Author: jmm
Date: 2017-02-14 22:12:02 +0000 (Tue, 14 Feb 2017)
New Revision: 48940
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-14 21:10:15 UTC (rev 48939)
+++ data/CVE/list 2017-02-14 22:12:02 UTC (rev 48940)
@@ -2726,67 +2726,67 @@
CVE-2017-5170
RESERVED
CVE-2017-5169 (An issue was discovered in Hanwha Techwin Smart Security
Manager ...)
- TODO: check
+ NOT-FOR-US: Hanwha Techwin
CVE-2017-5168 (An issue was discovered in Hanwha Techwin Smart Security
Manager ...)
- TODO: check
+ NOT-FOR-US: Hanwha Techwin
CVE-2017-5167 (An issue was discovered in BINOM3 Universal Multifunctional
Electric ...)
- TODO: check
+ NOT-FOR-US: BINOM3
CVE-2017-5166 (An issue was discovered in BINOM3 Universal Multifunctional
Electric ...)
- TODO: check
+ NOT-FOR-US: BINOM3
CVE-2017-5165 (An issue was discovered in BINOM3 Universal Multifunctional
Electric ...)
- TODO: check
+ NOT-FOR-US: BINOM3
CVE-2017-5164 (An issue was discovered in BINOM3 Universal Multifunctional
Electric ...)
- TODO: check
+ NOT-FOR-US: BINOM3
CVE-2017-5163 (An issue was discovered in Belden Hirschmann GECKO Lite Managed
switch, ...)
- TODO: check
+ NOT-FOR-US: Belden Hirschmann
CVE-2017-5162 (An issue was discovered in BINOM3 Universal Multifunctional
Electric ...)
- TODO: check
+ NOT-FOR-US: BINOM3
CVE-2017-5161 (An issue was discovered in Sielco Sistemi Winlog Lite SCADA
Software, ...)
- TODO: check
+ NOT-FOR-US: Sielco Sistemi
CVE-2017-5160
RESERVED
CVE-2017-5159 (An issue was discovered on Phoenix Contact mGuard devices that
have ...)
- TODO: check
+ NOT-FOR-US: Phoenix Contact mGuard
CVE-2017-5158
RESERVED
CVE-2017-5157 (An issue was discovered in Schneider Electric homeLYnk
Controller, ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2017-5156
RESERVED
CVE-2017-5155 (An issue was discovered in Schneider Electric Wonderware
Historian 2014 ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2017-5154 (An issue was discovered in Advantech WebAccess Version 8.1. To
be able ...)
- TODO: check
+ NOT-FOR-US: Advantech WebAccess
CVE-2017-5153 (An issue was discovered in OSIsoft PI Coresight 2016 R2 and
earlier ...)
- TODO: check
+ NOT-FOR-US: OSIsoft PI Coresight
CVE-2017-5152 (An issue was discovered in Advantech WebAccess Version 8.1. By
...)
- TODO: check
+ NOT-FOR-US: Advantech WebAccess
CVE-2017-5151 (An issue was discovered in VideoInsight Web Client Version
6.3.5.11 and ...)
- TODO: check
+ NOT-FOR-US: VideoInsight Web Client
CVE-2017-5150
RESERVED
CVE-2017-5149 (An issue was discovered in St. Jude Medical Merlin@home,
versions prior ...)
- TODO: check
+ NOT-FOR-US: St. Jude Medical Merlin@home
CVE-2017-5148
RESERVED
CVE-2017-5147
RESERVED
CVE-2017-5146 (An issue was discovered in Carlo Gavazzi VMU-C EM prior to
firmware ...)
- TODO: check
+ NOT-FOR-US: Carlo Gavazzi
CVE-2017-5145 (An issue was discovered in Carlo Gavazzi VMU-C EM prior to
firmware ...)
- TODO: check
+ NOT-FOR-US: Carlo Gavazzi
CVE-2017-5144 (An issue was discovered in Carlo Gavazzi VMU-C EM prior to
firmware ...)
- TODO: check
+ NOT-FOR-US: Carlo Gavazzi
CVE-2017-5143 (An issue was discovered in Honeywell XL Web II controller
XL1000C500 ...)
