Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
837e1f79 by Salvatore Bonaccorso at 2021-01-29T09:27:58+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -17989,13 +17989,13 @@ CVE-2020-29540 (API calls in the Translation API
feature in Systran Pure Neural
CVE-2020-29539 (A Cross-Site Scripting (XSS) issue in WebUI Translation in
Systran Pur ...)
NOT-FOR-US: Systran Pure Neural Server
CVE-2020-29538 (Archer before 6.9 P1 (6.9.0.1) contains an improper access
control vul ...)
- TODO: check
+ NOT-FOR-US: Archer
CVE-2020-29537 (Archer before 6.8 P2 (6.8.0.2) is affected by an open redirect
vulnera ...)
- TODO: check
+ NOT-FOR-US: Archer
CVE-2020-29536 (Archer before 6.8 P2 (6.8.0.2) is affected by a path exposure
vulnerab ...)
- TODO: check
+ NOT-FOR-US: Archer
CVE-2020-29535 (Archer before 6.8 P4 (6.8.0.4) contains a stored XSS
vulnerability. A ...)
- TODO: check
+ NOT-FOR-US: Archer
CVE-2020-29533
RESERVED
CVE-2020-29532
@@ -21909,17 +21909,17 @@ CVE-2020-28408 (The server in Dundas BI through
8.0.0.1001 allows XSS via an HTM
CVE-2020-28407
RESERVED
CVE-2020-28406 (An improper authorization vulnerability exists in Star
Practice Manage ...)
- TODO: check
+ NOT-FOR-US: Star Practice Management Web
CVE-2020-28405 (An improper authorization vulnerability exists in Star
Practice Manage ...)
- TODO: check
+ NOT-FOR-US: Star Practice Management Web
CVE-2020-28404 (An improper authorization vulnerability exists in Star
Practice Manage ...)
- TODO: check
+ NOT-FOR-US: Star Practice Management Web
CVE-2020-28403 (A Cross-Site Request Forgery (CSRF) vulnerability exists in
Star Pract ...)
- TODO: check
+ NOT-FOR-US: Star Practice Management Web
CVE-2020-28402 (An improper authorization vulnerability exists in Star
Practice Manage ...)
- TODO: check
+ NOT-FOR-US: Star Practice Management Web
CVE-2020-28401 (An improper authorization vulnerability exists in Star
Practice Manage ...)
- TODO: check
+ NOT-FOR-US: Star Practice Management Web
CVE-2020-28400
RESERVED
CVE-2020-28399
@@ -57562,7 +57562,7 @@ CVE-2020-13571
CVE-2020-13570 (A use-after-free vulnerability exists in the JavaScript engine
of Foxi ...)
NOT-FOR-US: Foxit
CVE-2020-13569 (A cross-site request forgery vulnerability exists in the GACL
function ...)
- TODO: check
+ NOT-FOR-US: OpenEMR
CVE-2020-13568
RESERVED
CVE-2020-13567
@@ -71731,7 +71731,7 @@ CVE-2020-8587
CVE-2020-8586
RESERVED
CVE-2020-8585 (OnCommand Unified Manager Core Package versions prior to 5.2.5
may dis ...)
- TODO: check
+ NOT-FOR-US: OnCommand Unified Manager Core Package
CVE-2020-8584 (Element OS versions prior to 1.8P1 and 12.2 are susceptible to
a vulne ...)
NOT-FOR-US: Element OS
CVE-2020-8583 (Element Software versions prior to 12.2 and HCI versions prior
to 1.8P ...)
@@ -78433,7 +78433,7 @@ CVE-2020-6026
CVE-2020-6025
RESERVED
CVE-2020-6024 (Check Point SmartConsole before R80.10 Build 185, R80.20 Build
119, R8 ...)
- TODO: check
+ NOT-FOR-US: Check Point SmartConsole
CVE-2020-6023 (Check Point ZoneAlarm before version 15.8.139.18543 allows a
local act ...)
NOT-FOR-US: Check Point ZoneAlarm
CVE-2020-6022 (Check Point ZoneAlarm before version 15.8.139.18543 allows a
local act ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/837e1f79730764c6cd60b5c3cd24482320d6ce9c
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/837e1f79730764c6cd60b5c3cd24482320d6ce9c
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
