[Secure-testing-commits] r49279 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Feb 27 21:28:02 UTC 2017
Author: jmm
Date: 2017-02-27 21:28:02 +0000 (Mon, 27 Feb 2017)
New Revision: 49279
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-27 21:16:02 UTC (rev 49278)
+++ data/CVE/list 2017-02-27 21:28:02 UTC (rev 49279)
@@ -51257,35 +51257,35 @@
CVE-2015-7292
RESERVED
CVE-2015-7291 (Cross-site request forgery (CSRF) vulnerability in adv_pwd_cgi in the ...)
- TODO: check
+ NOT-FOR-US: Arris
CVE-2015-7290 (Cross-site scripting (XSS) vulnerability in adv_pwd_cgi in the web ...)
- TODO: check
+ NOT-FOR-US: Arris
CVE-2015-7289 (Arris DG860A, TG862A, and TG862G devices with firmware ...)
- TODO: check
+ NOT-FOR-US: Arris
CVE-2015-7288 (CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 ...)
- TODO: check
+ NOT-FOR-US: CSL DualCom
CVE-2015-7287 (CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 use ...)
- TODO: check
+ NOT-FOR-US: CSL DualCom
CVE-2015-7286 (CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 rely ...)
- TODO: check
+ NOT-FOR-US: CSL DualCom
CVE-2015-7285 (CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 do ...)
- TODO: check
+ NOT-FOR-US: CSL DualCom
CVE-2015-7284 (Cross-site request forgery (CSRF) vulnerability on ZyXEL NBG-418N ...)
- TODO: check
+ NOT-FOR-US: ZyXEL
CVE-2015-7283 (The web administration interface on ZyXEL NBG-418N devices with ...)
- TODO: check
+ NOT-FOR-US: ZyXEL
CVE-2015-7282 (ReadyNet WRT300N-DD devices with firmware 1.0.26 use the same source ...)
- TODO: check
+ NOT-FOR-US: ReadyNet
CVE-2015-7281 (Cross-site request forgery (CSRF) vulnerability on ReadyNet WRT300N-DD ...)
- TODO: check
+ NOT-FOR-US: ReadyNet
CVE-2015-7280 (The web administration interface on ReadyNet WRT300N-DD devices with ...)
- TODO: check
+ NOT-FOR-US: ReadyNet
CVE-2015-7279 (Amped Wireless R10000 devices with firmware 2.5.2.11 use an improper ...)
- TODO: check
+ NOT-FOR-US: Amped Wireless
CVE-2015-7278 (Cross-site request forgery (CSRF) vulnerability on Amped Wireless ...)
- TODO: check
+ NOT-FOR-US: Amped Wireless
CVE-2015-7277 (The web administration interface on Amped Wireless R10000 devices with ...)
- TODO: check
+ NOT-FOR-US: Amped Wireless
CVE-2015-7276
RESERVED
CVE-2015-7275
@@ -51315,9 +51315,9 @@
CVE-2015-7263
RESERVED
CVE-2015-7262 (QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage ...)
- TODO: check
+ NOT-FOR-US: QNAP
CVE-2015-7261 (The FTP service in QNAP iArtist Lite before 1.4.54, as distributed ...)
- TODO: check
+ NOT-FOR-US: QNAP
CVE-2015-7260
RESERVED
CVE-2015-7259
@@ -51331,9 +51331,9 @@
CVE-2015-7255
RESERVED
CVE-2015-7254 (Directory traversal vulnerability on Huawei HG532e, HG532n, and HG532s ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2015-7253 (The Web Console in Commvault Edge Server 10 R2 allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: Commvault Edge Server
CVE-2015-7252 (Cross-site scripting (XSS) vulnerability in cgi-bin/webproc on ZTE ...)
NOT-FOR-US: ZTE router
CVE-2015-7251 (ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.k_PE have a ...)
@@ -51798,7 +51798,7 @@
CVE-2015-7105 (CoreGraphics in Apple iOS before 9.2, OS X before 10.11.2, tvOS before ...)
NOT-FOR-US: Apple
CVE-2015-7104 (WebKit in Apple Safari before 9.0.2 and tvOS before 9.1 allows remote ...)
- TODO: check
+ NOT-FOR-US: Webkit as used by Apple
CVE-2015-7103 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before ...)
NOT-FOR-US: Apple
CVE-2015-7102 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before ...)
@@ -51892,9 +51892,9 @@
CVE-2015-7058 (Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 ...)
NOT-FOR-US: Apple
CVE-2015-7057 (otools in Apple Xcode before 7.2 allows local users to gain privileges ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7056 (IDE SCM in Apple Xcode before 7.2 does not recognize .gitignore files, ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7055 (AppleMobileFileIntegrity in Apple iOS before 9.2 and tvOS before 9.1 ...)
NOT-FOR-US: Apple
CVE-2015-7054 (zlib in the Compression component in Apple iOS before 9.2, OS X before ...)
@@ -51908,7 +51908,7 @@
CVE-2015-7050 (WebKit in Apple iOS before 9.2 and Safari before 9.0.2 misparses ...)
NOT-FOR-US: Apple
CVE-2015-7049 (otools in Apple Xcode before 7.2 allows local users to gain privileges ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7048 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before ...)
NOT-FOR-US: Apple
CVE-2015-7047 (The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before ...)
@@ -51936,19 +51936,19 @@
CVE-2015-7036 (The fts3_tokenizer function in SQLite, as used in Apple iOS before 8.4 ...)
NOT-FOR-US: Apple
CVE-2015-7035 (Apple Mac EFI before 2015-002, as used in OS X before 10.11.1 and ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7034 (The Apple iWork application before 2.6 for iOS and Apple Pages before ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7033 (The Apple iWork application before 2.6 for iOS, Apple Keynote before ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7032 (The Apple iWork application before 2.6 for iOS, Apple Keynote before ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7031 (The Web Service component in Apple OS X Server before 5.0.15 omits an ...)
NOT-FOR-US: Apple
CVE-2015-7030 (The Swift implementation in Apple Xcode before 7.1 mishandles type ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7029 (Apple AirPort Base Station Firmware before 7.6.7 and 7.7.x before ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7028
RESERVED
CVE-2015-7027
@@ -51958,7 +51958,7 @@
CVE-2015-7025
RESERVED
CVE-2015-7024 (Untrusted search path vulnerability in Apple OS X before 10.11.1 ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7023 (CFNetwork in Apple iOS before 9.1 and OS X before 10.11.1 does not ...)
NOT-FOR-US: Apple
CVE-2015-7022 (The Telephony subsystem in Apple iOS before 9.1 allows attackers to ...)
@@ -52046,7 +52046,7 @@
CVE-2015-6981 (WebKit, as used in Apple iOS before 9.1, allows remote attackers to ...)
NOT-FOR-US: Apple
CVE-2015-6980 (Directory Utility in Apple OS X before 10.11.1 mishandles ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-6979 (GasGauge in Apple iOS before 9.1 allows attackers to execute arbitrary ...)
NOT-FOR-US: Apple
CVE-2015-6978 (FontParser in Apple iOS before 9.1 and OS X before 10.11.1 allows ...)
@@ -52159,13 +52159,13 @@
CVE-2015-6935
RESERVED
CVE-2015-6934 (Serialized-object interfaces in VMware vRealize Orchestrator 6.x, ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2015-6933 (The VMware Tools HGFS (aka Shared Folders) implementation in VMware ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2015-6932 (VMware vCenter Server 5.5 before u3 and 6.0 before u1 does not verify ...)
NOT-FOR-US: VMware
CVE-2015-6931 (Cross-site scripting (XSS) vulnerability in the vSphere Web Client in ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2015-8871 (Use-after-free vulnerability in the opj_j2k_write_mco function in ...)
{DSA-3665-1}
- openjpeg2 2.1.1-1 (bug #800149)
@@ -52308,13 +52308,13 @@
CVE-2015-6865
RESERVED
CVE-2015-6864 (HPE ArcSight Logger before 6.1P1 allows remote authenticated users to ...)
- TODO: check
+ NOT-FOR-US: HPE ArcSight Logger
CVE-2015-6863 (HPE ArcSight Logger before 6.1P1 allows remote attackers to execute ...)
- TODO: check
+ NOT-FOR-US: HPE ArcSight Logger
CVE-2015-6862 (HPE UCMDB Browser before 4.02 allows remote attackers to obtain ...)
NOT-FOR-US: HPE UCMDB Browser
CVE-2015-6861 (HPE Helion Eucalyptus 3.4.0 through 4.2.0 allows remote authenticated ...)
