Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d89ca4fa by security tracker role at 2021-04-23T08:10:21+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,93 @@
+CVE-2021-31617
+ RESERVED
+CVE-2021-31616
+ RESERVED
+CVE-2021-31615
+ RESERVED
+CVE-2021-31614
+ RESERVED
+CVE-2021-31613
+ RESERVED
+CVE-2021-31612
+ RESERVED
+CVE-2021-31611
+ RESERVED
+CVE-2021-31610
+ RESERVED
+CVE-2021-31609
+ RESERVED
+CVE-2021-31608
+ RESERVED
+CVE-2021-31607 (In SaltStack Salt 2016.9 through 3002.6, a command injection
vulnerabi ...)
+ TODO: check
+CVE-2021-31606
+ RESERVED
+CVE-2021-31605
+ RESERVED
+CVE-2021-31604
+ RESERVED
+CVE-2021-31603
+ RESERVED
+CVE-2021-31602
+ RESERVED
+CVE-2021-31601
+ RESERVED
+CVE-2021-31600
+ RESERVED
+CVE-2021-31599
+ RESERVED
+CVE-2021-31598
+ RESERVED
+CVE-2021-31597 (The xmlhttprequest-ssl package before 1.6.1 for Node.js
disables SSL c ...)
+ TODO: check
+CVE-2021-31596
+ RESERVED
+CVE-2021-31595
+ RESERVED
+CVE-2021-31594
+ RESERVED
+CVE-2021-31593
+ RESERVED
+CVE-2021-31592
+ RESERVED
+CVE-2021-31591
+ RESERVED
+CVE-2021-31590
+ RESERVED
+CVE-2021-31589
+ RESERVED
+CVE-2021-31588
+ RESERVED
+CVE-2021-31587
+ RESERVED
+CVE-2021-31586
+ RESERVED
+CVE-2021-31585
+ RESERVED
+CVE-2021-31584
+ RESERVED
+CVE-2021-31583
+ RESERVED
+CVE-2021-31582
+ RESERVED
+CVE-2021-31581
+ RESERVED
+CVE-2021-31580
+ RESERVED
+CVE-2021-31579
+ RESERVED
+CVE-2021-31578
+ RESERVED
+CVE-2021-31577
+ RESERVED
+CVE-2021-31576
+ RESERVED
+CVE-2021-31575
+ RESERVED
+CVE-2021-31574
+ RESERVED
+CVE-2021-31573
+ RESERVED
CVE-2021-3512
RESERVED
CVE-2021-3511
@@ -6571,8 +6661,8 @@ CVE-2021-28650 (autoar-extractor.c in GNOME gnome-autoar
before 0.3.1, as used b
NOTE: Issue exists because of an incomplete fix for CVE-2020-36241.
CVE-2021-28649
RESERVED
-CVE-2021-28648
- RESERVED
+CVE-2021-28648 (Trend Micro Antivirus for Mac 2020 v10.5 and 2021 v11
(Consumer) is vu ...)
+ TODO: check
CVE-2021-28647 (Trend Micro Password Manager version 5 (Consumer) is
vulnerable to a D ...)
NOT-FOR-US: Trend Micro
CVE-2021-28646 (An insecure file permissions vulnerability in Trend Micro Apex
One, Ap ...)
@@ -9481,16 +9571,16 @@ CVE-2021-27395
RESERVED
CVE-2021-27394 (A vulnerability has been identified in Mendix Applications
using Mendi ...)
NOT-FOR-US: Mendix Applications (Siemens)
-CVE-2021-27393
- RESERVED
-CVE-2021-27392
- RESERVED
+CVE-2021-27393 (A vulnerability has been identified in Nucleus NET (All
versions), Nuc ...)
+ TODO: check
+CVE-2021-27392 (A vulnerability has been identified in Siveillance Video Open
Network ...)
+ TODO: check
CVE-2021-27391
RESERVED
CVE-2021-27390
RESERVED
-CVE-2021-27389
- RESERVED
+CVE-2021-27389 (A vulnerability has been identified in Opcenter Quality (All
versions ...)
+ TODO: check
CVE-2021-27388
RESERVED
CVE-2021-27387
@@ -9503,11 +9593,11 @@ CVE-2021-27384
RESERVED
CVE-2021-27383
RESERVED
-CVE-2021-27382
- RESERVED
+CVE-2021-27382 (A vulnerability has been identified in Solid Edge SE2020 (All
versions ...)
+ TODO: check
CVE-2021-27381 (A vulnerability has been identified in Solid Edge SE2020 (All
Versions ...)
NOT-FOR-US: Solid Edge SE2020
-CVE-2021-27380 (A vulnerability has been identified in Solid Edge SE2020 (All
Versions ...)
+CVE-2021-27380 (A vulnerability has been identified in Solid Edge SE2020 (All
versions ...)
NOT-FOR-US: Solid Edge SE2020
CVE-2021-27379 (An issue was discovered in Xen through 4.11.x, allowing x86
Intel HVM ...)
{DSA-4888-1}
@@ -13792,10 +13882,10 @@ CVE-2021-3191 (Idelji Web ViewPoint Suite, as used in
conjunction with HPE NonSt
NOT-FOR-US: Idelji Web ViewPoint
CVE-2021-3190 (The async-git package before 1.13.2 for Node.js allows OS
Command Inje ...)
NOT-FOR-US: Node async-git
-CVE-2021-25678
- RESERVED
-CVE-2021-25677
- RESERVED
+CVE-2021-25678 (A vulnerability has been identified in Solid Edge SE2020 (All
versions ...)
+ TODO: check
+CVE-2021-25677 (A vulnerability has been identified in Nucleus 4 (All versions
< V4 ...)
+ TODO: check
CVE-2021-25676 (A vulnerability has been identified in RUGGEDCOM RM1224
(V6.3), SCALAN ...)
NOT-FOR-US: Siemens
CVE-2021-25675 (A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4
(All ver ...)
@@ -13808,22 +13898,22 @@ CVE-2021-25672 (A vulnerability has been identified
in Mendix Forgot Password Ap
NOT-FOR-US: Mendix Forgot Password Appstore module
CVE-2021-25671
RESERVED
-CVE-2021-25670
- RESERVED
-CVE-2021-25669
- RESERVED
-CVE-2021-25668
- RESERVED
+CVE-2021-25670 (A vulnerability has been identified in Tecnomatix RobotExpert
(All ver ...)
+ TODO: check
+CVE-2021-25669 (A vulnerability has been identified in SCALANCE X200-4P IRT
(All versi ...)
+ TODO: check
+CVE-2021-25668 (A vulnerability has been identified in SCALANCE X200-4P IRT
(All versi ...)
+ TODO: check
CVE-2021-25667 (A vulnerability has been identified in RUGGEDCOM RM1224 (All
versions ...)
NOT-FOR-US: Siemens
CVE-2021-25666 (A vulnerability has been identified in SCALANCE W780 and W740
(IEEE 80 ...)
NOT-FOR-US: Siemens
CVE-2021-25665
RESERVED
-CVE-2021-25664
- RESERVED
-CVE-2021-25663
- RESERVED
+CVE-2021-25664 (A vulnerability has been identified in Nucleus 4 (All versions
< V4 ...)
+ TODO: check
+CVE-2021-25663 (A vulnerability has been identified in Nucleus 4 (All versions
< V4 ...)
+ TODO: check
CVE-2021-25662
RESERVED
CVE-2021-25661
@@ -16871,28 +16961,28 @@ CVE-2021-24244
RESERVED
CVE-2021-24243
RESERVED
-CVE-2021-24242
- RESERVED
-CVE-2021-24241
- RESERVED
-CVE-2021-24240
- RESERVED
-CVE-2021-24239
- RESERVED
-CVE-2021-24238
- RESERVED
-CVE-2021-24237
- RESERVED
+CVE-2021-24242 (The Tutor LMS – eLearning and online course solution
WordPress p ...)
+ TODO: check
+CVE-2021-24241 (The Advanced Custom Fields Pro WordPress plugin before 5.9.1
did not p ...)
+ TODO: check
+CVE-2021-24240 (The Business Hours Pro WordPress plugin through 5.5.0 allows a
remote ...)
+ TODO: check
+CVE-2021-24239 (The Pie Register – User Registration Forms. Invitation
based reg ...)
+ TODO: check
+CVE-2021-24238 (The Realteo WordPress plugin before 1.2.4, used by the Findeo
Theme, d ...)
+ TODO: check
+CVE-2021-24237 (The Realteo WordPress plugin before 1.2.4, used by the Findeo
Theme, d ...)
+ TODO: check
CVE-2021-24236
RESERVED
-CVE-2021-24235
- RESERVED
-CVE-2021-24234
- RESERVED
-CVE-2021-24233
- RESERVED
-CVE-2021-24232
- RESERVED
+CVE-2021-24235 (The Goto WordPress theme before 2.0 does not sanitise the
keywords and ...)
+ TODO: check
+CVE-2021-24234 (The Search Forms page of the Ivory Search WordPress lugin
before 4.6.1 ...)
+ TODO: check
+CVE-2021-24233 (The Cooked Pro WordPress plugin before 1.7.5.6 was affected by
unauthe ...)
+ TODO: check
+CVE-2021-24232 (The Advanced Booking Calendar WordPress plugin before 1.6.8
does not s ...)
+ TODO: check
CVE-2021-24231 (The Jetpack Scan team identified a Cross-Site Request Forgery
vulnerab ...)
NOT-FOR-US: Jetpack
CVE-2021-24230 (The Jetpack Scan team identified a Cross-Site Request Forgery
vulnerab ...)
@@ -16981,7 +17071,7 @@ CVE-2021-24189
RESERVED
CVE-2021-24188
RESERVED
-CVE-2021-24187 (The setting page of the SEO Redirection Plugin – 301
Redirect Ma ...)
+CVE-2021-24187 (The setting page of the SEO Redirection Plugin - 301 Redirect
Manager ...)
NOT-FOR-US: Wordpress plugin
CVE-2021-24186 (The tutor_answering_quiz_question/get_answer_by_id function
pair from ...)
NOT-FOR-US: Wordpress plugin
@@ -21461,8 +21551,8 @@ CVE-2021-22201 (An issue has been discovered in GitLab
CE/EE affecting all versi
- gitlab <unfixed>
CVE-2021-22200 (An issue has been discovered in GitLab CE/EE affecting all
versions st ...)
- gitlab <unfixed>
-CVE-2021-22199
- RESERVED
+CVE-2021-22199 (An issue has been discovered in GitLab affecting all versions
starting ...)
+ TODO: check
CVE-2021-22198 (An issue has been discovered in GitLab CE/EE affecting all
versions fr ...)
- gitlab <unfixed>
CVE-2021-22197 (An issue has been discovered in GitLab CE/EE affecting all
versions st ...)
@@ -29592,460 +29682,399 @@ CVE-2021-2322
RESERVED
CVE-2021-2321
RESERVED
-CVE-2021-2320
- RESERVED
-CVE-2021-2319
- RESERVED
-CVE-2021-2318
- RESERVED
-CVE-2021-2317
- RESERVED
-CVE-2021-2316
- RESERVED
-CVE-2021-2315
- RESERVED
-CVE-2021-2314
- RESERVED
+CVE-2021-2320 (Vulnerability in the Oracle Cloud Infrastructure Storage
Gateway produ ...)
+ TODO: check
+CVE-2021-2319 (Vulnerability in the Oracle Cloud Infrastructure Storage
Gateway produ ...)
+ TODO: check
+CVE-2021-2318 (Vulnerability in the Oracle Cloud Infrastructure Storage
Gateway produ ...)
+ TODO: check
+CVE-2021-2317 (Vulnerability in the Oracle Cloud Infrastructure Storage
Gateway produ ...)
+ TODO: check
+CVE-2021-2316 (Vulnerability in the Oracle HRMS (France) product of Oracle
E-Business ...)
+ TODO: check
+CVE-2021-2315 (Vulnerability in the Oracle HTTP Server product of Oracle
Fusion Middl ...)
+ TODO: check
+CVE-2021-2314 (Vulnerability in the Oracle Application Object Library product
of Orac ...)
+ TODO: check
CVE-2021-2313
RESERVED
-CVE-2021-2312
- RESERVED
+CVE-2021-2312 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2311
- RESERVED
-CVE-2021-2310
- RESERVED
+CVE-2021-2311 (Vulnerability in the Oracle Hospitality Inventory Management
product o ...)
+ TODO: check
+CVE-2021-2310 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2309
- RESERVED
+CVE-2021-2309 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2308
- RESERVED
+CVE-2021-2308 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2307
- RESERVED
+CVE-2021-2307 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2306
- RESERVED
+CVE-2021-2306 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2305
- RESERVED
+CVE-2021-2305 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2304
- RESERVED
+CVE-2021-2304 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2303
- RESERVED
-CVE-2021-2302
- RESERVED
-CVE-2021-2301
- RESERVED
+CVE-2021-2303 (Vulnerability in the OSS Support Tools product of Oracle
Support Tools ...)
+ TODO: check
+CVE-2021-2302 (Vulnerability in the Oracle Platform Security for Java product
of Orac ...)
+ TODO: check
+CVE-2021-2301 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2300
- RESERVED
+CVE-2021-2300 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2299
- RESERVED
+CVE-2021-2299 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2298
- RESERVED
+CVE-2021-2298 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2297
- RESERVED
+CVE-2021-2297 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2296
- RESERVED
+CVE-2021-2296 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2295
- RESERVED
-CVE-2021-2294
- RESERVED
-CVE-2021-2293
- RESERVED
+CVE-2021-2295 (Vulnerability in the Oracle Concurrent Processing product of
Oracle E- ...)
+ TODO: check
+CVE-2021-2294 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
+ TODO: check
+CVE-2021-2293 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2292
- RESERVED
-CVE-2021-2291
- RESERVED
+CVE-2021-2292 (Vulnerability in the Oracle Document Management and
Collaboration prod ...)
+ TODO: check
+CVE-2021-2291 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2290
- RESERVED
-CVE-2021-2289
- RESERVED
-CVE-2021-2288
- RESERVED
-CVE-2021-2287
- RESERVED
+CVE-2021-2290 (Vulnerability in the Oracle Engineering product of Oracle
E-Business S ...)
+ TODO: check
+CVE-2021-2289 (Vulnerability in the Oracle Product Hub product of Oracle
E-Business S ...)
+ TODO: check
+CVE-2021-2288 (Vulnerability in the Oracle Bills of Material product of Oracle
E-Busi ...)
