Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 6641a61b by Salvatore Bonaccorso at 2021-09-02T10:16:06+02:00 Process some more NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -11771,7 +11771,7 @@ CVE-2021-35240 (A security researcher stored XSS via a Help Server setting. This CVE-2021-35239 (A security researcher found a user with Orion map manage rights could ...) NOT-FOR-US: SolarWinds CVE-2021-35238 (User with Orion Platform Admin Rights could store XSS through URL POST ...) - TODO: check + NOT-FOR-US: Solarwinds CVE-2021-35237 RESERVED CVE-2021-35236 @@ -11811,13 +11811,13 @@ CVE-2021-35220 (Command Injection vulnerability in EmailWebPage API which can le CVE-2021-35219 (ExportToPdfCmd Arbitrary File Read Information Disclosure Vulnerabilit ...) NOT-FOR-US: SolarWinds CVE-2021-35218 (Deserialization of Untrusted Data in the Web Console Chart Endpoint ca ...) - TODO: check + NOT-FOR-US: Solarwinds CVE-2021-35217 RESERVED CVE-2021-35216 (Insecure Deserialization of untrusted data remote code execution vulne ...) - TODO: check + NOT-FOR-US: Solarwinds CVE-2021-35215 (Insecure deserialization leading to Remote Code Execution was detected ...) - TODO: check + NOT-FOR-US: Solarwinds CVE-2021-35214 RESERVED CVE-2021-35213 (An Improper Access Control Privilege Escalation Vulnerability was disc ...) @@ -12809,7 +12809,7 @@ CVE-2021-34767 CVE-2021-34766 RESERVED CVE-2021-34765 (A vulnerability in the web UI for Cisco Nexus Insights could allow an ...) - TODO: check + NOT-FOR-US: Cisco CVE-2021-34764 RESERVED CVE-2021-34763 @@ -12821,7 +12821,7 @@ CVE-2021-34761 CVE-2021-34760 RESERVED CVE-2021-34759 (A vulnerability in the web-based management interface of Cisco Identit ...) - TODO: check + NOT-FOR-US: Cisco CVE-2021-34758 RESERVED CVE-2021-34757 @@ -12847,7 +12847,7 @@ CVE-2021-34748 CVE-2021-34747 RESERVED CVE-2021-34746 (A vulnerability in the TACACS+ authentication, authorization and accou ...) - TODO: check + NOT-FOR-US: Cisco CVE-2021-34745 (A vulnerability in the AppDynamics .NET Agent for Windows could allow ...) NOT-FOR-US: .NET Agent for Windows CVE-2021-34744 @@ -12873,9 +12873,9 @@ CVE-2021-34735 CVE-2021-34734 (A vulnerability in the Link Layer Discovery Protocol (LLDP) implementa ...) NOT-FOR-US: Cisco CVE-2021-34733 (A vulnerability in the CLI of Cisco Prime Infrastructure and Cisco Evo ...) - TODO: check + NOT-FOR-US: Cisco CVE-2021-34732 (A vulnerability in the web-based management interface of Cisco Prime C ...) - TODO: check + NOT-FOR-US: Cisco CVE-2021-34731 RESERVED CVE-2021-34730 (A vulnerability in the Universal Plug-and-Play (UPnP) service of Cisco ...) @@ -78112,25 +78112,25 @@ CVE-2020-20351 CVE-2020-20350 RESERVED CVE-2020-20349 (WTCMS 1.0 contains a stored cross-site scripting (XSS) vulnerability i ...) - TODO: check + NOT-FOR-US: WTCMS CVE-2020-20348 (WTCMS 1.0 contains a stored cross-site scripting (XSS) vulnerability i ...) - TODO: check + NOT-FOR-US: WTCMS CVE-2020-20347 (WTCMS 1.0 contains a stored cross-site scripting (XSS) vulnerability i ...) - TODO: check + NOT-FOR-US: WTCMS CVE-2020-20346 RESERVED CVE-2020-20345 (WTCMS 1.0 contains a reflective cross-site scripting (XSS) vulnerabili ...) - TODO: check + NOT-FOR-US: WTCMS CVE-2020-20344 (WTCMS 1.0 contains a reflective cross-site scripting (XSS) vulnerabili ...) - TODO: check + NOT-FOR-US: WTCMS CVE-2020-20343 (WTCMS 1.0 contains a cross-site request forgery (CSRF) vulnerability i ...) - TODO: check + NOT-FOR-US: WTCMS CVE-2020-20342 RESERVED CVE-2020-20341 (YzmCMS v5.5 contains a server-side request forgery (SSRF) in the grab_ ...) - TODO: check + NOT-FOR-US: YzmCMS CVE-2020-20340 (A SQL injection vulnerability in the 4.edu.php\conn\function.php compo ...) - TODO: check + NOT-FOR-US: S-CMS CVE-2020-20339 RESERVED CVE-2020-20338 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6641a61b495558942b3a7c36933157a8643669b0 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6641a61b495558942b3a7c36933157a8643669b0 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits