Author: geissert Date: 2017-12-21 12:08:57 +0000 (Thu, 21 Dec 2017) New Revision: 58779
Modified: data/CVE/list Log: auto NFUs Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-12-21 12:01:22 UTC (rev 58778) +++ data/CVE/list 2017-12-21 12:08:57 UTC (rev 58779) @@ -10431,15 +10431,15 @@ CVE-2017-16683 (Denial of Service (DOS) in SAP Business Objects Platform, Enterprise ...) NOT-FOR-US: SAP Business Objects Platform CVE-2017-16682 (SAP NetWeaver Internet Transaction Server (ITS), SAP Basis from 7.00 ...) - TODO: check + NOT-FOR-US: SAP NetWeaver Internet Transaction Server CVE-2017-16681 (Cross-Site Scripting (XSS) vulnerability in SAP Business Intelligence ...) - TODO: check + NOT-FOR-US: SAP Business Intelligence Promotion Management Application CVE-2017-16680 (Two potential audit log injections in SAP HANA extended application ...) - TODO: check + NOT-FOR-US: SAP HANA extended application services CVE-2017-16679 (URL redirection vulnerability in SAP's Startup Service, SAP KERNEL 32 ...) - TODO: check + NOT-FOR-US: SAP's Startup Service CVE-2017-16678 (Server Side Request Forgery (SSRF) vulnerability in SAP NetWeaver ...) - TODO: check + NOT-FOR-US: SAP NetWeaver Knowledge Management Configuration Service CVE-2017-16677 RESERVED CVE-2017-16676 @@ -55131,13 +55131,13 @@ CVE-2017-1761 RESERVED CVE-2017-1760 (IBM WebSphere MQ 7.5, 8.0, and 9.0 could allow a local user to crash ...) - TODO: check + NOT-FOR-US: IBM WebSphere MQ CVE-2017-1759 RESERVED CVE-2017-1758 RESERVED CVE-2017-1757 (IBM Security Guardium 10.0 is vulnerable to SQL injection. A remote ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1756 RESERVED CVE-2017-1755 @@ -55149,7 +55149,7 @@ CVE-2017-1752 RESERVED CVE-2017-1751 (IBM Robotic Process Automation with Automation Anywhere 10.0.0 is ...) - TODO: check + NOT-FOR-US: IBM Robotic Process Automation with Automation Anywhere CVE-2017-1750 RESERVED CVE-2017-1749 @@ -55159,7 +55159,7 @@ CVE-2017-1747 RESERVED CVE-2017-1746 (IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is ...) - TODO: check + NOT-FOR-US: IBM Jazz for Service Management CVE-2017-1745 RESERVED CVE-2017-1744 @@ -55219,7 +55219,7 @@ CVE-2017-1717 RESERVED CVE-2017-1716 (IBM Tivoli Workload Scheduler 8.6.0, 9.1.0, and 9.2.0 could disclose ...) - TODO: check + NOT-FOR-US: IBM Tivoli Workload Scheduler CVE-2017-1715 RESERVED CVE-2017-1714 @@ -55259,11 +55259,11 @@ CVE-2017-1697 RESERVED CVE-2017-1696 (IBM QRadar 7.2 and 7.3 could allow a remote authenticated attacker to ...) - TODO: check + NOT-FOR-US: IBM QRadar CVE-2017-1695 RESERVED CVE-2017-1694 (IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain ...) - TODO: check + NOT-FOR-US: IBM Integration Bus CVE-2017-1693 RESERVED CVE-2017-1692 @@ -55285,7 +55285,7 @@ CVE-2017-1684 RESERVED CVE-2017-1683 (IBM Connections Engagement Center 6.0 is vulnerable to cross-site ...) - TODO: check + NOT-FOR-US: IBM Connections Engagement Center CVE-2017-1682 RESERVED CVE-2017-1681 @@ -55381,15 +55381,15 @@ CVE-2017-1636 RESERVED CVE-2017-1635 (IBM Tivoli Monitoring V6 6.2.2.x could allow a remote attacker to ...) - TODO: check + NOT-FOR-US: IBM Tivoli Monitoring CVE-2017-1634 RESERVED CVE-2017-1633 RESERVED CVE-2017-1632 (IBM Sterling File Gateway 2.2 is vulnerable to cross-site scripting. ...) - TODO: check + NOT-FOR-US: IBM Sterling File Gateway CVE-2017-1631 (IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is ...) - TODO: check + NOT-FOR-US: IBM Jazz for Service Management CVE-2017-1630 RESERVED CVE-2017-1629 @@ -55425,7 +55425,7 @@ CVE-2017-1614 RESERVED CVE-2017-1613 (IBM Connections 6.0 could allow an unauthenticated remote attacker to ...) - TODO: check + NOT-FOR-US: IBM Connections CVE-2017-1612 RESERVED CVE-2017-1611 @@ -55439,7 +55439,7 @@ CVE-2017-1607 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to cross-site ...) NOT-FOR-US: IBM CVE-2017-1606 (IBM Financial Transaction Manager (FTM) for Multi-Platform (MP) ...) - TODO: check + NOT-FOR-US: IBM Financial Transaction Manager CVE-2017-1605 RESERVED CVE-2017-1604 @@ -55451,17 +55451,17 @@ CVE-2017-1601 RESERVED CVE-2017-1600 (IBM Security Guardium 10.0 Database Activity Monitor is vulnerable to ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1599 RESERVED CVE-2017-1598 (IBM Security Guardium 10.0 Database Activity Monitor uses weaker than ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1597 RESERVED CVE-2017-1596 (IBM Security Guardium 10.0 Database Activity Monitor could allow a ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1595 (IBM Security Guardium 10.0 Database Activity Monitor could allow a ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1594 RESERVED CVE-2017-1593 (IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0, and 6.0 is vulnerable to ...) @@ -55535,7 +55535,7 @@ CVE-2017-1559 RESERVED CVE-2017-1558 (IBM Maximo Asset Management 7.5 and 7.6 could allow a remote attacker ...) - TODO: check + NOT-FOR-US: IBM Maximo Asset Management CVE-2017-1557 RESERVED CVE-2017-1556 (IBM API Connect 5.0.7.0 through 5.0.7.2 is vulnerable to a regular ...) @@ -55551,15 +55551,15 @@ CVE-2017-1551 (IBM API Connect 5.0.0.0 through 5.0.7.2 could allow a remote attacker ...) NOT-FOR-US: IBM CVE-2017-1550 (IBM Sterling File Gateway 2.2 could allow an authenticated user to ...) - TODO: check + NOT-FOR-US: IBM Sterling File Gateway CVE-2017-1549 (IBM Sterling File Gateway 2.2 is vulnerable to cross-site scripting. ...) - TODO: check + NOT-FOR-US: IBM Sterling File Gateway CVE-2017-1548 (IBM Sterling File Gateway 2.2 could allow a remote attacker to ...) - TODO: check + NOT-FOR-US: IBM Sterling File Gateway CVE-2017-1547 RESERVED CVE-2017-1546 (IBM DOORS Next Generation (DNG/RRC) 4.07, 5.0, and 6.0 is vulnerable ...) - TODO: check + NOT-FOR-US: IBM DOORS Next Generation CVE-2017-1545 RESERVED CVE-2017-1544 @@ -55579,7 +55579,7 @@ CVE-2017-1537 RESERVED CVE-2017-1536 (IBM Support Tools for Lotus WCM (IBM WebSphere Portal 7.0, 8.0, 8.5 ...) - TODO: check + NOT-FOR-US: IBM Support Tools for Lotus WCM CVE-2017-1535 (IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This ...) NOT-FOR-US: IBM CVE-2017-1534 @@ -55637,7 +55637,7 @@ CVE-2017-1508 (IBM Informix Dynamic Server 12.1 could allow a local user logged in ...) NOT-FOR-US: IBM CVE-2017-1507 (IBM Jazz Foundation Products could disclose sensitive information ...) - TODO: check + NOT-FOR-US: IBM Jazz Foundation Products CVE-2017-1506 RESERVED CVE-2017-1505 @@ -55663,7 +55663,7 @@ CVE-2017-1495 (IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a ...) NOT-FOR-US: IBM CVE-2017-1494 (IBM Business Process Manager 8.5 is vulnerable to cross-site ...) - TODO: check + NOT-FOR-US: IBM Business Process Manager CVE-2017-1493 RESERVED CVE-2017-1492 @@ -55805,7 +55805,7 @@ CVE-2017-1424 (IBM Business Process Manager 8.5.7 is vulnerable to cross-site ...) NOT-FOR-US: IBM CVE-2017-1423 (IBM WebSphere Portal 8.5 and 9.0 exposes backend server URLs that are ...) - TODO: check + NOT-FOR-US: IBM WebSphere Portal CVE-2017-1422 (IBM MaaS360 DTM all versions up to 3.81 does not perform proper ...) NOT-FOR-US: IBM CVE-2017-1421 (IBM iNotes is vulnerable to cross-site scripting. This vulnerability ...) @@ -56111,7 +56111,7 @@ CVE-2017-1271 (IBM Security Guardium 9.0, 9.1, and 9.5 supports interaction between ...) NOT-FOR-US: IBM CVE-2017-1270 (IBM Security Guardium 10.0 does not renew a session variable after a ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1269 (IBM Security Guardium 10.0 and 10.1 is vulnerable to SQL injection. A ...) NOT-FOR-US: IBM CVE-2017-1268 @@ -56119,7 +56119,7 @@ CVE-2017-1267 (IBM Security Guardium 10.0 and 10.1 processes patches, image backups ...) NOT-FOR-US: IBM CVE-2017-1266 (IBM Security Guardium 10.0 specifies permissions for a ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1265 RESERVED CVE-2017-1264 (IBM Security Guardium 10.0 does not prove or insufficiently proves ...) @@ -56127,9 +56127,9 @@ CVE-2017-1263 RESERVED CVE-2017-1262 (IBM Security Guardium 10.0 is vulnerable to HTTP response splitting ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1261 (IBM Security Guardium 10.0 stores potentially sensitive information in ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1260 RESERVED CVE-2017-1259 @@ -56137,7 +56137,7 @@ CVE-2017-1258 (IBM Security Guardium 10.0 and 10.1 does not perform an authentication ...) NOT-FOR-US: IBM CVE-2017-1257 (IBM Security Guardium 10.0 discloses sensitive information to ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1256 (IBM Security Guardium 10.0, 10.1 is vulnerable to cross-site ...) NOT-FOR-US: IBM CVE-2017-1255 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits