[Secure-testing-commits] r33827 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-04-25 09:31:50 +0000 (Sat, 25 Apr 2015)
New Revision: 33827

Modified:
   data/CVE/list
Log:
NFUs in Cisco products

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-04-25 09:27:21 UTC (rev 33826)
+++ data/CVE/list	2015-04-25 09:31:50 UTC (rev 33827)
@@ -7858,29 +7858,29 @@
 CVE-2015-0708
 	RESERVED
 CVE-2015-0707 (Cross-site scripting (XSS) vulnerability in Cisco FireSIGHT System ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2015-0706 (Open redirect vulnerability in Cisco FireSIGHT System Software ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2015-0705 (Cross-site request forgery (CSRF) vulnerability in the SOAP API ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2015-0704 (Multiple cross-site request forgery (CSRF) vulnerabilities in API ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2015-0703 (Cross-site scripting (XSS) vulnerability in the administrative web ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2015-0702 (Unrestricted file upload vulnerability in the Custom Prompts upload ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2015-0701
 	RESERVED
 CVE-2015-0700 (Cross-site request forgery (CSRF) vulnerability in the Dashboard page ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2015-0699 (SQL injection vulnerability in the Interactive Voice Response (IVR) ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2015-0698 (Multiple cross-site scripting (XSS) vulnerabilities in filter search ...)
 	TODO: check
 CVE-2015-0697 (Open redirect vulnerability in the login page in Cisco TC Software ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2015-0696 (Cross-site scripting (XSS) vulnerability in the login page in Cisco TC ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2015-0695 (Cisco IOS XR 4.3.4 through 5.3.0 on ASR 9000 devices, when uRPF, PBR, ...)
 	NOT-FOR-US: Cisco IOS
 CVE-2015-0694 (Cisco ASR 9000 devices with software 5.3.0.BASE do not recognize that ...)