[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) Thu, 13 May 2021 13:23:40 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
f92cd271 by Salvatore Bonaccorso at 2021-05-13T22:23:10+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,7 +3,7 @@ CVE-2021-3551
 CVE-2021-3550
        RESERVED
 CVE-2021-32925 (admin/user_import.php in Chamilo 1.11.14 reads XML data 
without disabl ...)
-       TODO: check
+       NOT-FOR-US: Chamilo
 CVE-2021-32924
        RESERVED
 CVE-2021-32923
@@ -12849,7 +12849,7 @@ CVE-2021-27415
 CVE-2021-27414
        RESERVED
 CVE-2021-27413 (Omron CX-One Versions 4.60 and prior, including CX-Server 
Versions 5.0 ...)
-       TODO: check
+       NOT-FOR-US: Omron CX-One
 CVE-2021-27412
        RESERVED
 CVE-2021-27411
@@ -17185,9 +17185,9 @@ CVE-2021-25696
 CVE-2021-25695
        RESERVED
 CVE-2021-25694 (Teradici PCoIP Graphics Agent for Windows prior to 21.03 does 
not vali ...)
-       TODO: check
+       NOT-FOR-US: Teradici PCoIP Graphics Agent for Windows
 CVE-2021-25693 (An attacker may cause a Denial of Service (DoS) in multiple 
versions o ...)
-       TODO: check
+       NOT-FOR-US: Teradici PCoIP Agent
 CVE-2021-25692 (Sensitive smart card data is logged in default INFO logs by 
Teradici's ...)
        NOT-FOR-US: Teradici
 CVE-2021-25691
@@ -21250,15 +21250,15 @@ CVE-2021-23912
 CVE-2021-23911
        RESERVED
 CVE-2021-23910 (An issue was discovered in HERMES 2.1 in the MBUX Infotainment 
System  ...)
-       TODO: check
+       NOT-FOR-US: Mercedes-Benz HERMES
 CVE-2021-23909 (An issue was discovered in HERMES 2.1 in the MBUX Infotainment 
System  ...)
-       TODO: check
+       NOT-FOR-US: Mercedes-Benz HERMES
 CVE-2021-23908 (An issue was discovered in the Headunit NTG6 in the MBUX 
Infotainment  ...)
-       TODO: check
+       NOT-FOR-US: MBUX Infotainment System on Mercedes-Benz vehicles
 CVE-2021-23907 (An issue was discovered in the Headunit NTG6 in the MBUX 
Infotainment  ...)
-       TODO: check
+       NOT-FOR-US: MBUX Infotainment System on Mercedes-Benz vehicles
 CVE-2021-23906 (An issue was discovered in the Headunit NTG6 in the MBUX 
Infotainment  ...)
-       TODO: check
+       NOT-FOR-US: MBUX Infotainment System on Mercedes-Benz vehicles
 CVE-2021-23905
        RESERVED
 CVE-2021-23904
@@ -25113,11 +25113,11 @@ CVE-2021-22156
 CVE-2021-22155 (An Authentication Bypass vulnerability in the SAML 
Authentication comp ...)
        NOT-FOR-US: BlackBerry Workspaces Server
 CVE-2021-22154 (An Information Disclosure vulnerability in the Management 
Console comp ...)
-       TODO: check
+       NOT-FOR-US: BlackBerry UEM
 CVE-2021-22153 (A Remote Code Execution vulnerability in the Management 
Console compon ...)
-       TODO: check
+       NOT-FOR-US: BlackBerry UEM
 CVE-2021-22152 (A Denial of Service due to Improper Input Validation 
vulnerability in  ...)
-       TODO: check
+       NOT-FOR-US: BlackBerry UEM
 CVE-2021-22151
        RESERVED
 CVE-2021-22150
@@ -29298,19 +29298,19 @@ CVE-2021-21001
 CVE-2021-21000
        RESERVED
 CVE-2021-20999 (In Weidm&#252;ller u-controls and IoT-Gateways in versions up 
to 1.12. ...)
-       TODO: check
+       NOT-FOR-US: Weidmueller u-controls and IoT Gateways
 CVE-2021-20998 (In multiple managed switches by WAGO in different versions 
without aut ...)
-       TODO: check
+       NOT-FOR-US: WAGO
 CVE-2021-20997 (In multiple managed switches by WAGO in different versions it 
is possi ...)
-       TODO: check
+       NOT-FOR-US: WAGO
 CVE-2021-20996 (In multiple managed switches by WAGO in different versions 
special cra ...)
