[Secure-testing-commits] r58779 - data/CVE

Raphael Geissert Thu, 21 Dec 2017 04:09:21 -0800

Author: geissert
Date: 2017-12-21 12:08:57 +0000 (Thu, 21 Dec 2017)
New Revision: 58779


Modified:
   data/CVE/list
Log:
auto NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-12-21 12:01:22 UTC (rev 58778)
+++ data/CVE/list       2017-12-21 12:08:57 UTC (rev 58779)
@@ -10431,15 +10431,15 @@
 CVE-2017-16683 (Denial of Service (DOS) in SAP Business Objects Platform, 
Enterprise ...)
        NOT-FOR-US: SAP Business Objects Platform
 CVE-2017-16682 (SAP NetWeaver Internet Transaction Server (ITS), SAP Basis 
from 7.00 ...)
-       TODO: check
+       NOT-FOR-US: SAP NetWeaver Internet Transaction Server 
 CVE-2017-16681 (Cross-Site Scripting (XSS) vulnerability in SAP Business 
Intelligence ...)
-       TODO: check
+       NOT-FOR-US: SAP Business Intelligence Promotion Management Application
 CVE-2017-16680 (Two potential audit log injections in SAP HANA extended 
application ...)
-       TODO: check
+       NOT-FOR-US: SAP HANA extended application services 
 CVE-2017-16679 (URL redirection vulnerability in SAP's Startup Service, SAP 
KERNEL 32 ...)
-       TODO: check
+       NOT-FOR-US: SAP's Startup Service
 CVE-2017-16678 (Server Side Request Forgery (SSRF) vulnerability in SAP 
NetWeaver ...)
-       TODO: check
+       NOT-FOR-US: SAP NetWeaver Knowledge Management Configuration Service
 CVE-2017-16677
        RESERVED
 CVE-2017-16676
@@ -55131,13 +55131,13 @@
 CVE-2017-1761
        RESERVED
 CVE-2017-1760 (IBM WebSphere MQ 7.5, 8.0, and 9.0 could allow a local user to 
crash ...)
-       TODO: check
+       NOT-FOR-US: IBM WebSphere MQ 
 CVE-2017-1759
        RESERVED
 CVE-2017-1758
        RESERVED
 CVE-2017-1757 (IBM Security Guardium 10.0 is vulnerable to SQL injection. A 
remote ...)
-       TODO: check
+       NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1756
        RESERVED
 CVE-2017-1755
@@ -55149,7 +55149,7 @@
 CVE-2017-1752
        RESERVED
 CVE-2017-1751 (IBM Robotic Process Automation with Automation Anywhere 10.0.0 
is ...)
-       TODO: check
+       NOT-FOR-US: IBM Robotic Process Automation with Automation Anywhere 
 CVE-2017-1750
        RESERVED
 CVE-2017-1749
@@ -55159,7 +55159,7 @@
 CVE-2017-1747
        RESERVED
 CVE-2017-1746 (IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) 
is ...)
-       TODO: check
+       NOT-FOR-US: IBM Jazz for Service Management 
 CVE-2017-1745
        RESERVED
 CVE-2017-1744
@@ -55219,7 +55219,7 @@
 CVE-2017-1717
        RESERVED
 CVE-2017-1716 (IBM Tivoli Workload Scheduler 8.6.0, 9.1.0, and 9.2.0 could 
disclose ...)
-       TODO: check
+       NOT-FOR-US: IBM Tivoli Workload Scheduler 
 CVE-2017-1715
        RESERVED
 CVE-2017-1714
@@ -55259,11 +55259,11 @@
 CVE-2017-1697
        RESERVED
 CVE-2017-1696 (IBM QRadar 7.2 and 7.3 could allow a remote authenticated 
attacker to ...)
-       TODO: check
+       NOT-FOR-US: IBM QRadar 
 CVE-2017-1695
        RESERVED
 CVE-2017-1694 (IBM Integration Bus 9.0 and 10.0 transmits user credentials in 
plain ...)
-       TODO: check
+       NOT-FOR-US: IBM Integration Bus 
 CVE-2017-1693
        RESERVED
 CVE-2017-1692
@@ -55285,7 +55285,7 @@
 CVE-2017-1684
        RESERVED
 CVE-2017-1683 (IBM Connections Engagement Center 6.0 is vulnerable to 
cross-site ...)
-       TODO: check
+       NOT-FOR-US: IBM Connections Engagement Center 
 CVE-2017-1682
        RESERVED
 CVE-2017-1681
@@ -55381,15 +55381,15 @@
 CVE-2017-1636
        RESERVED
 CVE-2017-1635 (IBM Tivoli Monitoring V6 6.2.2.x could allow a remote attacker 
to ...)
-       TODO: check
+       NOT-FOR-US: IBM Tivoli Monitoring
 CVE-2017-1634
        RESERVED
 CVE-2017-1633
        RESERVED
 CVE-2017-1632 (IBM Sterling File Gateway 2.2 is vulnerable to cross-site 
scripting. ...)
-       TODO: check
+       NOT-FOR-US: IBM Sterling File Gateway 
 CVE-2017-1631 (IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) 
is ...)
-       TODO: check
+       NOT-FOR-US: IBM Jazz for Service Management 
 CVE-2017-1630
        RESERVED
 CVE-2017-1629
@@ -55425,7 +55425,7 @@
 CVE-2017-1614
        RESERVED
 CVE-2017-1613 (IBM Connections 6.0 could allow an unauthenticated remote 
attacker to ...)
-       TODO: check
+       NOT-FOR-US: IBM Connections 
 CVE-2017-1612
        RESERVED
 CVE-2017-1611
@@ -55439,7 +55439,7 @@
 CVE-2017-1607 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to 
cross-site ...)
        NOT-FOR-US: IBM
 CVE-2017-1606 (IBM Financial Transaction Manager (FTM) for Multi-Platform (MP) 
...)
-       TODO: check
+       NOT-FOR-US: IBM Financial Transaction Manager 
 CVE-2017-1605
        RESERVED
 CVE-2017-1604
@@ -55451,17 +55451,17 @@
 CVE-2017-1601
        RESERVED
 CVE-2017-1600 (IBM Security Guardium 10.0 Database Activity Monitor is 
vulnerable to ...)
-       TODO: check
+       NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1599
        RESERVED
 CVE-2017-1598 (IBM Security Guardium 10.0 Database Activity Monitor uses 
weaker than ...)
-       TODO: check
+       NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1597
        RESERVED
 CVE-2017-1596 (IBM Security Guardium 10.0 Database Activity Monitor could 
allow a ...)
-       TODO: check
+       NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1595 (IBM Security Guardium 10.0 Database Activity Monitor could 
allow a ...)
-       TODO: check
+       NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1594
        RESERVED
 CVE-2017-1593 (IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0, and 6.0 is 
vulnerable to ...)
@@ -55535,7 +55535,7 @@
 CVE-2017-1559
        RESERVED
 CVE-2017-1558 (IBM Maximo Asset Management 7.5 and 7.6 could allow a remote 
attacker ...)
-       TODO: check
+       NOT-FOR-US: IBM Maximo Asset Management 
 CVE-2017-1557
        RESERVED
 CVE-2017-1556 (IBM API Connect 5.0.7.0 through 5.0.7.2 is vulnerable to a 
regular ...)
@@ -55551,15 +55551,15 @@
 CVE-2017-1551 (IBM API Connect 5.0.0.0 through 5.0.7.2 could allow a remote 
attacker ...)
        NOT-FOR-US: IBM
 CVE-2017-1550 (IBM Sterling File Gateway 2.2 could allow an authenticated user 
to ...)
-       TODO: check
+       NOT-FOR-US: IBM Sterling File Gateway 
 CVE-2017-1549 (IBM Sterling File Gateway 2.2 is vulnerable to cross-site 
scripting. ...)
-       TODO: check
+       NOT-FOR-US: IBM Sterling File Gateway 
 CVE-2017-1548 (IBM Sterling File Gateway 2.2 could allow a remote attacker to 
...)
-       TODO: check
+       NOT-FOR-US: IBM Sterling File Gateway 
 CVE-2017-1547
        RESERVED
 CVE-2017-1546 (IBM DOORS Next Generation (DNG/RRC) 4.07, 5.0, and 6.0 is 
vulnerable ...)
-       TODO: check
+       NOT-FOR-US: IBM DOORS Next Generation 
 CVE-2017-1545
        RESERVED
 CVE-2017-1544
@@ -55579,7 +55579,7 @@
 CVE-2017-1537
        RESERVED
 CVE-2017-1536 (IBM Support Tools for Lotus WCM (IBM WebSphere Portal 7.0, 8.0, 
8.5 ...)
-       TODO: check
+       NOT-FOR-US: IBM Support Tools for Lotus WCM 
 CVE-2017-1535 (IBM Cognos Analytics 11.0 is vulnerable to cross-site 
scripting. This ...)
        NOT-FOR-US: IBM
 CVE-2017-1534
@@ -55637,7 +55637,7 @@
 CVE-2017-1508 (IBM Informix Dynamic Server 12.1 could allow a local user 
logged in ...)
        NOT-FOR-US: IBM
 CVE-2017-1507 (IBM Jazz Foundation Products could disclose sensitive 
information ...)
-       TODO: check
+       NOT-FOR-US: IBM Jazz Foundation Products
 CVE-2017-1506
        RESERVED
 CVE-2017-1505
@@ -55663,7 +55663,7 @@
 CVE-2017-1495 (IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could 
allow a ...)
        NOT-FOR-US: IBM
 CVE-2017-1494 (IBM Business Process Manager 8.5 is vulnerable to cross-site 
...)
-       TODO: check
+       NOT-FOR-US: IBM Business Process Manager 
 CVE-2017-1493
        RESERVED
 CVE-2017-1492
@@ -55805,7 +55805,7 @@
 CVE-2017-1424 (IBM Business Process Manager 8.5.7 is vulnerable to cross-site 
...)
        NOT-FOR-US: IBM
 CVE-2017-1423 (IBM WebSphere Portal 8.5 and 9.0 exposes backend server URLs 
that are ...)
-       TODO: check
+       NOT-FOR-US: IBM WebSphere Portal 
 CVE-2017-1422 (IBM MaaS360 DTM all versions up to 3.81 does not perform proper 
...)
        NOT-FOR-US: IBM
 CVE-2017-1421 (IBM iNotes is vulnerable to cross-site scripting. This 
vulnerability ...)
@@ -56111,7 +56111,7 @@
 CVE-2017-1271 (IBM Security Guardium 9.0, 9.1, and 9.5 supports interaction 
between ...)
        NOT-FOR-US: IBM
 CVE-2017-1270 (IBM Security Guardium 10.0 does not renew a session variable 
after a ...)
-       TODO: check
+       NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1269 (IBM Security Guardium 10.0 and 10.1 is vulnerable to SQL 
injection. A ...)
        NOT-FOR-US: IBM
 CVE-2017-1268
@@ -56119,7 +56119,7 @@
 CVE-2017-1267 (IBM Security Guardium 10.0 and 10.1 processes patches, image 
backups ...)
        NOT-FOR-US: IBM
 CVE-2017-1266 (IBM Security Guardium 10.0 specifies permissions for a ...)
-       TODO: check
+       NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1265
        RESERVED
 CVE-2017-1264 (IBM Security Guardium 10.0 does not prove or insufficiently 
proves ...)
@@ -56127,9 +56127,9 @@
 CVE-2017-1263
        RESERVED
 CVE-2017-1262 (IBM Security Guardium 10.0 is vulnerable to HTTP response 
splitting ...)
-       TODO: check
+       NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1261 (IBM Security Guardium 10.0 stores potentially sensitive 
information in ...)
-       TODO: check
+       NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1260
        RESERVED
 CVE-2017-1259
@@ -56137,7 +56137,7 @@
 CVE-2017-1258 (IBM Security Guardium 10.0 and 10.1 does not perform an 
authentication ...)
        NOT-FOR-US: IBM
 CVE-2017-1257 (IBM Security Guardium 10.0 discloses sensitive information to 
...)
-       TODO: check
+       NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1256 (IBM Security Guardium 10.0, 10.1 is vulnerable to cross-site 
...)
        NOT-FOR-US: IBM
 CVE-2017-1255


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r58779 - data/CVE

Reply via email to