[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
jmm at debian.org
Fri Jun 29 14:00:23 BST 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f5c3cfb4 by Moritz Muehlenhoff at 2018-06-29T14:59:58+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,5 +1,5 @@
CVE-2018-12988 (GreenCMS 2.3.0603 has an arbitrary file download vulnerability via an ...)
- TODO: check
+ NOT-FOR-US: GreenCMS
CVE-2018-12987
RESERVED
CVE-2018-12986
@@ -7,7 +7,7 @@ CVE-2018-12986
CVE-2018-12985
RESERVED
CVE-2018-12984 (Hycus CMS 1.0.4 allows Authentication Bypass via "'=' 'OR'" ...)
- TODO: check
+ NOT-FOR-US: Hycus CMS
CVE-2018-12983 (A stack-based buffer over-read in the ...)
TODO: check
CVE-2018-12982 (Invalid memory read in the PoDoFo::PdfVariant::DelayedLoad() function ...)
@@ -29,11 +29,11 @@ CVE-2018-12975
CVE-2018-12974
RESERVED
CVE-2018-12973 (An issue was discovered in OpenTSDB 2.3.0. There is XSS in parameter ...)
- TODO: check
+ NOT-FOR-US: OpenTSDB
CVE-2018-12972 (An issue was discovered in OpenTSDB 2.3.0. Many parameters to the /q ...)
- TODO: check
+ NOT-FOR-US: OpenTSDB
CVE-2018-12971 (EasyCMS 1.3 has CSRF via the index.php?s=/admin/user/delAll URI to ...)
- TODO: check
+ NOT-FOR-US: EasyCMS
CVE-2018-12970
RESERVED
CVE-2018-12969
@@ -34304,7 +34304,7 @@ CVE-2017-17064
CVE-2017-17063
RESERVED
CVE-2017-17062 (The backend component in Open-Xchange OX App Suite before 7.6.3-rev35, ...)
- TODO: check
+ NOT-FOR-US: Open-Xchange
CVE-2017-17061
RESERVED
CVE-2017-17060
@@ -34392,7 +34392,7 @@ CVE-2018-0714
CVE-2018-0713
RESERVED
CVE-2018-0712 (Command injection vulnerability in LDAP Server in QNAP QTS 4.2.6 build ...)
- TODO: check
+ NOT-FOR-US: QNAP
CVE-2018-0711 (Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build ...)
NOT-FOR-US: QNAP
CVE-2018-0710
@@ -34644,47 +34644,47 @@ CVE-2018-0614
CVE-2018-0613
RESERVED
CVE-2018-0612 (Cross-site scripting vulnerability in 5000 trillion yen converter ...)
- TODO: check
+ NOT-FOR-US: 5000 trillion yen converter
CVE-2018-0611 (The ANA App for iOS version 4.0.22 and earlier does not verify X.509 ...)
- TODO: check
+ NOT-FOR-US: ANA App
CVE-2018-0610 (Local file inclusion vulnerability in Zenphoto 1.4.14 and earlier ...)
- TODO: check
+ NOT-FOR-US: Zenphoto
CVE-2018-0609 (Untrusted search path vulnerability in LINE for Windows versions ...)
- TODO: check
+ NOT-FOR-US: LINE
CVE-2018-0608 (Buffer overflow in H2O version 2.2.4 and earlier allows remote ...)
TODO: check
CVE-2018-0607
RESERVED
CVE-2018-0606 (SQL injection vulnerability in the Pixelpost v1.7.3 and earlier allows ...)
- TODO: check
+ NOT-FOR-US: Pixelpost
CVE-2018-0605 (Cross-site scripting vulnerability in Pixelpost v1.7.3 and earlier ...)
- TODO: check
+ NOT-FOR-US: Pixelpost
CVE-2018-0604 (Pixelpost v1.7.3 and earlier allows remote code execution via ...)
- TODO: check
+ NOT-FOR-US: Pixelpost
CVE-2018-0603 (Cross-site scripting vulnerability in Site Reviews versions prior to ...)
- TODO: check
+ NOT-FOR-US: Site Reviews
CVE-2018-0602 (Cross-site scripting vulnerability in Email Subscribers & Newsletters ...)
- TODO: check
+ NOT-FOR-US: Email Subscribers & Newsletters
CVE-2018-0601 (Untrusted search path vulnerability in axpdfium v0.01 allows an ...)
- TODO: check
+ NOT-FOR-US: axpdfium
CVE-2018-0600 (Untrusted search path vulnerability in the installer of PlayMemories ...)
- TODO: check
+ NOT-FOR-US: PlayMemories
CVE-2018-0599 (Untrusted search path vulnerability in the installer of Visual C++ ...)
- TODO: check
+ NOT-FOR-US: Visual C++
CVE-2018-0598 (Untrusted search path vulnerability in Self-extracting archive files ...)
- TODO: check
+ NOT-FOR-US: IExpress
CVE-2018-0597 (Untrusted search path vulnerability in the installer of Visual Studio ...)
- TODO: check
+ NOT-FOR-US: Visual Studio
CVE-2018-0596 (Untrusted search path vulnerability in the installer of Visual Studio ...)
