[Secure-testing-commits] r46296 - data/CVE
Michael Gilbert
mgilbert at moszumanska.debian.org
Fri Nov 18 02:22:54 UTC 2016
Author: mgilbert
Date: 2016-11-18 02:22:54 +0000 (Fri, 18 Nov 2016)
New Revision: 46296
Modified:
data/CVE/list
Log:
nfus
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-18 02:22:36 UTC (rev 46295)
+++ data/CVE/list 2016-11-18 02:22:54 UTC (rev 46296)
@@ -8125,7 +8125,7 @@
CVE-2016-6653 (The MariaDB audit_plugin component in Pivotal Cloud Foundry (PCF) ...)
TODO: check
CVE-2016-6652 (SQL injection vulnerability in Pivotal Spring Data JPA before 1.9.6 ...)
- TODO: check
+ NOT-FOR-US: Pivotal Spring Data
CVE-2016-6651 (The UAA /oauth/token endpoint in Pivotal Cloud Foundry (PCF) before ...)
NOT-FOR-US: Pivotal
CVE-2016-6650
@@ -8137,9 +8137,9 @@
CVE-2016-6647 (Cross-site scripting (XSS) vulnerability in EMC ViPR SRM before 4.0.1 ...)
NOT-FOR-US: EMC
CVE-2016-6646 (The vApp Managers web application in EMC Unisphere for VMAX Virtual ...)
- TODO: check
+ NOT-FOR-US: VMAX
CVE-2016-6645 (The vApp Managers web application in EMC Unisphere for VMAX Virtual ...)
- TODO: check
+ NOT-FOR-US: VMAX
CVE-2016-6644 (EMC Documentum D2 4.5 before patch 15 and 4.6 before patch 03 allows ...)
NOT-FOR-US: EMC
CVE-2016-6643 (Cross-site scripting (XSS) vulnerability in EMC ViPR SRM before 3.7.2 ...)
@@ -8151,7 +8151,7 @@
CVE-2016-6640
RESERVED
CVE-2016-6639 (Cloud Foundry PHP Buildpack (aka php-buildpack) before 4.3.18 and PHP ...)
- TODO: check
+ NOT-FOR-US: Pivotal
CVE-2016-6638
RESERVED
CVE-2016-6637 (Multiple cross-site request forgery (CSRF) vulnerabilities in Pivotal ...)
@@ -8732,7 +8732,7 @@
CVE-2016-6551
RESERVED
CVE-2016-6550 (The U by BB&T app 1.5.4 and earlier for iOS does not properly verify ...)
- TODO: check
+ NOT-FOR-US: BB&T
CVE-2016-6549
RESERVED
CVE-2016-6548
@@ -9066,43 +9066,43 @@
CVE-2016-6456
RESERVED
CVE-2016-6455 (A vulnerability in the Slowpath of StarOS for Cisco ASR 5500 Series ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6454 (A cross-site request forgery (CSRF) vulnerability in the web interface ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6453 (A vulnerability in the web framework code of Cisco Identity Services ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6452 (A vulnerability in the web-based graphical user interface (GUI) of ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6451 (Multiple vulnerabilities in the web framework code of the Cisco Prime ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6450
RESERVED
CVE-2016-6449
RESERVED
CVE-2016-6448 (A vulnerability in the Session Description Protocol (SDP) parser of ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6447 (A vulnerability in Cisco Meeting Server and Meeting App could allow an ...)
NOT-FOR-US: Cisco Meeting Server and Meeting App
CVE-2016-6446 (A vulnerability in Web Bridge for Cisco Meeting Server could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6445 (A vulnerability in the Extensible Messaging and Presence Protocol ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6444 (A vulnerability in Cisco Meeting Server could allow an unauthenticated, ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6443 (A vulnerability in the Cisco Prime Infrastructure and Evolved ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6442 (A vulnerability in Cisco Finesse Agent and Supervisor Desktop Software ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6441 (A vulnerability in the Transaction Language 1 (TL1) code of Cisco ASR ...)
NOT-FOR-US: Cisco ASR 900 Series Aggregation Services Routers
CVE-2016-6440 (The Cisco Unified Communications Manager (CUCM) may be vulnerable to ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6439 (A vulnerability in the detection engine reassembly of HTTP packets for ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6438 (A vulnerability in Cisco IOS XE Software running on Cisco cBR-8 ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6437 (A vulnerability in the SSL session cache management of Cisco Wide Area ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6436 (Cross-site scripting (XSS) vulnerability in HostScan Engine 3.0.08062 ...)
NOT-FOR-US: Cisco
CVE-2016-6435 (The web console in Cisco Firepower Management Center 6.0.1 allows ...)
