020 (Microsoft Word Security Feature Bypass Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17019 (, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
This CVE ...)
+CVE-2020-17019 (Microsoft Excel Remote Code Execution Vulnerability This CVE
ID is uni ...)
NOT-FOR-US: Microsoft
-CVE-2020-17018 (, aka 'Microsoft Dynamics 365 (on-premises) Cross-site
Scripting Vulne ...)
+CVE-2020-17018 (Microsoft Dynamics 365 (on-premises) Cross-site Scripting
Vulnerabilit ...)
NOT-FOR-US: Microsoft
-CVE-2020-17017 (, aka 'Microsoft SharePoint Information Disclosure
Vulnerability'. Thi ...)
+CVE-2020-17017 (Microsoft SharePoint Information Disclosure Vulnerability This
CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17016 (, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE
ID is un ...)
+CVE-2020-17016 (Microsoft SharePoint Spoofing Vulnerability This CVE ID is
unique from ...)
NOT-FOR-US: Microsoft
-CVE-2020-17015 (, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE
ID is un ...)
+CVE-2020-17015 (Microsoft SharePoint Spoofing Vulnerability This CVE ID is
unique from ...)
NOT-FOR-US: Microsoft
-CVE-2020-17014 (, aka 'Windows Print Spooler Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17014 (Windows Print Spooler Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17013 (, aka 'Win32k Information Disclosure Vulnerability'. ...)
+CVE-2020-17013 (Win32k Information Disclosure Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17012 (, aka 'Windows Bind Filter Driver Elevation of Privilege
Vulnerability ...)
+CVE-2020-17012 (Windows Bind Filter Driver Elevation of Privilege
Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17011 (, aka 'Windows Port Class Library Elevation of Privilege
Vulnerability ...)
+CVE-2020-17011 (Windows Port Class Library Elevation of Privilege
Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-17010 (, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE
ID is un ...)
+CVE-2020-17010 (Win32k Elevation of Privilege Vulnerability This CVE ID is
unique from ...)
NOT-FOR-US: Microsoft
CVE-2020-17009
RESERVED
CVE-2020-17008
RESERVED
-CVE-2020-17007 (, aka 'Windows Error Reporting Elevation of Privilege
Vulnerability'. ...)
+CVE-2020-17007 (Windows Error Reporting Elevation of Privilege Vulnerability
...)
NOT-FOR-US: Microsoft
-CVE-2020-17006 (, aka 'Microsoft Dynamics 365 (on-premises) Cross-site
Scripting Vulne ...)
+CVE-2020-17006 (Microsoft Dynamics 365 (on-premises) Cross-site Scripting
Vulnerabilit ...)
NOT-FOR-US: Microsoft
-CVE-2020-17005 (, aka 'Microsoft Dynamics 365 (on-premises) Cross-site
Scripting Vulne ...)
+CVE-2020-17005 (Microsoft Dynamics 365 (on-premises) Cross-site Scripting
Vulnerabilit ...)
NOT-FOR-US: Microsoft
-CVE-2020-17004 (, aka 'Windows Graphics Component Information Disclosure
Vulnerability ...)
+CVE-2020-17004 (Windows Graphics Component Information Disclosure
Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2020-17003 (A remote code execution vulnerability exists when the Base3D
rendering ...)
NOT-FOR-US: Microsoft
CVE-2020-17002
RESERVED
-CVE-2020-17001 (, aka 'Windows Print Spooler Elevation of Privilege
Vulnerability'. Th ...)
+CVE-2020-17001 (Windows Print Spooler Elevation of Privilege Vulnerability
This CVE ID ...)
NOT-FOR-US: Microsoft
-CVE-2020-17000 (, aka 'Remote Desktop Protocol Client Information Disclosure
Vulnerabi ...)
+CVE-2020-17000 (Remote Desktop Protocol Client Information Disclosure
Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-16999 (, aka 'Windows WalletService Information Disclosure
Vulnerability'. ...)
+CVE-2020-16999 (Windows WalletService Information Disclosure Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-16998 (, aka 'DirectX Elevation of Privilege Vulnerability'. ...)
+CVE-2020-16998 (DirectX Elevation of Privilege Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-16997 (, aka 'Remote Desktop Protocol Server Information Disclosure
Vulnerabi ...)
+CVE-2020-16997 (Remote Desktop Protocol Server Information Disclosure
Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2020-16996
RESERVED
CVE-2020-16995 (An elevation of privilege vulnerability exists in Network
Watcher Agen ...)
NOT-FOR-US: Microsoft
-CVE-2020-16994 (, aka 'Azure Sphere Unsigned Code Execution Vulnerability'.
This CVE I ...)
+CVE-2020-16994 (Azure Sphere Unsigned Code Execution Vulnerability This CVE ID
is uniq ...)
NOT-FOR-US: Microsoft
-CVE-2020-16993 (, aka 'Azure Sphere Elevation of Privilege Vulnerability'.
This CVE ID ...)
