[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
72ba36b5 by Salvatore Bonaccorso at 2018-08-08T09:19:19Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -14,15 +14,15 @@ CVE-2018-15205
 CVE-2018-15204
 	RESERVED
 CVE-2018-15203 (An issue was discovered in Ignited CMS through 2017-02-19. ...)
-	TODO: check
+	NOT-FOR-US: Ignited CMS
 CVE-2018-15202 (An issue was discovered in Juunan06 eCommerce through 2018-08-05. There ...)
-	TODO: check
+	NOT-FOR-US: Juunan06 eCommerce
 CVE-2018-15201
 	RESERVED
 CVE-2018-15200
 	RESERVED
 CVE-2018-15199 (AuraCMS 2.3 allows XSS via a Bukutamu -> AddGuestbook action. ...)
-	TODO: check
+	NOT-FOR-US: AuraCMS
 CVE-2018-15198 (An issue was discovered in OneThink v1.1. There is a CSRF vulnerability ...)
 	TODO: check
 CVE-2018-15197 (An issue was discovered in OneThink v1.1. There is a CSRF vulnerability ...)
@@ -66,7 +66,7 @@ CVE-2018-15179
 CVE-2018-15178 (Open redirect vulnerability in Gogs before 0.12 allows remote attackers ...)
 	TODO: check
 CVE-2018-15177 (In Gxlcms 2.0, a news/index.php?s=Admin-Admin-Insert CSRF attack can ...)
-	TODO: check
+	NOT-FOR-US: Gxlcms
 CVE-2018-15176 (XnView 2.45 allows remote attackers to cause a denial of service (User ...)
 	TODO: check
 CVE-2018-15175 (XnView 2.45 allows remote attackers to cause a denial of service (User ...)
@@ -82,9 +82,9 @@ CVE-2018-15171
 CVE-2018-15170
 	RESERVED
 CVE-2018-15169 (A reflected Cross-site scripting (XSS) vulnerability in Zoho ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Applications Manager
 CVE-2018-15168 (A SQL Injection vulnerability exists in the Zoho ManageEngine ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Applications Manager
 CVE-2018-15167
 	RESERVED
 CVE-2018-15166
@@ -146,7 +146,7 @@ CVE-2018-15139
 CVE-2018-15138
 	RESERVED
 CVE-2018-15137 (CeLa Link CLR-M20 devices allow unauthorized users to upload any file ...)
-	TODO: check
+	NOT-FOR-US: CeLa Link CLR-M20 devices
 CVE-2018-15136
 	RESERVED
 CVE-2018-15135



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/72ba36b52a123041bac6c576c2d0922ef3860c75

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/72ba36b52a123041bac6c576c2d0922ef3860c75
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180808/530b1bc5/attachment-0001.html>