[Secure-testing-commits] r30432 - data/CVE
Helmut Grohne
helmutg at moszumanska.debian.org
Sat Nov 29 10:54:56 UTC 2014
Author: helmutg
Date: 2014-11-29 10:54:56 +0000 (Sat, 29 Nov 2014)
New Revision: 30432
Modified:
data/CVE/list
Log:
misc NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-29 10:36:07 UTC (rev 30431)
+++ data/CVE/list 2014-11-29 10:54:56 UTC (rev 30432)
@@ -1424,7 +1424,7 @@
CVE-2014-8671 (Cross-site scripting (XSS) vulnerability in the GWT Mobile PhoneGap ...)
TODO: check
CVE-2014-8670 (Open redirect vulnerability in go.php in vBulletin 4.2.1 allows remote ...)
- TODO: check
+ NOT-FOR-US: vBulletin
CVE-2014-8669 (The SAP Promotion Guidelines (CRM-MKT-MPL-TPM-PPG) module for SAP CRM ...)
NOT-FOR-US: SAP
CVE-2014-8668 (SQL injection vulnerability in SAP Contract Accounting allows remote ...)
@@ -1448,7 +1448,7 @@
CVE-2014-8659 (Directory traversal vulnerability in SAP Environment, Health, and ...)
NOT-FOR-US: SAP
CVE-2014-8658 (Cross-site scripting (XSS) vulnerability in RefinedWiki Original Theme ...)
- TODO: check
+ NOT-FOR-US: Atlassian Confluence theme
CVE-2014-8657 (The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless ...)
NOT-FOR-US: Compal Gateways
CVE-2014-8656 (The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless ...)
@@ -1899,7 +1899,7 @@
CVE-2014-8509 (The lazy_bdecode function in BitTorrent bootstrap-dht (aka Bootstrap) ...)
NOT-FOR-US: BitTorrent bootstrap-dht (aka Bootstrap)
CVE-2014-8508 (Cross-site scripting (XSS) vulnerability in s_network.asp in the Denon ...)
- TODO: check
+ NOT-FOR-US: Denon devices
CVE-2014-8507
RESERVED
CVE-2014-8506 (Multiple SQL injection vulnerabilities in Etiko CMS allow remote ...)
@@ -2034,13 +2034,13 @@
CVE-2014-8475 (FreeBSD 9.1, 9.2, and 10.0, when compiling OpenSSH with Kerberos ...)
TODO: check
CVE-2014-8474 (CA Cloud Service Management (CSM) before Summer 2014 allows remote ...)
- TODO: check
+ NOT-FOR-US: CA Cloud Service Management
CVE-2014-8473 (Cross-site request forgery (CSRF) vulnerability in CA Cloud Service ...)
- TODO: check
+ NOT-FOR-US: CA Cloud Service Management
CVE-2014-8472 (CA Cloud Service Management (CSM) before Summer 2014 does not properly ...)
- TODO: check
+ NOT-FOR-US: CA Cloud Service Management
CVE-2014-8471 (CA Cloud Service Management (CSM) before Summer 2014 allows remote ...)
- TODO: check
+ NOT-FOR-US: CA Cloud Service Management
CVE-2014-8470
RESERVED
CVE-2014-8469
@@ -2361,9 +2361,9 @@
CVE-2014-8353
RESERVED
CVE-2014-8352 (Cross-site scripting (XSS) vulnerability in json.php in French ...)
- TODO: check
+ NOT-FOR-US: CookieViz
CVE-2014-8351 (SQL injection vulnerability in info.php in French National Commission ...)
- TODO: check
+ NOT-FOR-US: CookieViz
CVE-2014-8349
RESERVED
NOT-FOR-US: Liferay Portal
@@ -9001,7 +9001,7 @@
CVE-2014-5409
RESERVED
CVE-2014-5408 (Cross-site scripting (XSS) vulnerability in the login script in the ...)
- TODO: check
+ NOT-FOR-US: Nordex Control 2
CVE-2014-5407 (Multiple stack-based buffer overflows in Schneider Electric VAMPSET ...)
NOT-FOR-US: Schneider Electric
CVE-2014-5406
@@ -9350,9 +9350,9 @@
CVE-2014-5259 (Cross-site scripting (XSS) vulnerability in cattranslate.php in the ...)
NOT-FOR-US: BlackCat CMS
CVE-2014-5258 (Directory traversal vulnerability in showTempFile.php in webEdition ...)
- TODO: check
+ NOT-FOR-US: webEdition CMS
CVE-2014-5257 (Multiple cross-site scripting (XSS) vulnerabilities in Forma Lms ...)
- TODO: check
+ NOT-FOR-US: Forma Lms
CVE-2014-5248 (Cross-site scripting (XSS) vulnerability in MyBB before 1.6.15 allows ...)
NOT-FOR-US: MyBB
CVE-2014-5246 (The Shenzhen Tenda Technology Tenda A5s router with firmware ...)
@@ -17142,9 +17142,9 @@
CVE-2014-2375 (Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta ...)
NOT-FOR-US: Ecava IntegraXor SCADA Server
CVE-2014-2374 (The AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim ...)
- TODO: check
+ NOT-FOR-US: Accuenergy
CVE-2014-2373 (The web server on the AXN-NET Ethernet module accessory 3.04 for the ...)
- TODO: check
+ NOT-FOR-US: Accuenergy
CVE-2014-2372
RESERVED
CVE-2014-2371
@@ -22694,7 +22694,7 @@
CVE-2013-7058
RESERVED
CVE-2013-7057 (Cross-site request forgery (CSRF) vulnerability in Axway ...)
- TODO: check
+ NOT-FOR-US: Axway SecureTransport
CVE-2013-7056
RESERVED
CVE-2013-7055
More information about the Secure-testing-commits
mailing list