+CVE-2020-16993 (Azure Sphere Elevation of Privilege Vulnerability This CVE ID
is uniqu ...)
NOT-FOR-US: Microsoft
-CVE-2020-16992 (, aka 'Azure Sphere Elevation of Privilege Vulnerability'.
This CVE ID ...)
+CVE-2020-16992 (Azure Sphere Elevation of Privilege Vulnerability This CVE ID
is uniqu ...)
NOT-FOR-US: Microsoft
-CVE-2020-16991 (, aka 'Azure Sphere Unsigned Code Execution Vulnerability'.
This CVE I ...)
+CVE-2020-16991 (Azure Sphere Unsigned Code Execution Vulnerability This CVE ID
is uniq ...)
NOT-FOR-US: Microsoft
-CVE-2020-16990 (, aka 'Azure Sphere Information Disclosure Vulnerability'.
This CVE ID ...)
+CVE-2020-16990 (Azure Sphere Information Disclosure Vulnerability This CVE ID
is uniqu ...)
NOT-FOR-US: Microsoft
-CVE-2020-16989 (, aka 'Azure Sphere Elevation of Privilege Vulnerability'.
This CVE ID ...)
+CVE-2020-16989 (Azure Sphere Elevation of Privilege Vulnerability This CVE ID
is uniqu ...)
NOT-FOR-US: Microsoft
-CVE-2020-16988 (, aka 'Azure Sphere Elevation of Privilege Vulnerability'.
This CVE ID ...)
+CVE-2020-16988 (Azure Sphere Elevation of Privilege Vulnerability This CVE ID
is uniqu ...)
NOT-FOR-US: Microsoft
-CVE-2020-16987 (, aka 'Azure Sphere Unsigned Code Execution Vulnerability'.
This CVE I ...)
+CVE-2020-16987 (Azure Sphere Unsigned Code Execution Vulnerability This CVE ID
is uniq ...)
NOT-FOR-US: Microsoft
-CVE-2020-16986 (, aka 'Azure Sphere Denial of Service Vulnerability'. ...)
+CVE-2020-16986 (Azure Sphere Denial of Service Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-16985 (, aka 'Azure Sphere Information Disclosure Vulnerability'.
This CVE ID ...)
+CVE-2020-16985 (Azure Sphere Information Disclosure Vulnerability This CVE ID
is uniqu ...)
NOT-FOR-US: Microsoft
-CVE-2020-16984 (, aka 'Azure Sphere Unsigned Code Execution Vulnerability'.
This CVE I ...)
+CVE-2020-16984 (Azure Sphere Unsigned Code Execution Vulnerability This CVE ID
is uniq ...)
NOT-FOR-US: Microsoft
-CVE-2020-16983 (, aka 'Azure Sphere Tampering Vulnerability'. ...)
+CVE-2020-16983 (Azure Sphere Tampering Vulnerability ...)
NOT-FOR-US: Microsoft
-CVE-2020-16982 (, aka 'Azure Sphere Unsigned Code Execution Vulnerability'.
This CVE I ...)
+CVE-2020-16982 (Azure Sphere Unsigned Code Execution Vulnerability This CVE ID
is uniq ...)
NOT-FOR-US: Microsoft
-CVE-2020-16981 (, aka 'Azure Sphere Elevation of Privilege Vulnerability'.
This CVE ID ...)
+CVE-2020-16981 (Azure Sphere Elevation of Privilege Vulnerability This CVE ID
is uniqu ...)
NOT-FOR-US: Microsoft
CVE-2020-16980 (An elevation of privilege vulnerability exists when the
Windows iSCSI ...)
NOT-FOR-US: Microsoft
-CVE-2020-16979 (, aka 'Microsoft SharePoint Information Disclosure
Vulnerability'. Thi ...)
+CVE-2020-16979 (Microsoft SharePoint Information Disclosure Vulnerability This
CVE ID ...)
NOT-FOR-US: Microsoft
CVE-2020-16978 (A cross site scripting vulnerability exists when Microsoft
Dynamics 36 ...)
NOT-FOR-US: Microsoft
@@ -25888,7 +26360,7 @@ CVE-2020-16972 (An elevation of privilege vulnerability
exists when the Windows
NOT-FOR-US: Microsoft
CVE-2020-16971
RESERVED
-CVE-2020-16970 (, aka 'Azure Sphere Unsigned Code Execution Vulnerability'.
This CVE I ...)
+CVE-2020-16970 (Azure Sphere Unsigned Code Execution Vulnerability This CVE ID
is uniq ...)
NOT-FOR-US: Microsoft
CVE-2020-16969 (An information disclosure vulnerability exists in how
Microsoft Exchan ...)
NOT-FOR-US: Microsoft
@@ -28586,8 +29058,8 @@ CVE-2020-15785 (A vulnerability has been identified in
Siveillance Video Client
NOT-FOR-US: Siveillance Video Client
CVE-2020-15784 (A vulnerability has been identified in Spectrum Power 4 (All
versions ...)