- TODO: check
+ NOT-FOR-US: HPE Helion Eucalyptus
CVE-2015-6860 (HPE Network Switches with software 15.16.x and 15.17.x allow local ...)
NOT-FOR-US: HPE Network Switches
CVE-2015-6859 (HPE Network Switches with software 15.16.x and 15.17.x allow local ...)
@@ -53438,43 +53438,43 @@
CVE-2015-6495
RESERVED
CVE-2015-6494 (Cross-site scripting (XSS) vulnerability in Infinite Automation Mango ...)
- TODO: check
+ NOT-FOR-US: Infinite Automation Mango Automation
CVE-2015-6493 (Cross-site request forgery (CSRF) vulnerability in Infinite Automation ...)
- TODO: check
+ NOT-FOR-US: Infinite Automation Mango Automation
CVE-2015-6492 (Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 ...)
- TODO: check
+ NOT-FOR-US: Allen-Bradley MicroLogix
CVE-2015-6491 (Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 ...)
- TODO: check
+ NOT-FOR-US: Allen-Bradley MicroLogix
CVE-2015-6490 (Stack-based buffer overflow on Allen-Bradley MicroLogix 1100 devices ...)
- TODO: check
+ NOT-FOR-US: Allen-Bradley MicroLogix
CVE-2015-6489
RESERVED
CVE-2015-6488 (Cross-site scripting (XSS) vulnerability in the web server on ...)
- TODO: check
+ NOT-FOR-US: Allen-Bradley MicroLogix
CVE-2015-6487
RESERVED
CVE-2015-6486 (SQL injection vulnerability on Allen-Bradley MicroLogix 1100 devices ...)
- TODO: check
+ NOT-FOR-US: Allen-Bradley MicroLogix
CVE-2015-6485 (Schneider Electric Telvent Sage 2300 RTUs with firmware before ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2015-6484 (3S-Smart CODESYS Gateway Server before 2.3.9.48 allows remote ...)
- TODO: check
+ NOT-FOR-US: 3S-Smart CODESYS
CVE-2015-6483
RESERVED
CVE-2015-6482 (Runtime Toolkit before 2.4.7.48 in 3S-Smart CODESYS before 2.3.9.48 ...)
- TODO: check
+ NOT-FOR-US: 3S-Smart CODESYS
CVE-2015-6481 (The login function in the RequestController class in Moxa OnCell ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2015-6480 (The MessageBrokerServlet servlet in Moxa OnCell Central Manager before ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2015-6479 (ACEmanager in Sierra Wireless ALEOS 4.4.2 and earlier on ES440, ES450, ...)
- TODO: check
+ NOT-FOR-US: Sierra Wireless ALEOS
CVE-2015-6478 (Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict ...)
- TODO: check
+ NOT-FOR-US: Unitronics VisiLogic OPLC IDE
CVE-2015-6477 (Multiple cross-site scripting (XSS) vulnerabilities in the Wind Farm ...)
TODO: check
CVE-2015-6476 (Advantech EKI-122x-BE devices with firmware before 1.65, EKI-132x ...)
- TODO: check
+ NOT-FOR-US: Advantech EKI-122x-BE devices
CVE-2015-6475 (Multiple cross-site scripting (XSS) vulnerabilities in IBC Solar ...)
NOT-FOR-US: ServeMaster
CVE-2015-6474 (IBC Solar ServeMaster TLP+ and Danfoss TLX Pro+ allow remote attackers ...)
@@ -53484,7 +53484,7 @@
CVE-2015-6472
RESERVED
CVE-2015-6471 (Eaton Cooper Power Systems ProView 4.x and 5.x before 5.1 on Form 6 ...)
- TODO: check
+ NOT-FOR-US: Eaton Cooper Power Systems ProView
CVE-2015-6470 (Resource Data Management Data Manager before 2.2 allows remote ...)
NOT-FOR-US: Resource Data Manager
CVE-2015-6469 (The interpreter in IBC Solar ServeMaster TLP+ and Danfoss TLX Pro+ ...)
@@ -53492,7 +53492,7 @@
CVE-2015-6468 (Cross-site request forgery (CSRF) vulnerability in Resource Data ...)
NOT-FOR-US: Resource Data Manager
CVE-2015-6467 (Advantech WebAccess before 8.1 allows remote attackers to execute ...)
- TODO: check
+ NOT-FOR-US: Advantech
CVE-2015-6466 (Cross-site scripting (XSS) vulnerability in the Diagnosis Ping feature ...)
NOT-FOR-US: Moxa switches
CVE-2015-6465 (The GoAhead web server on Moxa EDS-405A and EDS-408A switches with ...)
@@ -53720,39 +53720,39 @@
CVE-2015-6357 (The rule-update feature in Cisco FireSIGHT Management Center (MC) 5.2 ...)
NOT-FOR-US: Cisco FireSIGHT
CVE-2015-6356 (Cross-site scripting (XSS) vulnerability in the WeChat page in Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6355 (The web interface in Cisco Unified Computing System (UCS) 2.2(5b)A on ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6354 (Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6353 (Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6352 (Cisco Unified Communications Domain Manager before 10.6(1) provides ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6351 (Cisco ASR 5500 System Architecture Evolution (SAE) Gateway devices ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6350 (SQL injection vulnerability in the web framework in Cisco Prime ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6349 (Cross-site scripting (XSS) vulnerability in the web interface in the ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6348 (The report-generation web interface in the Solution Engine in Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6347 (The Solution Engine in Cisco Secure Access Control Server (ACS) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6346 (Cross-site scripting (XSS) vulnerability in Cisco Secure Access ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6345 (SQL injection vulnerability in the Solution Engine in Cisco Secure ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6344 (The web-based GUI in Cisco Adaptive Security Appliance (ASA) CX ...)
NOT-FOR-US: Cisco Adaptive Security Appliance
CVE-2015-6343 (The SIP implementation in Cisco IOS 15.5(3)M on Cisco Unified Border ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6342
RESERVED
CVE-2015-6341 (The Web Management GUI on Cisco Wireless LAN Controller (WLC) devices ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6340 (The Proxy Mobile IPv6 (PMIPv6) component in the CDMA implementation on ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2015-6339
RESERVED
CVE-2015-6338
@@ -55045,7 +55045,7 @@
CVE-2015-5781 (ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 does not ...)
NOT-FOR-US: Apple OS X
CVE-2015-5780 (The Safari Extensions implementation in Apple Safari before 9 does not ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5779 (QuickTime 7 in Apple OS X before 10.10.5 allows remote attackers to ...)
NOT-FOR-US: Apple OS X
CVE-2015-5778 (CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 ...)
@@ -58743,13 +58743,13 @@
CVE-2015-4595
RESERVED
CVE-2015-4594 (eClinicalWorks Population Health (CCMR) suffers from a session ...)
- TODO: check
+ NOT-FOR-US: eClinicalWorks Population Health
CVE-2015-4593 (eClinicalWorks Population Health (CCMR) suffers from a cross-site ...)
- TODO: check
+ NOT-FOR-US: eClinicalWorks Population Health
CVE-2015-4592 (eClinicalWorks Population Health (CCMR) suffers from an SQL injection ...)
- TODO: check
+ NOT-FOR-US: eClinicalWorks Population Health
CVE-2015-4591 (eClinicalWorks Population Health (CCMR) suffers from a cross site ...)
- TODO: check
+ NOT-FOR-US: eClinicalWorks Population Health
CVE-2015-4590 (The extractFrom function in Internals/QuotedString.cpp in Arduino JSON ...)
NOT-FOR-US: Arduino JSON
CVE-2015-4589
@@ -60180,9 +60180,9 @@
CVE-2015-4058
RESERVED
CVE-2015-4057 (The "Plug-in for VMware vCenter" in VCE Vision Intelligent Operations ...)
- TODO: check
+ NOT-FOR-US: VCE Vision Intelligent Operations
CVE-2015-4056 (The System Library in VCE Vision Intelligent Operations before 2.6.5 ...)
- TODO: check
+ NOT-FOR-US: VCE Vision Intelligent Operations
CVE-2015-4055
RESERVED
CVE-2015-XXXX [hwclock(8) SUID privilege escalation]
@@ -60240,7 +60240,7 @@
- ceph-deploy <itp> (bug #694013)
NOTE: http://tracker.ceph.com/issues/11694
CVE-2015-4049 (Unisys Libra 43xx, 63xx, and 83xx, and FS600 class systems with ...)
