Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
26b86b6e by Salvatore Bonaccorso at 2021-09-09T22:17:16+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1280,7 +1280,7 @@ CVE-2021-40286
CVE-2021-40285
RESERVED
CVE-2021-40284 (D-Link DSL-3782 EU v1.01:EU v1.03 is affected by a buffer
overflow whi ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2021-40283
RESERVED
CVE-2021-40282
@@ -1402,9 +1402,9 @@ CVE-2021-40225
CVE-2021-40224
RESERVED
CVE-2021-40223 (Rittal CMC PU III Web management (version V3.11.00_2) fails to
sanitiz ...)
- TODO: check
+ NOT-FOR-US: Rittal CMC PU III Web management
CVE-2021-40222 (Rittal CMC PU III Web management Version affected: V3.11.00_2.
Version ...)
- TODO: check
+ NOT-FOR-US: Rittal CMC PU III Web management
CVE-2021-40221
RESERVED
CVE-2021-40220
@@ -3023,9 +3023,9 @@ CVE-2021-39461
CVE-2021-39460
RESERVED
CVE-2021-39459 (Remote code execution in the modules component in Yakamara
Media Redax ...)
- TODO: check
+ NOT-FOR-US: Yakamara Media Redaxo CMS
CVE-2021-39458 (Triggering an error page of the import process in Yakamara
Media Redax ...)
- TODO: check
+ NOT-FOR-US: Yakamara Media Redaxo CMS
CVE-2021-39457
RESERVED
CVE-2021-39456
@@ -3397,7 +3397,7 @@ CVE-2021-39298
CVE-2021-39297
RESERVED
CVE-2021-39296 (In OpenBMC 2.9, crafted IPMI messages allow an attacker to
bypass auth ...)
- TODO: check
+ NOT-FOR-US: OpenBMC
CVE-2021-39295
RESERVED
CVE-2021-3727
@@ -4733,19 +4733,19 @@ CVE-2021-38729
CVE-2021-38728
RESERVED
CVE-2021-38727 (FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in
/fuel/index ...)
- TODO: check
+ NOT-FOR-US: FUEL CMS
CVE-2021-38726
RESERVED
CVE-2021-38725 (Fuel CMS 1.5.0 has a brute force vulnerability in
fuel/modules/fuel/co ...)
- TODO: check
+ NOT-FOR-US: FUEL CMS
CVE-2021-38724
RESERVED
CVE-2021-38723 (FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in
/fuel/index ...)
- TODO: check
+ NOT-FOR-US: FUEL CMS
CVE-2021-38722
RESERVED
CVE-2021-38721 (FUEL CMS 1.5.0 login.php contains a cross-site request forgery
(CSRF) ...)
- TODO: check
+ NOT-FOR-US: FUEL CMS
CVE-2021-38720
RESERVED
CVE-2021-38719
@@ -5455,7 +5455,7 @@ CVE-2021-38410
CVE-2021-38409
RESERVED
CVE-2021-38408 (A stack-based buffer overflow vulnerability in Advantech
WebAccess Ver ...)
- TODO: check
+ NOT-FOR-US: Advantech WebAccess
CVE-2021-38407
RESERVED
CVE-2021-38406
@@ -5654,25 +5654,25 @@ CVE-2021-38327
CVE-2021-38326
RESERVED
CVE-2021-38325 (The User Activation Email WordPress plugin is vulnerable to
Reflected ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-38324 (The SP Rental Manager WordPress plugin is vulnerable to SQL
Injection ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-38323 (The RentPress WordPress plugin is vulnerable to Reflected
Cross-Site S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-38322 (The Twitter Friends Widget WordPress plugin is vulnerable to
Reflected ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-38321 (The Custom Menu Plugin WordPress plugin is vulnerable to
Reflected Cro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-38320 (The simpleSAMLphp Authentication WordPress plugin is
vulnerable to Ref ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-38319 (The More From Google WordPress plugin is vulnerable to
Reflected Cross ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-38318 (The 3D Cover Carousel WordPress plugin is vulnerable to
Reflected Cros ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-38317 (The Konnichiwa! Membership WordPress plugin is vulnerable to
Reflected ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-38316 (The WP Academic People List WordPress plugin is vulnerable to
Reflecte ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-38315 (The SP Project & Document Manager WordPress plugin is
vulnerable t ...)
NOT-FOR-US: WordPress plugin
CVE-2021-38314 (The Gutenberg Template Library & Redux Framework plugin
<= 4.2. ...)
@@ -8461,7 +8461,7 @@ CVE-2021-37103
CVE-2021-37102
RESERVED
CVE-2021-37101 (There is an improper authorization vulnerability in
AIS-BW50-00 9.0.6. ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-37100
RESERVED
CVE-2021-37099
@@ -8960,9 +8960,9 @@ CVE-2021-36873
CVE-2021-36872
RESERVED
CVE-2021-36871 (Multiple Authenticated Persistent Cross-Site Scripting (XSS)
vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Wordpress plugin
CVE-2021-36870 (Multiple Authenticated Persistent Cross-Site Scripting (XSS)
vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Wordpress plugin
CVE-2021-36869
RESERVED
CVE-2021-36868
@@ -19321,13 +19321,13 @@ CVE-2021-32489 (An issue was discovered in the
_send_secure_msg() function of Yu
CVE-2021-32488
RESERVED
CVE-2021-32487 (In modem 2G RRM, there is a possible system crash due to a
heap buffer ...)
- TODO: check
+ NOT-FOR-US: modem 2G RRM
CVE-2021-32486 (In modem 2G RRM, there is a possible system crash due to a
heap buffer ...)
- TODO: check
+ NOT-FOR-US: modem 2G RRM
CVE-2021-32485 (In modem 2G RRM, there is a possible system crash due to a
heap buffer ...)
- TODO: check
+ NOT-FOR-US: modem 2G RRM
CVE-2021-32484 (In modem 2G RRM, there is a possible system crash due to a
heap buffer ...)
- TODO: check
+ NOT-FOR-US: modem 2G RRM
CVE-2021-32483
RESERVED
CVE-2021-32482
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/26b86b6e67521f841682fa2c562663ce5df934eb
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/26b86b6e67521f841682fa2c562663ce5df934eb
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