+ TODO: check
+CVE-2021-2287 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2286
- RESERVED
+CVE-2021-2286 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2285
- RESERVED
+CVE-2021-2285 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2284
- RESERVED
+CVE-2021-2284 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2283
- RESERVED
+CVE-2021-2283 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2282
- RESERVED
+CVE-2021-2282 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2281
- RESERVED
+CVE-2021-2281 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2280
- RESERVED
+CVE-2021-2280 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2279
- RESERVED
+CVE-2021-2279 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2278
- RESERVED
+CVE-2021-2278 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2277
- RESERVED
-CVE-2021-2276
- RESERVED
-CVE-2021-2275
- RESERVED
-CVE-2021-2274
- RESERVED
-CVE-2021-2273
- RESERVED
-CVE-2021-2272
- RESERVED
-CVE-2021-2271
- RESERVED
-CVE-2021-2270
- RESERVED
-CVE-2021-2269
- RESERVED
-CVE-2021-2268
- RESERVED
-CVE-2021-2267
- RESERVED
-CVE-2021-2266
- RESERVED
+CVE-2021-2277 (Vulnerability in the Oracle Coherence product of Oracle Fusion
Middlew ...)
+ TODO: check
+CVE-2021-2276 (Vulnerability in the Oracle iSetup product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2275 (Vulnerability in the Oracle Applications Manager product of
Oracle E-B ...)
+ TODO: check
+CVE-2021-2274 (Vulnerability in the Oracle E-Business Tax product of Oracle
E-Busines ...)
+ TODO: check
+CVE-2021-2273 (Vulnerability in the Oracle Legal Entity Configurator product
of Oracl ...)
+ TODO: check
+CVE-2021-2272 (Vulnerability in the Oracle Subledger Accounting product of
Oracle E-B ...)
+ TODO: check
+CVE-2021-2271 (Vulnerability in the Oracle Work in Process product of Oracle
E-Busine ...)
+ TODO: check
+CVE-2021-2270 (Vulnerability in the Oracle Site Hub product of Oracle
E-Business Suit ...)
+ TODO: check
+CVE-2021-2269 (Vulnerability in the Oracle Advanced Pricing product of Oracle
E-Busin ...)
+ TODO: check
+CVE-2021-2268 (Vulnerability in the Oracle Quoting product of Oracle
E-Business Suite ...)
+ TODO: check
+CVE-2021-2267 (Vulnerability in the Oracle Labor Distribution product of
Oracle E-Bus ...)
+ TODO: check
+CVE-2021-2266 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
CVE-2021-2265
RESERVED
-CVE-2021-2264
- RESERVED
+CVE-2021-2264 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2263
- RESERVED
-CVE-2021-2262
- RESERVED
-CVE-2021-2261
- RESERVED
-CVE-2021-2260
- RESERVED
-CVE-2021-2259
- RESERVED
-CVE-2021-2258
- RESERVED
-CVE-2021-2257
- RESERVED
-CVE-2021-2256
- RESERVED
-CVE-2021-2255
- RESERVED
-CVE-2021-2254
- RESERVED
-CVE-2021-2253
- RESERVED
-CVE-2021-2252
- RESERVED
-CVE-2021-2251
- RESERVED
-CVE-2021-2250
- RESERVED
+CVE-2021-2263 (Vulnerability in the Oracle Sourcing product of Oracle
E-Business Suit ...)
+ TODO: check
+CVE-2021-2262 (Vulnerability in the Oracle Purchasing product of Oracle
E-Business Su ...)
+ TODO: check
+CVE-2021-2261 (Vulnerability in the Oracle Lease and Finance Management
product of Or ...)
+ TODO: check
+CVE-2021-2260 (Vulnerability in the Oracle Human Resources product of Oracle
E-Busine ...)
+ TODO: check
+CVE-2021-2259 (Vulnerability in the Oracle Payables product of Oracle
E-Business Suit ...)
+ TODO: check
+CVE-2021-2258 (Vulnerability in the Oracle Projects product of Oracle
E-Business Suit ...)
+ TODO: check
+CVE-2021-2257 (Vulnerability in the Oracle Storage Cloud Software Appliance
product o ...)
+ TODO: check
+CVE-2021-2256 (Vulnerability in the Oracle Storage Cloud Software Appliance
product o ...)
+ TODO: check
+CVE-2021-2255 (Vulnerability in the Oracle Service Contracts product of Oracle
E-Busi ...)
+ TODO: check
+CVE-2021-2254 (Vulnerability in the Oracle Project Contracts product of Oracle
E-Busi ...)
+ TODO: check
+CVE-2021-2253 (Vulnerability in the Oracle Advanced Supply Chain Planning
product of ...)
+ TODO: check
+CVE-2021-2252 (Vulnerability in the Oracle Loans product of Oracle E-Business
Suite ( ...)
+ TODO: check
+CVE-2021-2251 (Vulnerability in the Oracle CRM Technical Foundation product of
Oracle ...)
+ TODO: check
+CVE-2021-2250 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2249
- RESERVED
-CVE-2021-2248
- RESERVED
-CVE-2021-2247
- RESERVED
-CVE-2021-2246
- RESERVED
-CVE-2021-2245
- RESERVED
-CVE-2021-2244
- RESERVED
+CVE-2021-2249 (Vulnerability in the Oracle Landed Cost Management product of
Oracle E ...)
+ TODO: check
+CVE-2021-2248 (Vulnerability in the Oracle Secure Global Desktop product of
Oracle Vi ...)
+ TODO: check
+CVE-2021-2247 (Vulnerability in the Oracle Advanced Collections product of
Oracle E-B ...)
+ TODO: check
+CVE-2021-2246 (Vulnerability in the Oracle Universal Work Queue product of
Oracle E-B ...)
+ TODO: check
+CVE-2021-2245 (Vulnerability in the Oracle Database - Enterprise Edition
Unified Audi ...)
+ TODO: check
+CVE-2021-2244 (Vulnerability in the Hyperion Analytic Provider Services
product of Or ...)
+ TODO: check
CVE-2021-2243
RESERVED
-CVE-2021-2242
- RESERVED
-CVE-2021-2241
- RESERVED
-CVE-2021-2240
- RESERVED
-CVE-2021-2239
- RESERVED
-CVE-2021-2238
- RESERVED
-CVE-2021-2237
- RESERVED
-CVE-2021-2236
- RESERVED
-CVE-2021-2235
- RESERVED
-CVE-2021-2234
- RESERVED
-CVE-2021-2233
- RESERVED
-CVE-2021-2232
- RESERVED
+CVE-2021-2242 (Vulnerability in the Oracle Outside In Technology product of
Oracle Fu ...)
+ TODO: check
+CVE-2021-2241 (Vulnerability in the Oracle iStore product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2240 (Vulnerability in the Oracle Outside In Technology product of
Oracle Fu ...)
+ TODO: check
+CVE-2021-2239 (Vulnerability in the Oracle Time and Labor product of Oracle
E-Busines ...)
+ TODO: check
+CVE-2021-2238 (Vulnerability in the Oracle MES for Process Manufacturing
product of O ...)
+ TODO: check
+CVE-2021-2237 (Vulnerability in the Oracle General Ledger product of Oracle
E-Busines ...)
+ TODO: check
+CVE-2021-2236 (Vulnerability in the Oracle Financials Common Modules product
of Oracl ...)