NOT-FOR-US: Spectrum Power 4
-CVE-2020-15783
- RESERVED
+CVE-2020-15783 (A vulnerability has been identified in SIMATIC S7-300 CPU
family (incl ...)
+ TODO: check
CVE-2020-15782
RESERVED
CVE-2020-15781 (A vulnerability has been identified in SICAM WEB firmware for
SICAM A8 ...)
@@ -33838,8 +34310,8 @@ CVE-2020-13879
RESERVED
CVE-2020-13878
RESERVED
-CVE-2020-13877
- RESERVED
+CVE-2020-13877 (SQL Injection issues in various ASPX pages of ResourceXpress
Meeting M ...)
+ TODO: check
CVE-2020-13876
RESERVED
CVE-2020-13875
@@ -34196,8 +34668,8 @@ CVE-2020-13775 (ZNC 1.8.0 up to 1.8.1-rc1 allows
authenticated users to trigger
[jessie] - znc <not-affected> (Vulnerable code introduced later)
NOTE: Fixed by:
https://github.com/znc/znc/commit/2390ad111bde16a78c98ac44572090b33c3bd2d8
(znc-1.8.1-rc1)
NOTE: Introduced with:
https://github.com/znc/znc/commit/d229761821da38d984a9e4098ad96842490dc001
(znc-1.8.0)
-CVE-2020-13774
- RESERVED
+CVE-2020-13774 (An unrestricted file-upload issue in EditLaunchPadDialog.aspx
in Ivant ...)
+ TODO: check
CVE-2020-13773
RESERVED
CVE-2020-13772
@@ -36221,10 +36693,10 @@ CVE-2020-12929
RESERVED
CVE-2020-12928 (A vulnerability in a dynamically loaded AMD driver in AMD
Ryzen Master ...)
NOT-FOR-US: AMD Ryzen Master
-CVE-2020-12927
- RESERVED
-CVE-2020-12926
- RESERVED
+CVE-2020-12927 (A potential vulnerability in a dynamically loaded AMD driver
in AMD VB ...)
+ TODO: check
+CVE-2020-12926 (The Trusted Platform Modules (TPM) reference software may not
properly ...)
+ TODO: check
CVE-2020-12925
RESERVED
CVE-2020-12924
@@ -36251,8 +36723,8 @@ CVE-2020-12914
RESERVED
CVE-2020-12913
RESERVED
-CVE-2020-12912
- RESERVED
+CVE-2020-12912 (A potential vulnerability in the AMD extension to Linux
"hwmon" servic ...)
+ TODO: check
CVE-2020-12911 (A denial of service vulnerability exists in the
D3DKMTCreateAllocation ...)
NOT-FOR-US: AMD ATIKMDAG.SYS
CVE-2020-12910
@@ -52672,10 +53144,10 @@ CVE-2020-7035
RESERVED
CVE-2020-7034
RESERVED
-CVE-2020-7033
- RESERVED
-CVE-2020-7032
- RESERVED
+CVE-2020-7033 (A Cross Site Scripting (XSS) Vulnerability on the Unified
Portal Clien ...)
+ TODO: check
+CVE-2020-7032 (An XML external entity (XXE) vulnerability in Avaya WebLM admin
interf ...)
+ TODO: check
CVE-2020-7031
RESERVED
CVE-2020-7030 (A sensitive information disclosure vulnerability was discovered
in the ...)
@@ -69449,7 +69921,7 @@ CVE-2020-1601 (Certain types of malformed Path
Computation Element Protocol (PCE
NOT-FOR-US: Juniper
CVE-2020-1600 (In a Point-to-Multipoint (P2MP) Label Switched Path (LSP)
scenario, an ...)
NOT-FOR-US: Juniper
-CVE-2020-1599 (, aka 'Windows Spoofing Vulnerability'. ...)
+CVE-2020-1599 (Windows Spoofing Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2020-1598 (An elevation of privilege vulnerability exists when the Windows
Univer ...)
NOT-FOR-US: Microsoft
@@ -70005,7 +70477,7 @@ CVE-2020-1327 (A spoofing vulnerability exists in
Microsoft Azure DevOps Server
NOT-FOR-US: Microsoft
CVE-2020-1326 (A Cross-site Scripting (XSS) vulnerability exists when Azure
DevOps Se ...)
NOT-FOR-US: Microsoft
-CVE-2020-1325 (, aka 'Azure DevOps Server and Team Foundation Services
Spoofing Vulne ...)
+CVE-2020-1325 (Azure DevOps Server and Team Foundation Services Spoofing
Vulnerabilit ...)
NOT-FOR-US: Microsoft
CVE-2020-1324 (An elevation of privilege (user to user) vulnerability exists
in Windo ...)
NOT-FOR-US: Microsoft
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5fa7d6d2bd0fa18b0a7d22a94d5d5a1e68e5534d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5fa7d6d2bd0fa18b0a7d22a94d5d5a1e68e5534d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