@@ -9112,39 +9112,39 @@
CVE-2016-6433 (The Threat Management Console in Cisco Firepower Management Center ...)
NOT-FOR-US: Cisco
CVE-2016-6432 (A vulnerability in the Identity Firewall feature of Cisco ASA Software ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6431 (A vulnerability in the local Certificate Authority (CA) feature of ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6430 (A vulnerability in the command-line interface of the Cisco IP ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6429 (A vulnerability in the web framework code of the Cisco IP ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6428 (Cisco IOS XR 6.1.1 allows local users to execute arbitrary OS commands ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6427 (Cross-site request forgery (CSRF) vulnerability in Cisco Unified ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6426 (The j_spring_security_switch_user function in Cisco Unified ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6425 (Cross-site scripting (XSS) vulnerability in Cisco Unified Intelligence ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6424 (The DHCP Relay implementation in Cisco Adaptive Security Appliance ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6423 (The IKEv2 client and initiator implementations in Cisco IOS 15.5(3)M ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6422 (Cisco IOS 12.2(33)SXJ9 on Supervisor Engine 32 and 720 modules for ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6421 (Cisco IOS XR 5.2.2 allows remote attackers to cause a denial of ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6420 (Cisco FireSIGHT System Software 4.10.3 through 5.4.0 in Firepower ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6419 (SQL injection vulnerability in Cisco Firepower Management Center ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6418 (Cross-site scripting (XSS) vulnerability in Cisco Videoscape ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6417 (Cross-site request forgery (CSRF) vulnerability in Cisco FireSIGHT ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6416 (The FTP service in Cisco AsyncOS on Email Security Appliance (ESA) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6415 (The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and ...)
NOT-FOR-US: Cisco
CVE-2016-6414 (iox in Cisco IOS, possibly 15.6 and earlier, and IOS XE, possibly 3.18 ...)
@@ -9182,7 +9182,7 @@
CVE-2016-6398 (The PPTP server in Cisco IOS 15.5(3)M does not properly initialize ...)
NOT-FOR-US: Cisco
CVE-2016-6397 (A vulnerability in the interdevice communications interface of the ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6396 (Cisco Firepower Management Center before 6.1 and FireSIGHT System ...)
NOT-FOR-US: Cisco
CVE-2016-6395 (Cross-site scripting (XSS) vulnerability in the web-based management ...)
@@ -9190,11 +9190,11 @@
CVE-2016-6394 (Session fixation vulnerability in Cisco Firepower Management Center ...)
NOT-FOR-US: Cisco
CVE-2016-6393 (The AAA service in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6392 (Cisco IOS 12.2 and 15.0 through 15.3 and IOS XE 3.1 through 3.9 allow ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6391 (Cisco IOS 12.2 and 15.0 through 15.3 allows remote attackers to cause ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6390
RESERVED
CVE-2016-6389
@@ -9232,7 +9232,7 @@
CVE-2016-6373 (The web-based GUI in Cisco Cloud Services Platform (CSP) 2100 2.0 ...)
NOT-FOR-US: Cisco Cloud Services Platform 2100
CVE-2016-6372 (A vulnerability in the email message and content filtering for ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6371 (Directory traversal vulnerability in the web interface in Cisco Hosted ...)
NOT-FOR-US: Cisco
CVE-2016-6370 (Directory traversal vulnerability in the web interface in Cisco Hosted ...)
@@ -9256,15 +9256,15 @@
CVE-2016-6361 (The Aggregated MAC Protocol Data Unit (AMPDU) implementation on Cisco ...)
NOT-FOR-US: Cisco
CVE-2016-6360 (A vulnerability in Advanced Malware Protection (AMP) for Cisco Email ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6359 (Cross-site scripting (XSS) vulnerability in Cisco Transport Gateway ...)
NOT-FOR-US: Cisco
CVE-2016-6358 (A vulnerability in local FTP to the Cisco Email Security Appliance ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6357 (A vulnerability in the configured security policies, including drop ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6356 (A vulnerability in the email message filtering feature of Cisco AsyncOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-6355 (Memory leak in Cisco IOS XR 5.1.x through 5.1.3, 5.2.x through 5.2.5, ...)
NOT-FOR-US: Cisco
CVE-2016-6353
@@ -9558,7 +9558,7 @@
CVE-2016-6274
RESERVED
CVE-2016-6273 (The lmadmin component in Flexera FlexNet Publisher (aka Flex License ...)
- TODO: check
+ NOT-FOR-US: Flexera
CVE-2016-6272
RESERVED
CVE-2016-6297 (Integer overflow in the php_stream_zip_opener function in ...)
