[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Mon Aug 27 21:34:15 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
77544866 by Salvatore Bonaccorso at 2018-08-27T20:33:49Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -18,7 +18,7 @@ CVE-2018-15906
CVE-2018-15905
RESERVED
CVE-2018-15904 (A10 ACOS Web Application Firewall (WAF) 2.7.1 and 2.7.2 before ...)
- TODO: check
+ NOT-FOR-US: A10 ACOS Web Application Firewall
CVE-2018-15903
RESERVED
CVE-2018-15902
@@ -63,7 +63,7 @@ CVE-2015-9263 (An issue was discovered in post2file.php in Up.Time Monitoring St
CVE-2014-10074 (Umbraco before 7.2.0 has a remote PHP code execution vulnerability ...)
NOT-FOR-US: Umbraco
CVE-2018-15887 (Main_Analysis_Content.asp in ASUS DSL-N12E_C1 1.1.2.3_345 is prone to ...)
- TODO: check
+ NOT-FOR-US: ASUS DSL-N12E_C1
CVE-2018-15886
RESERVED
CVE-2018-15885 (Ovation FindMe 1.4-1083-1 is intended to support transmission of ...)
@@ -271,7 +271,7 @@ CVE-2018-15812
CVE-2018-15811
RESERVED
CVE-2018-15810 (Visiology Flipbox Software Suite before 2.7.0 allows directory ...)
- TODO: check
+ NOT-FOR-US: Visiology Flipbox Software Suite
CVE-2018-15809 (AccuPOS 2017.8 is installed with the insecure "Authenticated Users: ...)
NOT-FOR-US: AccuPOS
CVE-2018-15808 (POSIM EVO 15.13 for Windows includes hardcoded database credentials for ...)
@@ -505,17 +505,17 @@ CVE-2018-15701
CVE-2018-15700
RESERVED
CVE-2018-15699 (ASUSTOR Data Master 3.1.5 and below makes an HTTP request for a ...)
- TODO: check
+ NOT-FOR-US: ASUSTOR Data Master
CVE-2018-15698 (ASUSTOR Data Master 3.1.5 and below allows authenticated remote ...)
- TODO: check
+ NOT-FOR-US: ASUSTOR Data Master
CVE-2018-15697 (ASUSTOR Data Master 3.1.5 and below allows authenticated remote ...)
- TODO: check
+ NOT-FOR-US: ASUSTOR Data Master
CVE-2018-15696 (ASUSTOR Data Master 3.1.5 and below allows authenticated remote ...)
- TODO: check
+ NOT-FOR-US: ASUSTOR Data Master
CVE-2018-15695 (ASUSTOR Data Master 3.1.5 and below allows authenticated remote ...)
- TODO: check
+ NOT-FOR-US: ASUSTOR Data Master
CVE-2018-15694 (ASUSTOR Data Master 3.1.5 and below allows authenticated remote ...)
- TODO: check
+ NOT-FOR-US: ASUSTOR Data Master
CVE-2018-15693
RESERVED
CVE-2018-15692
@@ -31880,7 +31880,7 @@ CVE-2018-3929 (An exploitable heap corruption exists in the PowerPoint document
CVE-2018-3928
RESERVED
CVE-2018-3927 (An exploitable information disclosure vulnerability exists in the ...)
- TODO: check
+ NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3926
RESERVED
CVE-2018-3925 (An exploitable buffer overflow vulnerability exists in the remote ...)
@@ -31898,7 +31898,7 @@ CVE-2018-3920
CVE-2018-3919 (An exploitable stack-based buffer overflow vulnerability exists in the ...)
NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3918 (An exploitable vulnerability exists in the remote servers of Samsung ...)
- TODO: check
+ NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3917 (On Samsung SmartThings Hub STH-ETH-250 devices with firmware version ...)
NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3916
@@ -31912,21 +31912,21 @@ CVE-2018-3913
CVE-2018-3912 (On Samsung SmartThings Hub STH-ETH-250 devices with firmware version ...)
NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3911 (An exploitable HTTP header injection vulnerability exists in the ...)
- NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
+ NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3910
RESERVED
CVE-2018-3909 (An exploitable vulnerability exists in the REST parser of video-core's ...)
- NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
+ NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3908
RESERVED
CVE-2018-3907 (An exploitable vulnerability exists in the REST parser of video-core's ...)
- NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
+ NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3906
RESERVED
CVE-2018-3905 (An exploitable buffer overflow vulnerability exists in the camera ...)
NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3904 (An exploitable buffer overflow vulnerability exists in the camera ...)
- TODO: check
+ NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3903 (On Samsung SmartThings Hub STH-ETH-250 devices with firmware version ...)
NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3902 (An exploitable buffer overflow vulnerability exists in the camera ...)
@@ -31948,7 +31948,7 @@ CVE-2018-3895
CVE-2018-3894
RESERVED
CVE-2018-3893 (An exploitable buffer overflow vulnerability exists in the ...)
- TODO: check
+ NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3892
RESERVED
CVE-2018-3891
@@ -31974,7 +31974,7 @@ CVE-2018-3882
CVE-2018-3881 (An exploitable unauthenticated XML external injection vulnerability ...)
NOT-FOR-US: FocalScope
CVE-2018-3880 (An exploitable stack-based buffer overflow vulnerability exists in the ...)
- NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
+ NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3879 (An exploitable JSON injection vulnerability exists in the credentials ...)
NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3878 (Multiple exploitable buffer overflow vulnerabilities exist in the ...)
@@ -31990,7 +31990,7 @@ CVE-2018-3874
CVE-2018-3873
RESERVED
CVE-2018-3872 (An exploitable buffer overflow vulnerability exists in the credentials ...)
- NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
+ NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3871 (An exploitable out-of-bounds write exists in the PCX parsing ...)
NOT-FOR-US: Canvas Draw
CVE-2018-3870 (An exploitable out-of-bounds write exists in the PCX parsing ...)
@@ -32002,7 +32002,7 @@ CVE-2018-3868 (A specially crafted TIFF image processed via the application can
CVE-2018-3867 (An exploitable stack-based buffer overflow vulnerability exists in the ...)
NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3866 (An exploitable buffer overflow vulnerability exists in the ...)
- NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
+ NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3865
RESERVED
CVE-2018-3864
@@ -32022,7 +32022,7 @@ CVE-2018-3858 (An exploitable heap overflow exists in the TIFF parsing functiona
CVE-2018-3857 (An exploitable heap overflow exists in the TIFF parsing functionality ...)
NOT-FOR-US: Canvas Draw
CVE-2018-3856 (An exploitable vulnerability exists in the smart cameras RTSP ...)
- NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
+ NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
CVE-2018-3855 (In Hyland Perceptive Document Filters 11.4.0.2647 - x86/x64 ...)
NOT-FOR-US: Hyland Perceptive Document Filters
CVE-2018-3854
@@ -38211,7 +38211,7 @@ CVE-2018-1646
CVE-2018-1645
RESERVED
CVE-2018-1644 (IBM WebSphere Commerce Enterprise, Professional, Express, and ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1643
RESERVED
CVE-2018-1642
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7754486648164186a3a496f14a208312a54265c8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7754486648164186a3a496f14a208312a54265c8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180827/5e82df37/attachment.html>
More information about the debian-security-tracker-commits
mailing list