-       TODO: check
+       NOT-FOR-US: WAGO
 CVE-2021-20995 (In multiple managed switches by WAGO in different versions the 
webserv ...)
-       TODO: check
+       NOT-FOR-US: WAGO
 CVE-2021-20994 (In multiple managed switches by WAGO in different versions an 
attacker ...)
-       TODO: check
+       NOT-FOR-US: WAGO
 CVE-2021-20993 (In multiple managed switches by WAGO in different versions the 
activat ...)
-       TODO: check
+       NOT-FOR-US: WAGO
 CVE-2021-20992 (In Fibaro Home Center 2 and Lite devices in all versions 
provide a web ...)
        NOT-FOR-US: Fibaro Home Center
 CVE-2021-20991 (In Fibaro Home Center 2 and Lite devices with firmware version 
4.540 a ...)
@@ -29320,7 +29320,7 @@ CVE-2021-20990 (In Fibaro Home Center 2 and Lite 
devices with firmware version 4
 CVE-2021-20989 (Fibaro Home Center 2 and Lite devices with firmware version 
4.600 and  ...)
        NOT-FOR-US: Fibaro Home Center
 CVE-2021-20988 (In Hilscher rcX RTOS versions prios to V2.1.14.1 the actual 
UDP packet ...)
-       TODO: check
+       NOT-FOR-US: Hilscher rcX RTOS
 CVE-2021-20987 (A denial of service and memory corruption vulnerability was 
found in H ...)
        NOT-FOR-US: Hilscher EtherNet/IP Core
 CVE-2021-20986 (A Denial of Service vulnerability was found in Hilscher 
PROFINET IO De ...)
@@ -31909,7 +31909,7 @@ CVE-2021-20027
 CVE-2021-20026
        RESERVED
 CVE-2021-20025 (SonicWall Email Security Virtual Appliance version 10.0.9 and 
earlier  ...)
-       TODO: check
+       NOT-FOR-US: SonicWall
 CVE-2021-20024
        RESERVED
 CVE-2021-20023 (SonicWall Email Security version 10.0.9.x contains a 
vulnerability tha ...)
@@ -36865,7 +36865,7 @@ CVE-2020-28724 (Open redirect vulnerability in werkzeug 
before 0.11.6 via a doub
 CVE-2020-28723 (Memory leak in IPv6Param::setAddress in CloudAvid PParam 
1.3.1. ...)
        NOT-FOR-US: CloudAvid
 CVE-2020-28722 (Deskpro Cloud Platform and on-premise 2020.2.3.48207 from 
2020-07-30 c ...)
-       TODO: check
+       NOT-FOR-US: Deskpro Cloud Platform
 CVE-2020-28721
        RESERVED
 CVE-2020-28720
@@ -41064,7 +41064,7 @@ CVE-2020-28065
 CVE-2020-28064
        RESERVED
 CVE-2020-28063 (A file upload issue exists in all versions of ArticleCMS which 
allows  ...)
-       TODO: check
+       NOT-FOR-US: ArticleCMS
 CVE-2020-28062
        RESERVED
 CVE-2020-28061
@@ -56811,7 +56811,7 @@ CVE-2020-21344
 CVE-2020-21343
        RESERVED
 CVE-2020-21342 (Insecure permissions issue in zzcms 201910 via the reset any 
user pass ...)
-       TODO: check
+       NOT-FOR-US: zzcms
 CVE-2020-21341
        RESERVED
 CVE-2020-21340
@@ -59319,7 +59319,7 @@ CVE-2020-20094
 CVE-2020-20093
        RESERVED
 CVE-2020-20092 (File Upload vulnerability exists in ArticleCMS 1.0 via the 
image uploa ...)
-       TODO: check
+       NOT-FOR-US: ArticleCMS
 CVE-2020-20091
        RESERVED
 CVE-2020-20090
@@ -73898,7 +73898,7 @@ CVE-2020-13875
 CVE-2020-13874
        RESERVED
 CVE-2020-13873 (A SQL Injection vulnerability in get_topic_info() in 
sys/CODOF/Forum/T ...)
-       TODO: check
+       NOT-FOR-US: Codoforum
 CVE-2020-13872 (Royal TS before 5 has a 0.0.0.0 listener, which makes it 
easier for at ...)
        NOT-FOR-US: Royal TS
 CVE-2020-13871 (SQLite 3.32.2 has a use-after-free in resetAccumulator in 
select.c bec ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f92cd2712a4c62b72a8df6d9d8e68220ab1d7cb5

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f92cd2712a4c62b72a8df6d9d8e68220ab1d7cb5
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process NFUs

Reply via email to