Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
77f779d4 by Salvatore Bonaccorso at 2021-04-06T10:20:48+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -38,7 +38,7 @@ CVE-2021-30143
CVE-2021-30142
RESERVED
CVE-2021-30141 (** DISPUTED ** Module/Settings/UserExport.php in Friendica
through 202 ...)
- TODO: check
+ NOT-FOR-US: Friendica
CVE-2021-30140
RESERVED
CVE-2021-30139
@@ -4255,75 +4255,75 @@ CVE-2021-28210 [unlimited FV recursion, round 2]
NOTE: https://github.com/tianocore/edk2/pull/1137
NOTE:
https://github.com/tianocore/edk2/commit/47343af30435302c087027177613412a1a83e919
CVE-2021-28209 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28208 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28207 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28206 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28205 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28204 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28203 (The Web Set Media Image function in ASUS BMC’s firmware
Web mana ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28202 (The Service configuration-2 function in ASUS BMC’s
firmware Web ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28201 (The Service configuration-1 function in ASUS BMC’s
firmware Web ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28200 (The CD media configuration function in ASUS BMC’s
firmware Web m ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28199 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28198 (The Firmware protocol configuration function in ASUS
BMC’s firmw ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28197 (The Active Directory configuration function in ASUS
BMC’s firmwa ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28196 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28195 (The Radius configuration function in ASUS BMC’s firmware
Web man ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28194 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28193 (The SMTP configuration function in ASUS BMC’s firmware
Web manag ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28192 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28191 (The Firmware update function in ASUS BMC’s firmware Web
manageme ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28190 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28189 (The SMTP configuration function in ASUS BMC’s firmware
Web manag ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28188 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28187 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28186 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28185 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28184 (The Active Directory configuration function in ASUS
BMC’s firmwa ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28183 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28182 (The Web Service configuration function in ASUS BMC’s
firmware We ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28181 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28180 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28179 (The specific function in ASUS BMC’s firmware Web
management page ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28178 (The UEFI configuration function in ASUS BMC’s firmware
Web manag ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28177 (The LDAP configuration function in ASUS BMC’s firmware
Web manag ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28176 (The DNS configuration function in ASUS BMC’s firmware
Web manage ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28175 (The Radius configuration function in ASUS BMC’s firmware
Web man ...)
- TODO: check
+ NOT-FOR-US: ASUS
CVE-2021-28174
RESERVED
CVE-2021-28173
@@ -19490,15 +19490,15 @@ CVE-2021-21535
CVE-2021-21534
RESERVED
CVE-2021-21533 (Wyse Management Suite versions up to 3.2 contains a
vulnerability wher ...)
- TODO: check
+ NOT-FOR-US: Wyse Management Suite
CVE-2021-21532 (Dell Wyse ThinOS 8.6 MR9 contains remediation for an improper
manageme ...)
- TODO: check
+ NOT-FOR-US: Dell Wyse ThinOS
CVE-2021-21531
RESERVED
CVE-2021-21530
RESERVED
CVE-2021-21529 (Dell System Update (DSU) 1.9 and earlier versions contain a
denial of ...)
- TODO: check
+ NOT-FOR-US: Dell System Update (DSU)
CVE-2021-21528
RESERVED
CVE-2021-21527
@@ -35820,7 +35820,7 @@ CVE-2020-27670 (An issue was discovered in Xen through
4.14.x allowing x86 guest
[stretch] - xen <end-of-life> (DSA 4602-1)
NOTE: https://xenbits.xen.org/xsa/advisory-347.html
CVE-2020-27600 (HNAP1/control/SetMasterWLanSettings.php in D-Link D-Link
Router DIR-84 ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2020-27599
RESERVED
CVE-2020-27598
@@ -48996,11 +48996,11 @@ CVE-2020-21592
CVE-2020-21591
RESERVED
CVE-2020-21590 (Directory traversal in coreframe/app/template/admin/index.php
in WUZHI ...)
- TODO: check
+ NOT-FOR-US: WUZHI CMS
CVE-2020-21589
RESERVED
CVE-2020-21588 (Buffer overflow in Core FTP LE v2.2 allows local attackers to
cause a ...)
- TODO: check
+ NOT-FOR-US: Core FTP
CVE-2020-21587
RESERVED
CVE-2020-21586
@@ -53001,9 +53001,9 @@ CVE-2020-19598
CVE-2020-19597
RESERVED
CVE-2020-19596 (Buffer overflow vulnerability in Core FTP Server v1.2 Build
583, via a ...)
- TODO: check
+ NOT-FOR-US: Core FTP
CVE-2020-19595 (Buffer overflow vulnerability in Core FTP Server v2 Build 697,
via a c ...)
- TODO: check
+ NOT-FOR-US: Core FTP
CVE-2020-19594
RESERVED
CVE-2020-19593
@@ -57354,7 +57354,7 @@ CVE-2020-17455
CVE-2020-17454 (WSO2 API Manager 3.1.0 and earlier has reflected XSS on the
"publisher ...)
NOT-FOR-US: WSO2 API Manager
CVE-2020-17453 (WSO2 Management Console through 5.10 allows XSS via the
carbon/admin/l ...)
- TODO: check
+ NOT-FOR-US: WSO2 Management Console
CVE-2020-17452 (flatCore before 1.5.7 allows upload and execution of a .php
file by an ...)
NOT-FOR-US: flatCore CMS
CVE-2020-17451 (flatCore before 1.5.7 allows XSS by an admin via the
acp/acp.php?tn=pa ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/77f779d40975467bd02d26752f6131a2c5384875
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/77f779d40975467bd02d26752f6131a2c5384875
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