- TODO: check
+ NOT-FOR-US: Visual Studio
CVE-2018-0595 (Untrusted search path vulnerability in the installer of Skype for ...)
- TODO: check
+ NOT-FOR-US: Skype
CVE-2018-0594 (Untrusted search path vulnerability in Skype for Windows allows an ...)
- TODO: check
+ NOT-FOR-US: Skype
CVE-2018-0593 (Untrusted search path vulnerability in the installer of Microsoft ...)
- TODO: check
+ NOT-FOR-US: OneDrive
CVE-2018-0592 (Untrusted search path vulnerability in Microsoft OneDrive allows an ...)
- TODO: check
+ NOT-FOR-US: OneDrive
CVE-2018-0591 (The KINEPASS App for Android Ver 3.1.1 and earlier, and for iOS Ver ...)
NOT-FOR-US: KINEPASS
CVE-2018-0590 (Ultimate Member plugin prior to version 2.0.4 for WordPress allows ...)
@@ -34700,7 +34700,7 @@ CVE-2018-0586 (Directory traversal vulnerability in the shortcodes function of .
CVE-2018-0585 (Cross-site scripting vulnerability in Ultimate Member plugin prior to ...)
NOT-FOR-US: WordPress plugin ultimate-member
CVE-2018-0584 (IIJ SmartKey App for Android version 2.1.0 and earlier allows remote ...)
- TODO: check
+ NOT-FOR-US: IIJ SmartKey
CVE-2018-0583 (Cross-site scripting vulnerability in ASUS RT-AC1200HP Firmware ...)
NOT-FOR-US: ASUS
CVE-2018-0582 (Cross-site scripting vulnerability in ASUS RT-AC68U Firmware version ...)
@@ -34718,31 +34718,31 @@ CVE-2018-0577 (Cross-site scripting vulnerability in WP Google Map Plugin prior
CVE-2018-0576 (Cross-site scripting vulnerability in Events Manager plugin prior to ...)
NOT-FOR-US: WordPress plugin events-manager
CVE-2018-0575 (baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0574 (Cross-site scripting vulnerability in baserCMS (baserCMS 4.1.0.1 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0573 (baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0572 (baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0571 (baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0570 (Cross-site scripting vulnerability in baserCMS (baserCMS 4.1.0.1 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0569 (baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and ...)
- TODO: check
+ NOT-FOR-US: baserCMS
CVE-2018-0568 (Unrestricted file upload vulnerability in SiteBridge Inc. Joruri Gw ...)
NOT-FOR-US: Joruri Gw
CVE-2018-0567 (Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers to ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0566 (Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers to ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0565 (Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.8.0 ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0564 (Session fixation vulnerability in EC-CUBE (EC-CUBE 3.0.0, EC-CUBE ...)
NOT-FOR-US: EC-CUBE
CVE-2018-0563 (Untrusted search path vulnerability in the installer of FLET'S VIRUS ...)
- TODO: check
+ NOT-FOR-US: FLET
CVE-2018-0562 (Untrusted search path vulnerability in Installer of SoundEngine Free ...)
NOT-FOR-US: Installer of SoundEngine Free
CVE-2018-0561 (Untrusted search path vulnerability in The installer of PhishWall ...)
@@ -34750,11 +34750,11 @@ CVE-2018-0561 (Untrusted search path vulnerability in The installer of PhishWall
CVE-2018-0560 (Hatena Bookmark App for iOS Version 3.0 to 3.70 allows remote ...)
NOT-FOR-US: Hatena Bookmark App for iOS
CVE-2018-0559 (Cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 ...)
- TODO: check
+ NOT-FOR-US: Cybozu Mailwise
CVE-2018-0558 (Reflected cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 ...)
- TODO: check
+ NOT-FOR-US: Cybozu Mailwise
CVE-2018-0557 (Stored cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to ...)
- TODO: check
+ NOT-FOR-US: Cybozu Mailwise
CVE-2018-0556 (Buffalo WZR-1750DHP2 Ver.2.30 and earlier allows an attacker to ...)
NOT-FOR-US: Buffalo WZR-1750DHP2
CVE-2018-0555 (Buffer overflow in Buffalo WZR-1750DHP2 Ver.2.30 and earlier allows an ...)
@@ -34810,13 +34810,13 @@ CVE-2018-0531 (Cybozu Garoon 3.0.0 to 4.2.6 allows remote authenticated attacker
CVE-2018-0530 (SQL injection vulnerability in the Cybozu Garoon 3.5.0 to 4.2.6 allows ...)
NOT-FOR-US: Cybozu Garoon
CVE-2018-0529 (Cybozu Office 10.0.0 to 10.7.0 allows remote attackers to cause a ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0528 (Cybozu Office 10.0.0 to 10.7.0 allows authenticated attackers to ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0527 (Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.7.0 ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0526 (Cybozu Office 10.0.0 to 10.7.0 allow remote attackers to display an ...)
- TODO: check
+ NOT-FOR-US: Cybozu Office
CVE-2018-0525 (Directory traversal vulnerability in Jubatus 1.0.2 and earlier allows ...)