- TODO: check
+ NOT-FOR-US: Honeywell
CVE-2017-5142 (An issue was discovered in Honeywell XL Web II controller
XL1000C500 ...)
- TODO: check
+ NOT-FOR-US: Honeywell
CVE-2017-5141 (An issue was discovered in Honeywell XL Web II controller
XL1000C500 ...)
- TODO: check
+ NOT-FOR-US: Honeywell
CVE-2017-5140 (An issue was discovered in Honeywell XL Web II controller
XL1000C500 ...)
- TODO: check
+ NOT-FOR-US: Honeywell
CVE-2017-5139 (An issue was discovered in Honeywell XL Web II controller
XL1000C500 ...)
- TODO: check
+ NOT-FOR-US: Honeywell
CVE-2017-5138
RESERVED
CVE-2017-5137 (An issue was discovered on SendQuick Entera and Avera devices
before ...)
@@ -15307,63 +15307,63 @@
[wheezy] - xen <not-affected> (Only 4.5 onwards vulnerable)
NOTE: https://xenbits.xen.org/xsa/advisory-196.html
CVE-2016-9371 (An issue was discovered in Moxa NPort 5110 versions prior to
2.6, ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9370
RESERVED
CVE-2016-9369 (An issue was discovered in Moxa NPort 5110 versions prior to
2.6, ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9368
RESERVED
CVE-2016-9367 (An issue was discovered in Moxa NPort 5110 versions prior to
2.6, ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9366 (An issue was discovered in Moxa NPort 5110 versions prior to
2.6, ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9365 (An issue was discovered in Moxa NPort 5110 versions prior to
2.6, ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9364 (An issue was discovered in Fidelix FX-20 series controllers,
versions ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9363 (An issue was discovered in Moxa NPort 5110 versions prior to
2.6, ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9362 (An issue was discovered in WAGO 750-8202/PFC200 prior to FW04
(released ...)
- TODO: check
+ NOT-FOR-US: WAGO
CVE-2016-9361 (An issue was discovered in Moxa NPort 5110 versions prior to
2.6, ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9360 (An issue was discovered in General Electric (GE) Proficy
HMI/SCADA iFIX ...)
- TODO: check
+ NOT-FOR-US: General Electric
CVE-2016-9359
RESERVED
CVE-2016-9358
RESERVED
CVE-2016-9357 (An issue was discovered in certain legacy Eaton ePDUs -- the
affected ...)
- TODO: check
+ NOT-FOR-US: legacy Eaton ePDUs
CVE-2016-9356 (An issue was discovered in Moxa DACenter Versions 1.4 and
older. The ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9355 (An issue was discovered in Becton, Dickinson and Company (BD)
Alaris ...)
- TODO: check
+ NOT-FOR-US: Alaris 8015 Point of Care
CVE-2016-9354 (An issue was discovered in Moxa DACenter Versions 1.4 and
older. A ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9353 (An issue was discovered in Advantech SUISAccess Server Version
3.0 and ...)
- TODO: check
+ NOT-FOR-US: Advantech SUISAccess Server
CVE-2016-9352
RESERVED
CVE-2016-9351 (An issue was discovered in Advantech SUISAccess Server Version
3.0 and ...)
- TODO: check
+ NOT-FOR-US: Advantech SUISAccess Server
CVE-2016-9350
RESERVED
CVE-2016-9349 (An issue was discovered in Advantech SUISAccess Server Version
3.0 and ...)
- TODO: check
+ NOT-FOR-US: Advantech SUISAccess Server
CVE-2016-9348 (An issue was discovered in Moxa NPort 5110 versions prior to
2.6, ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9347 (An issue was discovered in Emerson SE4801T0X Redundant Wireless
I/O ...)
- TODO: check
+ NOT-FOR-US: Emerson
CVE-2016-9346 (An issue was discovered in Moxa MiiNePort E1 versions prior to
1.8, E2 ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9345 (An issue was discovered in Emerson DeltaV Easy Security
Management ...)
- TODO: check
+ NOT-FOR-US: Emerson
CVE-2016-9344 (An issue was discovered in Moxa MiiNePort E1 versions prior to
1.8, E2 ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9343 (An issue was discovered in Rockwell Automation Logix5000
Programmable ...)
- TODO: check
+ NOT-FOR-US: Rockwell
CVE-2016-9342
RESERVED
CVE-2016-9341
@@ -15371,21 +15371,21 @@
CVE-2016-9340
RESERVED
CVE-2016-9339 (An issue was discovered in INTERSCHALT Maritime Systems VDR G4e
...)
- TODO: check
+ NOT-FOR-US: INTERSCHALT Maritime Systems
CVE-2016-9338 (An issue was discovered in Rockwell Automation Allen-Bradley
MicroLogix ...)
- TODO: check
+ NOT-FOR-US: Rockwell
CVE-2016-9337 (An issue was discovered in Tesla Motors Model S automobile, all
...)
- TODO: check
+ NOT-FOR-US: Tesla car
CVE-2016-9336
RESERVED
CVE-2016-9335
RESERVED
CVE-2016-9334 (An issue was discovered in Rockwell Automation Allen-Bradley
MicroLogix ...)
- TODO: check
+ NOT-FOR-US: Rockwell
CVE-2016-9333 (An issue was discovered in Moxa SoftCMS versions prior to
Version 1.6. ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-9332 (An issue was discovered in Moxa SoftCMS versions prior to
Version 1.6. ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2015-8978 (In Soap Lite (aka the SOAP::Lite extension for Perl) 1.14 and
earlier, ...)
{DLA-723-1}
- libsoap-lite-perl 1.19-1
@@ -18687,83 +18687,83 @@
CVE-2016-8380
RESERVED
CVE-2016-8379 (An issue was discovered in Moxa ioLogik E1210, firmware Version
V2.4 ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-8378 (An issue was discovered in Lynxspring JENEsys BAS Bridge
versions 1.1.8 ...)
- TODO: check
+ NOT-FOR-US: Lynxspring
CVE-2016-8377 (An issue was discovered in Fatek Automation PLC WinProladder
Version ...)
- TODO: check
+ NOT-FOR-US: Fatek
CVE-2016-8376 (An issue was discovered in Kabona AB WebDatorCentral (WDC)
application ...)
- TODO: check
+ NOT-FOR-US: Kabona AB WebDatorCentral
CVE-2016-8375 (An issue was discovered in Becton, Dickinson and Company (BD)
Alaris ...)
- TODO: check
+ NOT-FOR-US: Alaris 8015 Point of Care
CVE-2016-8374 (An issue was discovered in Schneider Electric Magelis HMI
Magelis GTO ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2016-8373
RESERVED
CVE-2016-8372 (An issue was discovered in Moxa ioLogik E1210, firmware Version
V2.4 ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-8371
RESERVED
CVE-2016-8370 (An issue was discovered in Mitsubishi Electric Automation
MELSEC-Q ...)
- TODO: check
+ NOT-FOR-US: Mitsubishi
CVE-2016-8369 (An issue was discovered in Lynxspring JENEsys BAS Bridge
versions 1.1.8 ...)
- TODO: check
+ NOT-FOR-US: Lynxspring
CVE-2016-8368 (An issue was discovered in Mitsubishi Electric Automation
MELSEC-Q ...)
- TODO: check
+ NOT-FOR-US: Mitsubishi
CVE-2016-8367 (An issue was discovered in Schneider Electric Magelis HMI
Magelis GTO ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2016-8366
RESERVED
CVE-2016-8365
RESERVED
CVE-2016-8364 (An issue was discovered in IBHsoftec S7-SoftPLC prior to 4.12b.
Object ...)
- TODO: check
+ NOT-FOR-US: IBHsoftec
CVE-2016-8363 (An issue was discovered in Moxa OnCell OnCellG3470A-LTE, ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-8362 (An issue was discovered in Moxa OnCell OnCellG3470A-LTE, ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-8361 (An issue was discovered in Lynxspring JENEsys BAS Bridge
versions 1.1.8 ...)
- TODO: check
+ NOT-FOR-US: Lynxspring
CVE-2016-8360 (An issue was discovered in Moxa SoftCMS versions prior to
Version 1.6. ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-8359 (An issue was discovered in Moxa ioLogik E1210, firmware Version
V2.4 ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-8358 (An issue was discovered in Smiths-Medical CADD-Solis Medication
Safety ...)
- TODO: check
+ NOT-FOR-US: Smiths-Medical
CVE-2016-8357 (An issue was discovered in Lynxspring JENEsys BAS Bridge
versions 1.1.8 ...)
- TODO: check
+ NOT-FOR-US: Lynxspring
CVE-2016-8356 (An issue was discovered in Kabona AB WebDatorCentral (WDC)
application ...)
- TODO: check
+ NOT-FOR-US: Kabona
CVE-2016-8355 (An issue was discovered in Smiths-Medical CADD-Solis Medication
Safety ...)
- TODO: check
+ NOT-FOR-US: Smiths-Medical
CVE-2016-8354 (An issue was discovered in Schneider Electric Unity PRO prior
to V11.1. ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2016-8353 (An issue was discovered in OSIsoft PI Web API 2015 R2 (Version
1.5.1). ...)
- TODO: check
+ NOT-FOR-US: OSISoft PI Web API
CVE-2016-8352 (An issue was discovered in Schneider Electric ConneXium
firewalls ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2016-8351
RESERVED
CVE-2016-8350 (An issue was discovered in Moxa ioLogik E1210, firmware Version
V2.4 ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-8349
RESERVED
CVE-2016-8348 (An XML External Entity (XXE) issue was discovered in Emerson
Liebert ...)
- TODO: check
+ NOT-FOR-US: Emerson
CVE-2016-8347 (An issue was discovered in Kabona AB WebDatorCentral (WDC)
application ...)
- TODO: check
+ NOT-FOR-US: Kabona
CVE-2016-8346 (An issue was discovered in Moxa EDR-810 Industrial Secure
Router. By ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2016-8345
RESERVED
CVE-2016-8344 (An issue was discovered in Honeywell Experion Process Knowledge
System ...)
- TODO: check
+ NOT-FOR-US: Honeywell
CVE-2016-8343 (Directory traversal vulnerability in INDAS Web SCADA before 3
allows ...)
NOT-FOR-US: INDAS Web SCADA
CVE-2016-8342
RESERVED
CVE-2016-8341 (An issue was discovered in Ecava IntegraXor Version 5.0.413.0.
The ...)
- TODO: check
+ NOT-FOR-US: Ecava
CVE-2016-8340
RESERVED
CVE-2016-8339 (A buffer overflow in Redis 3.2.x prior to 3.2.4 causes
arbitrary code ...)
@@ -20255,7 +20255,7 @@
CVE-2016-7988 (On Samsung Galaxy S4 through S7 devices, absence of permissions
on the ...)
NOT-FOR-US: Samsung
CVE-2016-7987 (An issue was discovered in Siemens ETA4 firmware (all versions
prior to ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2016-7986 (The GeoNetworking parser in tcpdump before 4.9.0 has a buffer
overflow ...)
{DSA-3775-1 DLA-809-1}
- tcpdump 4.9.0-1
@@ -27036,25 +27036,25 @@
CVE-2016-5819
RESERVED
CVE-2016-5818 (An issue was discovered in Schneider Electric PowerLogic PM8ECC
device ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2016-5817 (SQL injection vulnerability in news pages in Cargotec Navis
WebAccess ...)
NOT-FOR-US: Cargotec
CVE-2016-5816
RESERVED
CVE-2016-5815 (An issue was discovered on Schneider Electric IONXXXX series
power ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2016-5814 (Buffer overflow in Rockwell Automation RSLogix Micro Starter
Lite, ...)
NOT-FOR-US: Rockwell
CVE-2016-5813 (An issue was discovered in Visonic PowerLink2, all versions
prior to ...)
- TODO: check
+ NOT-FOR-US: Visonic PowerLink
CVE-2016-5812 (Moxa OnCell G3100V2 devices before 2.8 and G3111, G3151, G3211,
and ...)
NOT-FOR-US: Moxa
CVE-2016-5811 (An issue was discovered in Visonic PowerLink2, all versions
prior to ...)
- TODO: check
+ NOT-FOR-US: Visonic PowerLink
CVE-2016-5810
RESERVED
CVE-2016-5809 (An issue was discovered on Schneider Electric IONXXXX series
power ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2016-5808
RESERVED
CVE-2016-5807 (Tollgrade LightHouse SMS before 5.1 patch 3 allows remote ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
