[Secure-testing-commits] r38579 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Dec 28 12:39:14 UTC 2015
Author: carnil
Date: 2015-12-28 12:39:14 +0000 (Mon, 28 Dec 2015)
New Revision: 38579
Modified:
data/CVE/list
Log:
Mark some NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-28 12:30:35 UTC (rev 38578)
+++ data/CVE/list 2015-12-28 12:39:14 UTC (rev 38579)
@@ -4410,11 +4410,11 @@
CVE-2015-7938
RESERVED
CVE-2015-7937 (Stack-based buffer overflow in the GoAhead Web Server on Schneider ...)
- TODO: check
+ NOT-FOR-US: Schneider Electric
CVE-2015-7936 (Cross-site request forgery (CSRF) vulnerability in Motorola Solutions ...)
- TODO: check
+ NOT-FOR-US: Motorola Solutions MOSCAD IP Gateway
CVE-2015-7935 (Motorola Solutions MOSCAD IP Gateway allows remote attackers to read ...)
- TODO: check
+ NOT-FOR-US: Motorola Solutions MOSCAD IP Gateway
CVE-2015-7934
RESERVED
CVE-2015-7933
@@ -4426,17 +4426,17 @@
CVE-2015-7930
RESERVED
CVE-2015-7929 (eWON devices with firmware through 10.1s0 support unspecified GET ...)
- TODO: check
+ NOT-FOR-US: eWON devices
CVE-2015-7928 (eWON devices with firmware before 10.1s0 do not have an off ...)
- TODO: check
+ NOT-FOR-US: eWON devices
CVE-2015-7927 (Cross-site scripting (XSS) vulnerability on eWON devices with firmware ...)
- TODO: check
+ NOT-FOR-US: eWON devices
CVE-2015-7926 (eWON devices with firmware before 10.1s0 omit RBAC for I/O server ...)
- TODO: check
+ NOT-FOR-US: eWON devices
CVE-2015-7925 (Cross-site request forgery (CSRF) vulnerability on eWON devices with ...)
- TODO: check
+ NOT-FOR-US: eWON devices
CVE-2015-7924 (eWON devices with firmware before 10.1s0 do not trigger the discarding ...)
- TODO: check
+ NOT-FOR-US: eWON devices
CVE-2015-7923
RESERVED
CVE-2015-7922
@@ -4450,7 +4450,7 @@
CVE-2015-7918 (Multiple buffer overflows in the F1BookView ActiveX control in F1 ...)
NOT-FOR-US: F1BookView
CVE-2015-7917 (Untrusted search path vulnerability in Open Automation OPC Systems.NET ...)
- TODO: check
+ NOT-FOR-US: Open Automation OPC Systems.NET
CVE-2015-7916
RESERVED
CVE-2015-7915
@@ -4462,17 +4462,17 @@
CVE-2015-7912 (The Ice Faces servlet in ag_server_service.exe in the AggreGate Server ...)
NOT-FOR-US: AggreGate
CVE-2015-7911 (Saia Burgess PCD1.M0xx0, PCD1.M2xx0, PCD2.M5xx0, PCD3.Mxx60, ...)
- TODO: check
+ NOT-FOR-US: Saia Burgess devices
CVE-2015-7910 (Exemys Telemetry Web Server relies on an HTTP Location header to ...)
NOT-FOR-US: Exemys
CVE-2015-7909
RESERVED
CVE-2015-7908 (Honeywell Midas gas detectors before 1.13b3 and Midas Black gas ...)
- TODO: check
+ NOT-FOR-US: Honeywell Midas gas detectors and Midas Black gas detectors
CVE-2015-7907 (Directory traversal vulnerability in the web server on Honeywell Midas ...)
- TODO: check
+ NOT-FOR-US: Honeywell Midas gas detectors and Midas Black gas detectors
CVE-2015-7906 (LOYTEC LIP-3ECTB 6.0.1, LINX-100, LVIS-3E100, and LIP-ME201 devices ...)
- TODO: check
+ NOT-FOR-US: LOYTEC LIP-3ECTB 6.0.1, LINX-100, LVIS-3E100, and LIP-ME201 devices
CVE-2015-7905 (Unitronics VisiLogic OPLC IDE before 9.8.02 allows remote attackers to ...)
NOT-FOR-US: Unitronics
CVE-2015-7904 (Unrestricted file upload vulnerability in Infinite Automation Mango ...)
@@ -4949,9 +4949,9 @@
CVE-2015-7757
RESERVED
CVE-2015-7756 (The encryption implementation in Juniper ScreenOS 6.2.0r15 through ...)
- TODO: check
+ NOT-FOR-US: Juniper ScreenOS
CVE-2015-7755 (Juniper ScreenOS 6.2.0r15 through 6.2.0r18, 6.3.0r12 before 6.3.0r12b, ...)
- TODO: check
+ NOT-FOR-US: Juniper ScreenOS
CVE-2015-7754
RESERVED
CVE-2015-7753
@@ -5911,7 +5911,7 @@
CVE-2015-7414
RESERVED
CVE-2015-7413 (Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0.0 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2015-7412 (The GatewayScript modules on IBM DataPower Gateways with software ...)
NOT-FOR-US: IBM
CVE-2015-7411
More information about the Secure-testing-commits
mailing list