Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e2b153db by Salvatore Bonaccorso at 2021-10-05T22:30:05+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1036,11 +1036,11 @@ CVE-2021-41557
CVE-2021-41556
RESERVED
CVE-2021-41555 (** UNSUPPORTED WHEN ASSIGNED ** In ARCHIBUS Web Central
21.3.3.815 (a ...)
- TODO: check
+ NOT-FOR-US: ARCHIBUS Web Central
CVE-2021-41554 (** UNSUPPORTED WHEN ASSIGNED ** ARCHIBUS Web Central
21.3.3.815 (a ver ...)
- TODO: check
+ NOT-FOR-US: ARCHIBUS Web Central
CVE-2021-41553 (** UNSUPPORTED WHEN ASSIGNED ** In ARCHIBUS Web Central
21.3.3.815 (a ...)
- TODO: check
+ NOT-FOR-US: ARCHIBUS Web Central
CVE-2021-41552
RESERVED
CVE-2021-41551
@@ -1634,7 +1634,7 @@ CVE-2021-41288 (Zoho ManageEngine OpManager version
125466 and below is vulnerab
CVE-2021-41287
RESERVED
CVE-2021-41286 (Omikron MultiCash Desktop 4.00.008.SP5 relies on a client-side
authent ...)
- TODO: check
+ NOT-FOR-US: Omikron MultiCash Desktop
CVE-2021-3804 (taro is vulnerable to Inefficient Regular Expression Complexity
...)
NOT-FOR-US: NervJS Taro
CVE-2016-20012 (OpenSSH through 8.7 allows remote attackers, who have a
suspicion that ...)
@@ -11119,7 +11119,7 @@ CVE-2021-37225
CVE-2021-37224
RESERVED
CVE-2021-37223 (Nagios Enterprises NagiosXI <= 5.8.4 contains a Server-Side
Request ...)
- TODO: check
+ NOT-FOR-US: Nagios XI
CVE-2021-37222 (Parsers in the open source project RCDCAP before 1.0.5 allow
remote at ...)
NOT-FOR-US: RCDCAP
CVE-2021-37221
@@ -15143,13 +15143,13 @@ CVE-2021-35508 (NMSAccess32.exe in TeraRecon
AQNetClient 4.4.13 allows attackers
CVE-2021-35507
RESERVED
CVE-2021-35506 (Afian FileRun 2021.03.26 allows XSS when an administrator
encounters a ...)
- TODO: check
+ NOT-FOR-US: Afian FileRun
CVE-2021-35505 (Afian FileRun 2021.03.26 allows Remote Code Execution (by
administrato ...)
- TODO: check
+ NOT-FOR-US: Afian FileRun
CVE-2021-35504 (Afian FileRun 2021.03.26 allows Remote Code Execution (by
administrato ...)
- TODO: check
+ NOT-FOR-US: Afian FileRun
CVE-2021-35503 (Afian FileRun 2021.03.26 allows stored XSS via an HTTP
X-Forwarded-For ...)
- TODO: check
+ NOT-FOR-US: Afian FileRun
CVE-2021-35502
(app/View/Elements/genericElements/IndexTable/Fields/generic_field.ctp ...)
NOT-FOR-US: MISP
CVE-2021-3622
@@ -15195,9 +15195,9 @@ CVE-2021-35493 (The WebFOCUS Reporting Server and
WebFOCUS Client components of
CVE-2021-3619 (Rapid7 Velociraptor 0.5.9 and prior is vulnerable to a
post-authentica ...)
NOT-FOR-US: Rapid7 Velociraptor
CVE-2021-35492 (Wowza Streaming Engine through 4.8.11+5 could allow an
authenticated, ...)
- TODO: check
+ NOT-FOR-US: Wowza Streaming Engine
CVE-2021-35491 (A Cross-Site Request Forgery (CSRF) vulnerability in Wowza
Streaming E ...)
- TODO: check
+ NOT-FOR-US: Wowza Streaming Engine
CVE-2021-35490
RESERVED
CVE-2021-35489
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e2b153dbd73b6df7040738d1441a6ec878b175f6
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e2b153dbd73b6df7040738d1441a6ec878b175f6
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