+ TODO: check
+CVE-2021-2235 (Vulnerability in the Oracle Transportation Execution product of
Oracle ...)
+ TODO: check
+CVE-2021-2234 (Vulnerability in the Java VM component of Oracle Database
Server. Supp ...)
+ TODO: check
+CVE-2021-2233 (Vulnerability in the Oracle Enterprise Asset Management product
of Ora ...)
+ TODO: check
+CVE-2021-2232 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2231
- RESERVED
-CVE-2021-2230
- RESERVED
+CVE-2021-2231 (Vulnerability in the Oracle Installed Base product of Oracle
E-Busines ...)
+ TODO: check
+CVE-2021-2230 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2229
- RESERVED
-CVE-2021-2228
- RESERVED
-CVE-2021-2227
- RESERVED
-CVE-2021-2226
- RESERVED
+CVE-2021-2229 (Vulnerability in the Oracle Depot Repair product of Oracle
E-Business ...)
+ TODO: check
+CVE-2021-2228 (Vulnerability in the Oracle Incentive Compensation product of
Oracle E ...)
+ TODO: check
+CVE-2021-2227 (Vulnerability in the Oracle Cash Management product of Oracle
E-Busine ...)
+ TODO: check
+CVE-2021-2226 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2225
- RESERVED
-CVE-2021-2224
- RESERVED
-CVE-2021-2223
- RESERVED
-CVE-2021-2222
- RESERVED
-CVE-2021-2221
- RESERVED
-CVE-2021-2220
- RESERVED
-CVE-2021-2219
- RESERVED
-CVE-2021-2218
- RESERVED
-CVE-2021-2217
- RESERVED
+CVE-2021-2225 (Vulnerability in the Oracle E-Business Intelligence product of
Oracle ...)
+ TODO: check
+CVE-2021-2224 (Vulnerability in the Oracle Compensation Workbench product of
Oracle E ...)
+ TODO: check
+CVE-2021-2223 (Vulnerability in the Oracle Receivables product of Oracle
E-Business S ...)
+ TODO: check
+CVE-2021-2222 (Vulnerability in the Oracle Bill Presentment Architecture
product of O ...)
+ TODO: check
+CVE-2021-2221 (Vulnerability in the Oracle Secure Global Desktop product of
Oracle Vi ...)
+ TODO: check
+CVE-2021-2220 (Vulnerability in the PeopleSoft Enterprise SCM eProcurement
product of ...)
+ TODO: check
+CVE-2021-2219 (Vulnerability in the PeopleSoft Enterprise PeopleTools product
of Orac ...)
+ TODO: check
+CVE-2021-2218 (Vulnerability in the PeopleSoft Enterprise PT PeopleTools
product of O ...)
+ TODO: check
+CVE-2021-2217 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2216
- RESERVED
-CVE-2021-2215
- RESERVED
+CVE-2021-2216 (Vulnerability in the PeopleSoft Enterprise PeopleTools product
of Orac ...)
+ TODO: check
+CVE-2021-2215 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2214
- RESERVED
-CVE-2021-2213
- RESERVED
+CVE-2021-2214 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
+ TODO: check
+CVE-2021-2213 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2212
- RESERVED
+CVE-2021-2212 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2211
- RESERVED
-CVE-2021-2210
- RESERVED
-CVE-2021-2209
- RESERVED
-CVE-2021-2208
- RESERVED
+CVE-2021-2211 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
+ TODO: check
+CVE-2021-2210 (Vulnerability in the Oracle Trade Management product of Oracle
E-Busin ...)
+ TODO: check
+CVE-2021-2209 (Vulnerability in the Oracle Email Center product of Oracle
E-Business ...)
+ TODO: check
+CVE-2021-2208 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2207
- RESERVED
-CVE-2021-2206
- RESERVED
-CVE-2021-2205
- RESERVED
-CVE-2021-2204
- RESERVED
-CVE-2021-2203
- RESERVED
+CVE-2021-2207 (Vulnerability in the Oracle Database - Enterprise Edition
component of ...)
+ TODO: check
+CVE-2021-2206 (Vulnerability in the Oracle Trade Management product of Oracle
E-Busin ...)
+ TODO: check
+CVE-2021-2205 (Vulnerability in the Oracle Marketing product of Oracle
E-Business Sui ...)
+ TODO: check
+CVE-2021-2204 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
+ TODO: check
+CVE-2021-2203 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2202
- RESERVED
+CVE-2021-2202 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2201
- RESERVED
+CVE-2021-2201 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2200
- RESERVED
-CVE-2021-2199
- RESERVED
-CVE-2021-2198
- RESERVED
-CVE-2021-2197
- RESERVED
-CVE-2021-2196
- RESERVED
+CVE-2021-2200 (Vulnerability in the Oracle Applications Framework product of
Oracle E ...)
+ TODO: check
+CVE-2021-2199 (Vulnerability in the Oracle iStore product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2198 (Vulnerability in the Oracle Knowledge Management product of
Oracle E-B ...)
+ TODO: check
+CVE-2021-2197 (Vulnerability in the Oracle iStore product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2196 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2195
- RESERVED
-CVE-2021-2194
- RESERVED
+CVE-2021-2195 (Vulnerability in the Oracle Partner Management product of
Oracle E-Bus ...)
+ TODO: check
+CVE-2021-2194 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2193
- RESERVED
+CVE-2021-2193 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2192
- RESERVED
-CVE-2021-2191
- RESERVED
-CVE-2021-2190
- RESERVED
-CVE-2021-2189
- RESERVED
-CVE-2021-2188
- RESERVED
-CVE-2021-2187
- RESERVED
-CVE-2021-2186
- RESERVED
-CVE-2021-2185
- RESERVED
-CVE-2021-2184
- RESERVED
-CVE-2021-2183
- RESERVED
-CVE-2021-2182
- RESERVED
-CVE-2021-2181
- RESERVED
-CVE-2021-2180
- RESERVED
+CVE-2021-2192 (Vulnerability in the Oracle Solaris product of Oracle Systems
(compone ...)
+ TODO: check
+CVE-2021-2191 (Vulnerability in the Oracle Business Intelligence Enterprise
Edition p ...)
+ TODO: check
+CVE-2021-2190 (Vulnerability in the Oracle Sales Offline product of Oracle
E-Business ...)
+ TODO: check
+CVE-2021-2189 (Vulnerability in the Oracle Sales Offline product of Oracle
E-Business ...)
+ TODO: check
+CVE-2021-2188 (Vulnerability in the Oracle iStore product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2187 (Vulnerability in the Oracle iStore product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2186 (Vulnerability in the Oracle iStore product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2185 (Vulnerability in the Oracle iStore product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2184 (Vulnerability in the Oracle iStore product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2183 (Vulnerability in the Oracle iStore product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2182 (Vulnerability in the Oracle iStore product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2181 (Vulnerability in the Oracle Document Management and
Collaboration prod ...)
+ TODO: check
+CVE-2021-2180 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2179
- RESERVED
+CVE-2021-2179 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2178
- RESERVED
+CVE-2021-2178 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2177
- RESERVED
+CVE-2021-2177 (Vulnerability in the Oracle Secure Global Desktop product of
Oracle Vi ...)
+ TODO: check
CVE-2021-2176
RESERVED
-CVE-2021-2175
- RESERVED
-CVE-2021-2174
- RESERVED
+CVE-2021-2175 (Vulnerability in the Database Vault component of Oracle
Database Serve ...)
