[Secure-testing-commits] r56811 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Oct 18 09:23:11 UTC 2017


Author: carnil
Date: 2017-10-18 09:23:11 +0000 (Wed, 18 Oct 2017)
New Revision: 56811

Modified:
   data/CVE/list
Log:
Process some NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-10-18 09:17:45 UTC (rev 56810)
+++ data/CVE/list	2017-10-18 09:23:11 UTC (rev 56811)
@@ -5,7 +5,7 @@
 CVE-2017-15584
 	RESERVED
 CVE-2017-15583 (The embedded web server on ABB Fox515T 1.0 devices is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: ABB Fox515T 1.0 devices
 CVE-2017-15582
 	RESERVED
 CVE-2017-15581
@@ -4337,23 +4337,23 @@
 CVE-2017-14014
 	RESERVED
 CVE-2017-14013 (A Client-Side Enforcement of Server-Side Security issue was discovered ...)
-	TODO: check
+	NOT-FOR-US: ProMinent MultiFLEX M10a Controller
 CVE-2017-14012
 	RESERVED
 CVE-2017-14011 (A Cross-Site Request Forgery issue was discovered in ProMinent ...)
-	TODO: check
+	NOT-FOR-US: ProMinent MultiFLEX M10a Controller
 CVE-2017-14010
 	RESERVED
 CVE-2017-14009 (An Information Exposure issue was discovered in ProMinent MultiFLEX ...)
-	TODO: check
+	NOT-FOR-US: ProMinent MultiFLEX M10a Controller
 CVE-2017-14008
 	RESERVED
 CVE-2017-14007 (An Insufficient Session Expiration issue was discovered in ProMinent ...)
-	TODO: check
+	NOT-FOR-US: ProMinent MultiFLEX M10a Controller
 CVE-2017-14006
 	RESERVED
 CVE-2017-14005 (An Unverified Password Change issue was discovered in ProMinent ...)
-	TODO: check
+	NOT-FOR-US: ProMinent MultiFLEX M10a Controller
 CVE-2017-14004
 	RESERVED
 CVE-2017-14003 (An Authentication Bypass by Spoofing issue was discovered in LAVA ...)
@@ -16804,7 +16804,7 @@
 CVE-2017-9626
 	RESERVED
 CVE-2017-9625 (An Improper Authentication issue was discovered in Envitech EnviDAS ...)
-	TODO: check
+	NOT-FOR-US: Envitech EnviDAS Ultimate
 CVE-2017-9624 (Multiple cross-site scripting (XSS) vulnerabilities in Telaxus/EPESI ...)
 	NOT-FOR-US: Telaxus/EPESI
 CVE-2017-9623 (Multiple cross-site scripting (XSS) vulnerabilities in Telaxus/EPESI ...)




More information about the Secure-testing-commits mailing list