@@ -10146,7 +10146,7 @@
CVE-2016-6196
RESERVED
CVE-2016-6195 (SQL injection vulnerability in forumrunner/includes/moderation.php in ...)
- TODO: check
+ NOT-FOR-US: vBulletin
CVE-2016-6194
RESERVED
CVE-2016-6193 (Buffer overflow in the Wi-Fi driver in Huawei P8 smartphones with ...)
@@ -10694,15 +10694,15 @@
CVE-2016-6028
RESERVED
CVE-2016-6027 (The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-6026 (The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-6025 (The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-6024
RESERVED
CVE-2016-6023 (Directory traversal vulnerability in the Configuration Manager in IBM ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-6022
RESERVED
CVE-2016-6021
@@ -10758,7 +10758,7 @@
CVE-2016-5996 (The web portal in IBM Tealeaf Customer Experience before 8.7.1.8847 ...)
NOT-FOR-US: IBM Tealeaf Customer Experience
CVE-2016-5995 (Untrusted search path vulnerability in IBM DB2 9.7 through FP11, 10.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5994
RESERVED
CVE-2016-5993
@@ -10776,13 +10776,13 @@
CVE-2016-5987
RESERVED
CVE-2016-5986 (IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.x ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5985
RESERVED
CVE-2016-5984
RESERVED
CVE-2016-5983 (IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5982
RESERVED
CVE-2016-5981
@@ -10792,15 +10792,15 @@
CVE-2016-5979
RESERVED
CVE-2016-5978 (Cross-site scripting (XSS) vulnerability in the Web UI in the web ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5977 (Open redirect vulnerability in the web portal in IBM Tealeaf Customer ...)
NOT-FOR-US: IBM Tealeaf Customer Experience
CVE-2016-5976 (The web portal in IBM Tealeaf Customer Experience before 8.7.1.8847 ...)
NOT-FOR-US: IBM Tealeaf Customer Experience
CVE-2016-5975 (Cross-site scripting (XSS) vulnerability in the Web UI in the web ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5974 (Cross-site scripting (XSS) vulnerability in the Web UI in IBM Security ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5973
RESERVED
CVE-2016-5972 (IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x ...)
@@ -10822,7 +10822,7 @@
CVE-2016-5964
RESERVED
CVE-2016-5963 (IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5962
RESERVED
CVE-2016-5961
@@ -10834,13 +10834,13 @@
CVE-2016-5958
RESERVED
CVE-2016-5957 (IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5956
RESERVED
CVE-2016-5955
RESERVED
CVE-2016-5954 (IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5953
RESERVED
CVE-2016-5952
@@ -10854,15 +10854,15 @@
CVE-2016-5948
RESERVED
CVE-2016-5947 (IBM Spectrum Control (formerly Tivoli Storage Productivity Center) ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5946 (Directory traversal vulnerability in IBM Spectrum Control (formerly ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5945 (IBM Spectrum Control (formerly Tivoli Storage Productivity Center) ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5944 (Cross-site scripting (XSS) vulnerability in the Web UI in IBM Spectrum ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5943 (IBM Spectrum Control (formerly Tivoli Storage Productivity Center) ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5942
RESERVED
CVE-2016-5941
@@ -10894,7 +10894,7 @@
CVE-2016-5928
RESERVED
CVE-2016-5927 (IBM Tivoli Storage Manager for Space Management (aka Spectrum Protect ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5926
RESERVED
CVE-2016-5925
@@ -10908,7 +10908,7 @@
CVE-2016-5921
RESERVED
CVE-2016-5920 (Cross-site scripting (XSS) vulnerability in the Web UI in IBM ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5919
RESERVED
CVE-2016-5918
@@ -10946,7 +10946,7 @@
CVE-2016-5902
RESERVED
CVE-2016-5901 (Cross-site scripting (XSS) vulnerability in a test page in IBM ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5900
RESERVED
CVE-2016-5899
@@ -10964,7 +10964,7 @@
CVE-2016-5893
RESERVED
CVE-2016-5892 (Cross-site scripting (XSS) vulnerability in IBM 10x, as used in ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5891
RESERVED
CVE-2016-5890
@@ -10990,7 +10990,7 @@
CVE-2016-5880
RESERVED
CVE-2016-5879 (MQCLI on IBM MQ Appliance M2000 and M2001 devices allows local users ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-5878 (Open redirect vulnerability in IBM FileNet Workplace 4.0.2 before ...)
NOT-FOR-US: IBM
CVE-2016-5877
More information about the Secure-testing-commits
mailing list