+ TODO: check
+CVE-2021-2174 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2173
- RESERVED
-CVE-2021-2172
- RESERVED
+CVE-2021-2173 (Vulnerability in the Recovery component of Oracle Database
Server. Sup ...)
+ TODO: check
+CVE-2021-2172 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2171
- RESERVED
+CVE-2021-2171 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2170
- RESERVED
+CVE-2021-2170 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2169
- RESERVED
+CVE-2021-2169 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
CVE-2021-2168
RESERVED
-CVE-2021-2167
- RESERVED
-CVE-2021-2166
- RESERVED
+CVE-2021-2167 (Vulnerability in the Oracle Solaris product of Oracle Systems
(compone ...)
+ TODO: check
+CVE-2021-2166 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
- mysql-5.7 <removed>
CVE-2021-2165
RESERVED
-CVE-2021-2164
- RESERVED
+CVE-2021-2164 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2163
- RESERVED
+CVE-2021-2163 (Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM
Enterpr ...)
- openjdk-17 17~19-1
- openjdk-11 11.0.11+9-1
- openjdk-8 <removed>
-CVE-2021-2162
- RESERVED
+CVE-2021-2162 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2161
- RESERVED
+CVE-2021-2161 (Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM
Enterpr ...)
- openjdk-17 17~19-1
- openjdk-11 11.0.11+9-1
- openjdk-8 <removed>
-CVE-2021-2160
- RESERVED
+CVE-2021-2160 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
- mysql-8.0 <unfixed> (bug #987325)
-CVE-2021-2159
- RESERVED
-CVE-2021-2158
- RESERVED
-CVE-2021-2157
- RESERVED
-CVE-2021-2156
- RESERVED
-CVE-2021-2155
- RESERVED
-CVE-2021-2154
- RESERVED
+CVE-2021-2159 (Vulnerability in the PeopleSoft Enterprise CS Campus Community
product ...)
+ TODO: check
+CVE-2021-2158 (Vulnerability in the Hyperion Financial Management product of
Oracle H ...)
+ TODO: check
+CVE-2021-2157 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
+ TODO: check
+CVE-2021-2156 (Vulnerability in the Oracle Customers Online product of Oracle
E-Busin ...)
+ TODO: check
+CVE-2021-2155 (Vulnerability in the Oracle One-to-One Fulfillment product of
Oracle E ...)
+ TODO: check
+CVE-2021-2154 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-5.7 <removed>
-CVE-2021-2153
- RESERVED
-CVE-2021-2152
- RESERVED
-CVE-2021-2151
- RESERVED
-CVE-2021-2150
- RESERVED
-CVE-2021-2149
- RESERVED
+CVE-2021-2153 (Vulnerability in the Oracle Internet Expenses product of Oracle
E-Busi ...)
+ TODO: check
+CVE-2021-2152 (Vulnerability in the Oracle Business Intelligence Enterprise
Edition p ...)
+ TODO: check
+CVE-2021-2151 (Vulnerability in the PeopleSoft Enterprise PeopleTools product
of Orac ...)
+ TODO: check
+CVE-2021-2150 (Vulnerability in the Oracle iStore product of Oracle E-Business
Suite ...)
+ TODO: check
+CVE-2021-2149 (Vulnerability in the Oracle ZFS Storage Appliance Kit product
of Oracl ...)
+ TODO: check
CVE-2021-2148
RESERVED
-CVE-2021-2147
- RESERVED
-CVE-2021-2146
- RESERVED
+CVE-2021-2147 (Vulnerability in the Oracle ZFS Storage Appliance Kit product
of Oracl ...)
+ TODO: check
+CVE-2021-2146 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
- mysql-5.7 <removed>
-CVE-2021-2145
- RESERVED
+CVE-2021-2145 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 6.1.20-dfsg-1
-CVE-2021-2144
- RESERVED
+CVE-2021-2144 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <unfixed> (bug #987325)
- mysql-5.7 <removed>
CVE-2021-2143
RESERVED
-CVE-2021-2142
- RESERVED
-CVE-2021-2141
- RESERVED
-CVE-2021-2140
- RESERVED
+CVE-2021-2142 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
+ TODO: check
+CVE-2021-2141 (Vulnerability in the Oracle FLEXCUBE Direct Banking product of
Oracle ...)
+ TODO: check
+CVE-2021-2140 (Vulnerability in the Oracle Financial Services Analytical
Applications ...)
+ TODO: check
CVE-2021-2139
RESERVED
CVE-2021-2138 (Vulnerability in the Oracle Cloud Infrastructure Data Science
Notebook ...)
NOT-FOR-US: Oracle
CVE-2021-2137
RESERVED
-CVE-2021-2136
- RESERVED
-CVE-2021-2135
- RESERVED
-CVE-2021-2134
- RESERVED
+CVE-2021-2136 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
+ TODO: check
+CVE-2021-2135 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
+ TODO: check
+CVE-2021-2134 (Vulnerability in the Enterprise Manager for Fusion Middleware
product ...)
+ TODO: check
CVE-2021-2133
RESERVED
CVE-2021-2132
@@ -30207,8 +30236,8 @@ CVE-2021-2055 (Vulnerability in the MySQL Server
product of Oracle MySQL (compon
- mysql-8.0 8.0.22-1
CVE-2021-2054 (Vulnerability in the RDBMS Sharding component of Oracle
Database Serve ...)
NOT-FOR-US: Oracle
-CVE-2021-2053
- RESERVED
+CVE-2021-2053 (Vulnerability in the Enterprise Manager Base Platform product
of Oracl ...)
+ TODO: check
CVE-2021-2052 (Vulnerability in the JD Edwards EnterpriseOne Orchestrator
product of ...)
NOT-FOR-US: Oracle
CVE-2021-2051 (Vulnerability in the Oracle BI Publisher product of Oracle
Fusion Midd ...)
@@ -30301,8 +30330,8 @@ CVE-2021-2010 (Vulnerability in the MySQL Client
product of Oracle MySQL (compon
- mysql-5.7 <removed> (bug #981194)
CVE-2021-2009 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 <not-affected> (Fixed before initial upload)
-CVE-2021-2008
- RESERVED
+CVE-2021-2008 (Vulnerability in the Enterprise Manager for Fusion Middleware
product ...)
+ TODO: check
CVE-2021-2007 (Vulnerability in the MySQL Client product of Oracle MySQL
(component: ...)
- mysql-8.0 <not-affected> (Fixed before initial upload)
- mysql-5.7 <removed> (bug #981194)
@@ -35294,7 +35323,7 @@ CVE-2020-28387 (A vulnerability has been identified in
Solid Edge SE2020 (All Ve
NOT-FOR-US: Siemens
CVE-2020-28386 (A vulnerability has been identified in Solid Edge SE2020 (All
Versions ...)
NOT-FOR-US: Siemens
-CVE-2020-28385 (A vulnerability has been identified in Solid Edge SE2020 (All
Versions ...)
+CVE-2020-28385 (A vulnerability has been identified in Solid Edge SE2020 (All
versions ...)
NOT-FOR-US: Siemens
CVE-2020-28384 (A vulnerability has been identified in Solid Edge SE2020 (All
Versions ...)
NOT-FOR-US: Siemens
@@ -37984,158 +38013,109 @@ CVE-2021-0277
RESERVED
CVE-2021-0276
RESERVED
-CVE-2021-0275
- RESERVED
+CVE-2021-0275 (A Cross-site Scripting (XSS) vulnerability in J-Web on Juniper
Network ...)
NOT-FOR-US: Juniper
CVE-2021-0274
RESERVED
-CVE-2021-0273
- RESERVED
+CVE-2021-0273 (An always-incorrect control flow implementation in the implicit
filter ...)
NOT-FOR-US: Juniper
-CVE-2021-0272
- RESERVED
+CVE-2021-0272 (A kernel memory leak in QFX10002-32Q, QFX10002-60C,
QFX10002-72Q, QFX1 ...)
NOT-FOR-US: Juniper
-CVE-2021-0271
- RESERVED
+CVE-2021-0271 (A Double Free vulnerability in the software forwarding
interface daemo ...)
NOT-FOR-US: Juniper
-CVE-2021-0270
- RESERVED
+CVE-2021-0270 (On PTX Series and QFX10k Series devices with the "inline-jflow"
featur ...)
NOT-FOR-US: Juniper
-CVE-2021-0269
- RESERVED
+CVE-2021-0269 (The improper handling of client-side parameters in J-Web of
Juniper Ne ...)
NOT-FOR-US: Juniper
-CVE-2021-0268
- RESERVED
+CVE-2021-0268 (An Improper Neutralization of CRLF Sequences in HTTP Headers
('HTTP Re ...)
NOT-FOR-US: Juniper
-CVE-2021-0267
- RESERVED
+CVE-2021-0267 (An Improper Input Validation vulnerability in the active-lease
query p ...)
NOT-FOR-US: Juniper
-CVE-2021-0266
- RESERVED
-CVE-2021-0265
- RESERVED
+CVE-2021-0266 (The use of multiple hard-coded cryptographic keys in cSRX
Series softw ...)
+ TODO: check
+CVE-2021-0265 (An unvalidated REST API in the AppFormix Agent of Juniper
Networks App ...)
NOT-FOR-US: Juniper
-CVE-2021-0264
- RESERVED
+CVE-2021-0264 (A vulnerability in the processing of traffic matching a
firewall filte ...)
NOT-FOR-US: Juniper
-CVE-2021-0263
- RESERVED
+CVE-2021-0263 (A Data Processing vulnerability in the Multi-Service process
(multi-sv ...)
NOT-FOR-US: Juniper
-CVE-2021-0262
- RESERVED
+CVE-2021-0262 (Through routine static code analysis of the Juniper Networks
Junos OS ...)
NOT-FOR-US: Juniper
-CVE-2021-0261
- RESERVED
+CVE-2021-0261 (A vulnerability in the HTTP/HTTPS service used by J-Web, Web
Authentic ...)
NOT-FOR-US: Juniper
-CVE-2021-0260
- RESERVED
+CVE-2021-0260 (An improper authorization vulnerability in the Simple Network
Manageme ...)
NOT-FOR-US: Juniper
-CVE-2021-0259
- RESERVED
+CVE-2021-0259 (Due to a vulnerability in DDoS protection in Juniper Networks
Junos OS ...)
NOT-FOR-US: Juniper
-CVE-2021-0258
- RESERVED
+CVE-2021-0258 (A vulnerability in the forwarding of transit TCPv6 packets
received on ...)
NOT-FOR-US: Juniper
-CVE-2021-0257
- RESERVED
+CVE-2021-0257 (On Juniper Networks MX Series and EX9200 Series platforms with
Trio-ba ...)
NOT-FOR-US: Juniper
-CVE-2021-0256
- RESERVED
+CVE-2021-0256 (A sensitive information disclosure vulnerability in the
mosquitto mess ...)
NOT-FOR-US: Juniper
-CVE-2021-0255
- RESERVED
+CVE-2021-0255 (A local privilege escalation vulnerability in ethtraceroute of
Juniper ...)
NOT-FOR-US: Juniper
-CVE-2021-0254
- RESERVED
+CVE-2021-0254 (A buffer size validation vulnerability in the overlayd service
of Juni ...)
NOT-FOR-US: Juniper
-CVE-2021-0253
- RESERVED
+CVE-2021-0253 (NFX Series devices using Juniper Networks Junos OS are
susceptible to ...)
NOT-FOR-US: Juniper
-CVE-2021-0252
- RESERVED
+CVE-2021-0252 (NFX Series devices using Juniper Networks Junos OS are
susceptible to ...)
NOT-FOR-US: Juniper
-CVE-2021-0251
- RESERVED
-CVE-2021-0250
- RESERVED
+CVE-2021-0251 (A NULL Pointer Dereference vulnerability in the Captive Portal
Content ...)
+ TODO: check
+CVE-2021-0250 (In segment routing traffic engineering (SRTE) environments
where the B ...)
NOT-FOR-US: Juniper
-CVE-2021-0249
- RESERVED
+CVE-2021-0249 (On SRX Series devices configured with UTM services a buffer
overflow v ...)
NOT-FOR-US: Juniper
-CVE-2021-0248
- RESERVED
+CVE-2021-0248 (This issue is not applicable to NFX NextGen Software. On NFX
Series de ...)
NOT-FOR-US: Juniper
-CVE-2021-0247
- RESERVED
+CVE-2021-0247 (A Race Condition (Concurrent Execution using Shared Resource
with Impr ...)
NOT-FOR-US: Juniper
-CVE-2021-0246
- RESERVED
+CVE-2021-0246 (On SRX1500, SRX4100, SRX4200, SRX4600, SRX5000 Series with
SPC2/SPC3, ...)
NOT-FOR-US: Juniper
-CVE-2021-0245
- RESERVED
+CVE-2021-0245 (A Use of Hard-coded Credentials vulnerability in Juniper
Networks Juno ...)
NOT-FOR-US: Juniper
-CVE-2021-0244
- RESERVED
+CVE-2021-0244 (A signal handler race condition exists in the Layer 2 Address
Learning ...)
NOT-FOR-US: Juniper
-CVE-2021-0243
- RESERVED
+CVE-2021-0243 (Improper Handling of Unexpected Data in the firewall policer of
Junipe ...)
NOT-FOR-US: Juniper
-CVE-2021-0242
- RESERVED
+CVE-2021-0242 (A vulnerability due to the improper handling of direct memory
access ( ...)
NOT-FOR-US: Juniper
-CVE-2021-0241
- RESERVED
+CVE-2021-0241 (On Juniper Networks Junos OS platforms configured as DHCPv6
local serv ...)
NOT-FOR-US: Juniper
-CVE-2021-0240
- RESERVED
+CVE-2021-0240 (On Juniper Networks Junos OS platforms configured as DHCPv6
local serv ...)
NOT-FOR-US: Juniper
-CVE-2021-0239
- RESERVED
+CVE-2021-0239 (In Juniper Networks Junos OS Evolved, receipt of a stream of
specific ...)
NOT-FOR-US: Juniper
-CVE-2021-0238
- RESERVED
+CVE-2021-0238 (When a MX Series is configured as a Broadband Network Gateway
(BNG) ba ...)
NOT-FOR-US: Juniper
-CVE-2021-0237
- RESERVED
+CVE-2021-0237 (On Juniper Networks EX4300-MP Series, EX4600 Series, EX4650
Series, QF ...)
NOT-FOR-US: Juniper
-CVE-2021-0236
- RESERVED
+CVE-2021-0236 (Due to an improper check for unusual or exceptional conditions
in Juni ...)
NOT-FOR-US: Juniper
-CVE-2021-0235
- RESERVED
+CVE-2021-0235 (On SRX1500, SRX4100, SRX4200, SRX4600, SRX5000 Series with
SPC2/SPC3, ...)
NOT-FOR-US: Juniper
-CVE-2021-0234
- RESERVED
+CVE-2021-0234 (Due to an improper Initialization vulnerability on Juniper
Networks Ju ...)
NOT-FOR-US: Juniper
-CVE-2021-0233
- RESERVED
+CVE-2021-0233 (A vulnerability in Juniper Networks Junos OS ACX500 Series,
ACX4000 Se ...)
NOT-FOR-US: Juniper
-CVE-2021-0232
- RESERVED
+CVE-2021-0232 (An authentication bypass vulnerability in the Juniper Networks
Paragon ...)
NOT-FOR-US: Juniper
-CVE-2021-0231
- RESERVED
+CVE-2021-0231 (A path traversal vulnerability in the Juniper Networks SRX and
vSRX Se ...)
NOT-FOR-US: Juniper
-CVE-2021-0230
- RESERVED
+CVE-2021-0230 (On Juniper Networks Junos OS platforms with link aggregation
(lag) con ...)
NOT-FOR-US: Juniper
-CVE-2021-0229
- RESERVED
+CVE-2021-0229 (An uncontrolled resource consumption vulnerability in Message
Queue Te ...)
NOT-FOR-US: Juniper
-CVE-2021-0228
- RESERVED
+CVE-2021-0228 (An improper check for unusual or exceptional conditions
vulnerability ...)
NOT-FOR-US: Juniper
-CVE-2021-0227
- RESERVED
+CVE-2021-0227 (An improper restriction of operations within the bounds of a
memory bu ...)
NOT-FOR-US: Juniper
-CVE-2021-0226
- RESERVED
+CVE-2021-0226 (On Juniper Networks Junos OS Evolved devices, receipt of a
specific IP ...)
NOT-FOR-US: Juniper
-CVE-2021-0225
- RESERVED
+CVE-2021-0225 (An Improper Check for Unusual or Exceptional Conditions in
Juniper Net ...)
NOT-FOR-US: Juniper
-CVE-2021-0224
- RESERVED
+CVE-2021-0224 (A vulnerability in the handling of internal resources necessary
to bri ...)
NOT-FOR-US: Juniper
CVE-2021-0223 (A local privilege escalation vulnerability in telnetd.real of
Juniper ...)
NOT-FOR-US: Juniper
@@ -38151,13 +38131,11 @@ CVE-2021-0218 (A command injection vulnerability in
the license-check daemon of
NOT-FOR-US: Juniper
CVE-2021-0217 (A vulnerability in processing of certain DHCP packets from
adjacent cl ...)
NOT-FOR-US: Juniper
-CVE-2021-0216
- RESERVED
+CVE-2021-0216 (A vulnerability in Juniper Networks Junos OS running on the
ACX5448 an ...)
NOT-FOR-US: Juniper
CVE-2021-0215 (On Juniper Networks Junos EX series, QFX Series, MX Series and
SRX bra ...)
NOT-FOR-US: Juniper
-CVE-2021-0214
- RESERVED
+CVE-2021-0214 (A vulnerability in the distributed or centralized periodic
packet mana ...)
NOT-FOR-US: Juniper
CVE-2021-0213
RESERVED
@@ -38783,12 +38761,12 @@ CVE-2020-27739 (A Weak Session Management
vulnerability in Citadel WebCit throug
- webcit <removed> (bug #973385)
[buster] - webcit <ignored> (Minor issue)
[stretch] - webcit <ignored> (Minor issue)
-CVE-2020-27738
- RESERVED
-CVE-2020-27737
- RESERVED
-CVE-2020-27736
- RESERVED
+CVE-2020-27738 (A vulnerability has been identified in Nucleus 4 (All versions
< V4 ...)
+ TODO: check
+CVE-2020-27737 (A vulnerability has been identified in Nucleus 4 (All versions
< V4 ...)
+ TODO: check
+CVE-2020-27736 (A vulnerability has been identified in Nucleus 4 (All versions
< V4 ...)
+ TODO: check
CVE-2020-27735 (An XSS issue was discovered in Wing FTP 6.4.4. An arbitrary
IFRAME ele ...)
NOT-FOR-US: Wing FTP
CVE-2018-21269 (checkpath in OpenRC through 0.42.1 might allow local users to
take own ...)
@@ -40763,8 +40741,8 @@ CVE-2020-27011
RESERVED
CVE-2020-27010 (A cross-site scripting (XSS) vulnerability in Trend Micro
InterScan We ...)
NOT-FOR-US: Trend Micro
-CVE-2020-27009
- RESERVED
+CVE-2020-27009 (A vulnerability has been identified in Nucleus NET (All
versions < ...)
+ TODO: check
CVE-2020-27008 (A vulnerability has been identified in JT2Go (All versions
< V13.1. ...)
NOT-FOR-US: JT2Go
CVE-2020-27007 (A vulnerability has been identified in JT2Go (All versions
< V13.1. ...)
@@ -40787,8 +40765,8 @@ CVE-2020-26999 (A vulnerability has been identified in
JT2Go (All versions <
NOT-FOR-US: JT2Go
CVE-2020-26998 (A vulnerability has been identified in JT2Go (All versions
< V13.1. ...)
NOT-FOR-US: JT2Go
-CVE-2020-26997
- RESERVED
+CVE-2020-26997 (A vulnerability has been identified in Solid Edge SE2020 (All
versions ...)
+ TODO: check
CVE-2020-26996 (A vulnerability has been identified in JT2Go (All versions
< V13.1. ...)
NOT-FOR-US: JT2Go
CVE-2020-26995 (A vulnerability has been identified in JT2Go (All versions
< V13.1. ...)
@@ -45083,10 +45061,10 @@ CVE-2020-25246
RESERVED
CVE-2020-25245 (A vulnerability has been identified in DIGSI 4 (All versions
< V4.9 ...)
NOT-FOR-US: Siemens
-CVE-2020-25244
- RESERVED
-CVE-2020-25243
- RESERVED
+CVE-2020-25244 (A vulnerability has been identified in LOGO! Soft Comfort (All
version ...)
+ TODO: check
+CVE-2020-25243 (A vulnerability has been identified in LOGO! Soft Comfort (All
version ...)
+ TODO: check
CVE-2020-25242
RESERVED
CVE-2020-25241 (A vulnerability has been identified in SIMATIC MV400 family
(All Versi ...)
@@ -46654,13 +46632,13 @@ CVE-2020-24561 (A command injection vulnerability in
Trend Micro ServerProtect f
NOT-FOR-US: Trend Micro
CVE-2020-24560 (An incomplete SSL server certification validation
vulnerability in the ...)
NOT-FOR-US: Trend Micro
-CVE-2020-24559 (A vulnerability in Trend Micro Apex One on macOS may allow an
attacker ...)
+CVE-2020-24559 (A vulnerability in Trend Micro Apex One, Worry-Free Business
Security ...)
NOT-FOR-US: Trend Micro
-CVE-2020-24558 (A vulnerability in an Trend Micro Apex One dll may allow an
attacker t ...)