- TODO: check
+ NOT-FOR-US: Unisys Libra
CVE-2015-4048
RESERVED
CVE-2012-6691 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
@@ -60789,7 +60789,7 @@
CVE-2015-3855
RESERVED
CVE-2015-3854 (packages/SystemUI/src/com/android/systemui/power/PowerNotificationWarnings.java ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2015-3853
RESERVED
CVE-2015-3852
@@ -61934,7 +61934,7 @@
CVE-2015-3442
RESERVED
CVE-2015-3441 (The Parental Control panel in Genexis devices with DRGOS before 1.14.1 ...)
- TODO: check
+ NOT-FOR-US: Genexis devices
CVE-2015-3437
RESERVED
CVE-2015-3436 (provider/server/ECServer.cpp in Zarafa Collaboration Platform (ZCP) ...)
@@ -63634,7 +63634,7 @@
CVE-2015-2919
RESERVED
CVE-2015-2918 (The Studio component in OrientDB Server Community Edition before ...)
- TODO: check
+ NOT-FOR-US: OrientDB
CVE-2015-2917 (Securifi Almond devices with firmware before AL1-R201EXP10-L304-W34 ...)
NOT-FOR-US: Securifi Almond
CVE-2015-2916 (Cross-site request forgery (CSRF) vulnerability on Securifi Almond ...)
@@ -63644,9 +63644,9 @@
CVE-2015-2914 (Securifi Almond devices with firmware before AL1-R201EXP10-L304-W34 ...)
NOT-FOR-US: Securifi Almond
CVE-2015-2913 (server/network/protocol/http/OHttpSessionManager.java in the Studio ...)
- TODO: check
+ NOT-FOR-US: OrientDB
CVE-2015-2912 (The JSONP endpoint in the Studio component in OrientDB Server ...)
- TODO: check
+ NOT-FOR-US: OrientDB
CVE-2015-2911
RESERVED
CVE-2015-2910
@@ -63668,21 +63668,21 @@
CVE-2015-2902 (HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 ...)
NOT-FOR-US: HP ArcSight
CVE-2015-2901 (Multiple stack-based buffer overflows in Medicomp MEDCIN Engine ...)
- TODO: check
+ NOT-FOR-US: Medicomp
CVE-2015-2900 (The AddUserFinding add_userfinding2 function in Medicomp MEDCIN Engine ...)
- TODO: check
+ NOT-FOR-US: Medicomp
CVE-2015-2899 (Heap-based buffer overflow in the QualifierList ...)
- TODO: check
+ NOT-FOR-US: Medicomp
CVE-2015-2898 (Multiple stack-based buffer overflows in Medicomp MEDCIN Engine before ...)
- TODO: check
+ NOT-FOR-US: Medicomp
CVE-2015-2897 (Sierra Wireless ALEOS before 4.4.2 on AirLink ES, GX, and LS devices ...)
NOT-FOR-US: Sierra Wireless ALEOS
CVE-2015-2896 (The up.time client in Idera Uptime Infrastructure Monitor through 7.6 ...)
- TODO: check
+ NOT-FOR-US: Idera Uptime Infrastructure Monitor
CVE-2015-2895 (Buffer overflow in the up.time client in Idera Uptime Infrastructure ...)
- TODO: check
+ NOT-FOR-US: Idera Uptime Infrastructure Monitor
CVE-2015-2894 (Format string vulnerability in the up.time client in Idera Uptime ...)
- TODO: check
+ NOT-FOR-US: Idera Uptime Infrastructure Monitor
CVE-2015-2893
RESERVED
CVE-2015-2892
@@ -63739,9 +63739,9 @@
CVE-2015-2869 (The FileInfo plugin before 2.22 for Ghisler Total Commander allows ...)
NOT-FOR-US: Ghisler Total Commander
CVE-2015-2868 (An exploitable remote code execution vulnerability exists in the Trane ...)
- TODO: check
+ NOT-FOR-US: Trane
CVE-2015-2867 (A design flaw in the Trane ComfortLink II SCC firmware version 2.0.2 ...)
- TODO: check
+ NOT-FOR-US: Trane
CVE-2015-2866 (SQL injection vulnerability on the Grandstream GXV3611_HD camera with ...)
NOT-FOR-US: Grandstream camera
CVE-2015-2865
More information about the Secure-testing-commits
mailing list