[Secure-testing-commits] r56960 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Wed Oct 25 09:10:16 UTC 2017
Author: sectracker
Date: 2017-10-25 09:10:16 +0000 (Wed, 25 Oct 2017)
New Revision: 56960
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-25 08:22:00 UTC (rev 56959)
+++ data/CVE/list 2017-10-25 09:10:16 UTC (rev 56960)
@@ -1,3 +1,25 @@
+CVE-2017-15885 (Reflected XSS in the web administration portal on the Axis 2100 Network ...)
+ TODO: check
+CVE-2017-15884
+ RESERVED
+CVE-2017-15883
+ RESERVED
+CVE-2017-15882
+ RESERVED
+CVE-2017-15881 (Cross-Site Scripting vulnerability in KeystoneJS before 4.0.0-beta.7 ...)
+ TODO: check
+CVE-2017-15880 (SQL injection vulnerability vulnerability in the EyesOfNetwork web ...)
+ TODO: check
+CVE-2017-15879 (CSV Injection (aka Excel Macro Injection or Formula Injection) exists ...)
+ TODO: check
+CVE-2017-15878 (A cross-site scripting (XSS) vulnerability exists in ...)
+ TODO: check
+CVE-2017-15877
+ RESERVED
+CVE-2017-15876
+ RESERVED
+CVE-2017-15875
+ RESERVED
CVE-2017-15874 (archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an ...)
- busybox <unfixed> (bug #879732)
[stretch] - busybox <no-dsa> (Minor issue)
@@ -8844,8 +8866,8 @@
NOT-FOR-US: SpiderControl SCADA MicroBrowser
CVE-2017-12706 (A stack-based buffer overflow issue was discovered in Advantech ...)
NOT-FOR-US: Advantech WebAccess
-CVE-2017-12705
- RESERVED
+CVE-2017-12705 (A Heap-Based Buffer Overflow issue was discovered in Advantech WebOP. A ...)
+ TODO: check
CVE-2017-12704 (A heap-based buffer overflow issue was discovered in Advantech ...)
NOT-FOR-US: Advantech WebAccess
CVE-2017-12703 (A Cross-Site Request Forgery (CSRF) issue was discovered in Westermo ...)
@@ -41555,8 +41577,8 @@
RESERVED
CVE-2017-1584
RESERVED
-CVE-2017-1583
- RESERVED
+CVE-2017-1583 (IBM WebSphere Application Server (IBM Liberty for Java for Bluemix ...)
+ TODO: check
CVE-2017-1582
RESERVED
CVE-2017-1581
@@ -41675,8 +41697,8 @@
RESERVED
CVE-2017-1524
RESERVED
-CVE-2017-1523
- RESERVED
+CVE-2017-1523 (IBM InfoSphere Master Data Management - Collaborative Edition 11.5 ...)
+ TODO: check
CVE-2017-1522 (IBM Content Navigator & CMIS 2.0.3, 3.0.0, and 3.0.1 is vulnerable to ...)
NOT-FOR-US: IBM
CVE-2017-1521
@@ -41971,8 +41993,8 @@
NOT-FOR-US: IBM
CVE-2017-1376 (A flaw in the IBM J9 VM class verifier allows untrusted code to ...)
NOT-FOR-US: IBM JDK
-CVE-2017-1375
- RESERVED
+CVE-2017-1375 (IBM System Storage Storwize V7000 Unified (V7000U) 1.5 and 1.6 uses ...)
+ TODO: check
CVE-2017-1374 (Sensitive data can be exposed in the IBM TRIRIGA Application Platform ...)
NOT-FOR-US: IBM
CVE-2017-1373 (Reports executed in the IBM TRIRIGA Application Platform 3.3, 3.4, and ...)
@@ -42297,14 +42319,14 @@
NOT-FOR-US: IBM
CVE-2017-1213
RESERVED
-CVE-2017-1212
- RESERVED
-CVE-2017-1211
- RESERVED
-CVE-2017-1210
- RESERVED
-CVE-2017-1209
- RESERVED
+CVE-2017-1212 (IBM Daeja ViewONE Professional, Standard & Virtual 4.1.5.1 and 5.0.2 ...)
+ TODO: check
+CVE-2017-1211 (IBM Daeja ViewONE Professional, Standard & Virtual 4.1.5.1 and 5.0.2 ...)
+ TODO: check
+CVE-2017-1210 (IBM Daeja ViewONE Professional, Standard & Virtual 4.1.5.1 and 5.0.2 ...)
+ TODO: check
+CVE-2017-1209 (IBM Daeja ViewONE Professional, Standard & Virtual 4.1.5.1 and 5.0.2 ...)
+ TODO: check
CVE-2017-1208 (IBM Maximo Asset Management 7.1, 7.5, and 7.6 is vulnerable to ...)
NOT-FOR-US: IBM
CVE-2017-1207 (IBM WebSphere Message Broker stores user credentials in plain in clear ...)
@@ -66292,8 +66314,8 @@
NOT-FOR-US: IBM
CVE-2016-3050
RESERVED
-CVE-2016-3049
- RESERVED
+CVE-2016-3049 (IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 is vulnerable to HTML ...)
+ TODO: check
CVE-2016-3048
RESERVED
CVE-2016-3047 (Open redirect vulnerability in IBM FileNet Workplace 4.0.2 through ...)
More information about the Secure-testing-commits
mailing list