+CVE-2020-24558 (A vulnerability in an Trend Micro Apex One, Worry-Free
Business Securi ...)
NOT-FOR-US: Trend Micro
-CVE-2020-24557 (A vulnerability in Trend Micro Apex One on Microsoft Windows
may allow ...)
+CVE-2020-24557 (A vulnerability in Trend Micro Apex One and Worry-Free
Business Securi ...)
NOT-FOR-US: Trend Micro
-CVE-2020-24556 (A vulnerability in Trend Micro Apex One and OfficeScan XG SP1
on Micro ...)
+CVE-2020-24556 (A vulnerability in Trend Micro Apex One, OfficeScan XG SP1,
Worry-Free ...)
NOT-FOR-US: Trend Micro
CVE-2020-24614 (Fossil before 2.10.2, 2.11.x before 2.11.2, and 2.12.x before
2.12.1 a ...)
- fossil 1:2.12.1-1
@@ -60800,10 +60778,10 @@ CVE-2020-17566
RESERVED
CVE-2020-17565
RESERVED
-CVE-2020-17564
- RESERVED
-CVE-2020-17563
- RESERVED
+CVE-2020-17564 (Path Traversal in FeiFeiCMS v4.0 allows remote attackers to
delete arb ...)
+ TODO: check
+CVE-2020-17563 (Path Traversal in FeiFeiCMS v4.0 allows remote attackers to
delete arb ...)
+ TODO: check
CVE-2020-17562
RESERVED
CVE-2020-17561
@@ -64906,8 +64884,8 @@ CVE-2020-15797 (A vulnerability has been identified in
DCA Vantage Analyzer (All
NOT-FOR-US: DCA Vantage Analyzer
CVE-2020-15796 (A vulnerability has been identified in SIMATIC ET 200SP Open
Controlle ...)
NOT-FOR-US: Siemens
-CVE-2020-15795
- RESERVED
+CVE-2020-15795 (A vulnerability has been identified in Nucleus NET (All
versions < ...)
+ TODO: check
CVE-2020-15794 (A vulnerability has been identified in Desigo Insight (All
versions). ...)
NOT-FOR-US: Desigo Insight
CVE-2020-15793 (A vulnerability has been identified in Desigo Insight (All
versions). ...)
@@ -104596,25 +104574,25 @@ CVE-2019-19301 (A vulnerability has been identified
in SCALANCE X-200 switch fam
NOT-FOR-US: Siemens
CVE-2019-19300 (A vulnerability has been identified in Development/Evaluation
Kits for ...)
NOT-FOR-US: Siemens
-CVE-2019-19299 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-19299 (A vulnerability has been identified in SiNVR/SiVMS Video
Server (All v ...)
NOT-FOR-US: SiNVR 3 Central Control Server (CCS)
-CVE-2019-19298 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-19298 (A vulnerability has been identified in SiNVR/SiVMS Video
Server (All v ...)
NOT-FOR-US: SiNVR 3 Central Control Server (CCS)
-CVE-2019-19297 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-19297 (A vulnerability has been identified in SiNVR/SiVMS Video
Server (All v ...)
NOT-FOR-US: SiNVR 3 Central Control Server (CCS)
-CVE-2019-19296 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-19296 (A vulnerability has been identified in SiNVR/SiVMS Video
Server (All v ...)
NOT-FOR-US: SiNVR 3 Central Control Server (CCS)
-CVE-2019-19295 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-19295 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: SiNVR 3 Central Control Server (CCS)
-CVE-2019-19294 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-19294 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: SiNVR 3 Central Control Server (CCS)
-CVE-2019-19293 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-19293 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: SiNVR 3 Central Control Server (CCS)
-CVE-2019-19292 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-19292 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: SiNVR 3 Central Control Server (CCS)
-CVE-2019-19291 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-19291 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: SiNVR 3 Central Control Server (CCS)
-CVE-2019-19290 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-19290 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: SiNVR 3 Central Control Server (CCS)
CVE-2019-19289 (A vulnerability has been identified in XHQ (All Versions <
6.1). Th ...)
NOT-FOR-US: XHQ
@@ -109597,17 +109575,17 @@ CVE-2019-18344 (Sourcecodester Online Grading
System 1.0 is vulnerable to unauth
NOT-FOR-US: Sourcecodester Online Grading System
CVE-2019-18343
RESERVED
-CVE-2019-18342 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-18342 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: Siemens
-CVE-2019-18341 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-18341 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: Siemens
-CVE-2019-18340 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-18340 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: Siemens
-CVE-2019-18339 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-18339 (A vulnerability has been identified in SiNVR/SiVMS Video
Server (All v ...)
NOT-FOR-US: Siemens
-CVE-2019-18338 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-18338 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: Siemens
-CVE-2019-18337 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-18337 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: Siemens
CVE-2019-18336 (A vulnerability has been identified in SIMATIC S7-300 CPU
family (incl ...)
NOT-FOR-US: Siemens
@@ -123994,7 +123972,7 @@ CVE-2019-13949 (SyGuestBook A5 Version 1.2 has no
CSRF protection mechanism, as
NOT-FOR-US: SyGuestBook A5
CVE-2019-13948 (SyGuestBook A5 Version 1.2 allows stored XSS because the
isValidData f ...)
NOT-FOR-US: SyGuestBook A5
-CVE-2019-13947 (A vulnerability has been identified in SiNVR 3 Central Control
Server ...)
+CVE-2019-13947 (A vulnerability has been identified in Control Center Server
(CCS) (Al ...)
NOT-FOR-US: Siemens
CVE-2019-13946 (A vulnerability has been identified in Development/Evaluation
Kits for ...)
NOT-FOR-US: Siemens
@@ -124040,7 +124018,7 @@ CVE-2019-13926 (A vulnerability has been identified
in SCALANCE S602 (All versio
NOT-FOR-US: Siemens
CVE-2019-13925 (A vulnerability has been identified in SCALANCE S602 (All
versions > ...)
NOT-FOR-US: Siemens
-CVE-2019-13924 (A vulnerability has been identified in SCALANCE X-200 switch
family (i ...)
+CVE-2019-13924 (A vulnerability has been identified in SCALANCE S602 (All
versions < ...)
NOT-FOR-US: Siemens
CVE-2019-13923 (A vulnerability has been identified in IE/WSN-PA Link
WirelessHART Gat ...)
NOT-FOR-US: Siemens
@@ -302304,7 +302282,7 @@ CVE-2015-8215 (net/ipv6/addrconf.c in the IPv6 stack
in the Linux kernel before
- linux-2.6 <removed>
NOTE: Patch for the kernel to harden against invalid MTUs:
http://article.gmane.org/gmane.linux.network/351269
NOTE:
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=77751427a1ff25b27d47a4c36b12c3c8667855ac
(v4.0-rc3)
-CVE-2015-8214 (Siemens SIMATIC CP 343-1 Advanced devices before 3.0.44, CP
343-1 Lean ...)
+CVE-2015-8214 (A vulnerability has been identified in SIMATIC NET CP 342-5
(incl. SIP ...)
NOT-FOR-US: Siemens
CVE-2015-8213 (The get_format function in utils/formats.py in Django before
1.7.x bef ...)
{DSA-3404-1 DLA-349-1}
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d89ca4fae5fda5fd3ecf241bef1241f1109986d1
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d89ca4fae5fda5fd3ecf241bef1241f1109986d1
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
