[Secure-testing-commits] r54240 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Aug 3 21:14:44 UTC 2017
Author: jmm
Date: 2017-08-03 21:14:44 +0000 (Thu, 03 Aug 2017)
New Revision: 54240
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-03 21:10:13 UTC (rev 54239)
+++ data/CVE/list 2017-08-03 21:14:44 UTC (rev 54240)
@@ -1,5 +1,5 @@
CVE-2017-12414 (Format Factory 4.1.0 has a DLL Hijacking Vulnerability because an ...)
- TODO: check
+ NOT-FOR-US: Format Factory
CVE-2017-12413
RESERVED
CVE-2017-12412
@@ -2473,13 +2473,13 @@
CVE-2017-11395
RESERVED
CVE-2017-11394 (Proxy command injection vulnerability in Trend Micro OfficeScan 11 and ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2017-11393 (Proxy command injection vulnerability in Trend Micro OfficeScan 11 and ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2017-11392 (Proxy command injection vulnerability in Trend Micro InterScan ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2017-11391 (Proxy command injection vulnerability in Trend Micro InterScan ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2017-11390 (XML external entity (XXE) processing vulnerability in Trend Micro ...)
NOT-FOR-US: Trend Micro Control Manager
CVE-2017-11389 (Directory traversal vulnerability in Trend Micro Control Manager 6.0 ...)
@@ -2497,7 +2497,7 @@
CVE-2017-11383 (SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code ...)
NOT-FOR-US: Trend Micro Control Manager
CVE-2017-11382 (Denial of Service vulnerability in Trend Micro Deep Discovery Email ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2017-11381 (A command injection vulnerability exists in Trend Micro Deep Discovery ...)
NOT-FOR-US: Trend Micro Deep Discovery Director
CVE-2017-11380 (Backup archives were found to be encrypted with a static password ...)
@@ -3447,7 +3447,7 @@
CVE-2017-11106
RESERVED
CVE-2017-11105 (The OnePlus 2 Primary Bootloader (PBL) does not validate the SBL1 ...)
- TODO: check
+ NOT-FOR-US: OnePlus
CVE-2017-1000050 (JasPer 2.0.12 is vulnerable to a NULL pointer exception in the ...)
- jasper <removed> (unimportant)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/06/1
@@ -29233,7 +29233,7 @@
CVE-2017-2285 (Cross-site scripting vulnerability in Simple Custom CSS and JS prior ...)
NOT-FOR-US: Simple Custom CSS and JS
CVE-2017-2284 (Cross-site scripting vulnerability in Popup Maker prior to version ...)
- TODO: check
+ NOT-FOR-US: Popup Maker
CVE-2017-2283 (WN-G300R3 firmware version 1.0.2 and earlier uses hardcoded ...)
NOT-FOR-US: WN-G300R3 firmware
CVE-2017-2282 (Buffer overflow in WN-AX1167GR firmware version 3.00 and earlier ...)
@@ -30793,7 +30793,7 @@
CVE-2017-1505
RESERVED
CVE-2017-1504 (IBM WebSphere Application Server version 9.0.0.4 could provide weaker ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1503
RESERVED
CVE-2017-1502
@@ -31147,7 +31147,7 @@
CVE-2017-1328 (IBM API Connect 5.0.0.0 - 5.0.6.0 could allow a remote attacker to ...)
NOT-FOR-US: IBM
CVE-2017-1327 (IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. This ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1326 (IBM Sterling File Gateway does not properly restrict user requests ...)
NOT-FOR-US: IBM
CVE-2017-1325 (IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. This ...)
@@ -31403,7 +31403,7 @@
CVE-2017-1200
RESERVED
CVE-2017-1199 (IBM InfoSphere Master Data Management Server 10.0, 11.0, 11.3, 11.4, ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1198
RESERVED
CVE-2017-1197 (IBM BigFix Compliance (TEMA SUAv1 SCA SCM) uses an inadequate account ...)
More information about the Secure-testing-commits
mailing list