- jubatus <itp> (bug #704100)
CVE-2018-0524 (Jubatus 1.0.2 and earlier allows remote code execution via unspecified ...)
@@ -35277,11 +35277,11 @@ CVE-2018-0375
CVE-2018-0374
RESERVED
CVE-2018-0373 (A vulnerability in vpnva-6.sys for 32-bit Windows and vpnva64-6.sys for ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0372
RESERVED
CVE-2018-0371 (A vulnerability in the Web Admin Interface of Cisco Meeting Server ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0370
RESERVED
CVE-2018-0369
@@ -35293,21 +35293,21 @@ CVE-2018-0367
CVE-2018-0366
RESERVED
CVE-2018-0365 (A vulnerability in the web-based management interface of Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0364 (A vulnerability in the web-based management interface of Cisco Unified ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0363 (A vulnerability in the web-based management interface of Cisco Unified ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0362 (A vulnerability in BIOS authentication management of Cisco 5000 Series ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0361
RESERVED
CVE-2018-0360
RESERVED
CVE-2018-0359 (A vulnerability in the session identification management functionality ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0358 (A vulnerability in the file descriptor handling of Cisco TelePresence ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0357 (A vulnerability in the web framework of Cisco WebEx could allow an ...)
NOT-FOR-US: Cisco
CVE-2018-0356 (A vulnerability in the web framework of Cisco WebEx could allow an ...)
@@ -35349,7 +35349,7 @@ CVE-2018-0339 (A vulnerability in the web-based management interface of Cisco Id
CVE-2018-0338 (A vulnerability in the role-based access-checking mechanisms of Cisco ...)
NOT-FOR-US: Cisco
CVE-2018-0337 (A vulnerability in the role-based access-checking mechanisms of Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0336 (A vulnerability in the batch provisioning feature of Cisco Prime ...)
NOT-FOR-US: Cisco
CVE-2018-0335 (A vulnerability in the web portal authentication process of Cisco Prime ...)
@@ -35359,13 +35359,13 @@ CVE-2018-0334 (A vulnerability in the certificate management subsystem of Cisco
CVE-2018-0333 (A vulnerability in the VPN configuration management of Cisco FireSIGHT ...)
NOT-FOR-US: Cisco
CVE-2018-0332 (A vulnerability in the Session Initiation Protocol (SIP) ingress packet ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0331 (A vulnerability in the Cisco Discovery Protocol (formerly known as CDP) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0330 (A vulnerability in the NX-API management application programming ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0329 (A vulnerability in the default configuration of the Simple Network ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0328 (A vulnerability in the web framework of Cisco Unified Communications ...)
NOT-FOR-US: Cisco
CVE-2018-0327 (A vulnerability in the web framework of Cisco Identity Services Engine ...)
@@ -35379,69 +35379,69 @@ CVE-2018-0324 (A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure
CVE-2018-0323 (A vulnerability in the web management interface of Cisco Enterprise NFV ...)
NOT-FOR-US: Cisco
CVE-2018-0322 (A vulnerability in the web management interface of Cisco Prime ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0321 (A vulnerability in Cisco Prime Collaboration Provisioning (PCP) could ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0320 (A vulnerability in the web framework code of Cisco Prime Collaboration ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0319 (A vulnerability in the password recovery function of Cisco Prime ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0318 (A vulnerability in the password reset function of Cisco Prime ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0317 (A vulnerability in the web interface of Cisco Prime Collaboration ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0316 (A vulnerability in the Session Initiation Protocol (SIP) call-handling ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0315 (A vulnerability in the authentication, authorization, and accounting ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0314 (A vulnerability in the Cisco Fabric Services (CFS) component of Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0313 (A vulnerability in the NX-API feature of Cisco NX-OS Software could ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0312 (A vulnerability in the Cisco Fabric Services component of Cisco FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0311 (A vulnerability in the Cisco Fabric Services component of Cisco FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0310 (A vulnerability in the Cisco Fabric Services component of Cisco FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0309 (A vulnerability in the implementation of a specific CLI command and the ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0308 (A vulnerability in the Cisco Fabric Services component of Cisco FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0307 (A vulnerability in the CLI of Cisco NX-OS Software could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0306 (A vulnerability in the CLI parser of Cisco NX-OS Software could allow ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0305 (A vulnerability in the Cisco Fabric Services component of Cisco FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0304 (A vulnerability in the Cisco Fabric Services component of Cisco FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0303 (A vulnerability in the Cisco Discovery Protocol component of Cisco FXOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0302 (A vulnerability in the CLI parser of Cisco FXOS Software and Cisco UCS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0301 (A vulnerability in the NX-API feature of Cisco NX-OS Software could ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0300 (A vulnerability in the process of uploading new application images to ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0299 (A vulnerability in the Simple Network Management Protocol (SNMP) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0298 (A vulnerability in the web UI of Cisco FXOS and Cisco UCS Fabric ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0297 (A vulnerability in the detection engine of Cisco Firepower Threat ...)
NOT-FOR-US: Cisco
CVE-2018-0296 (A vulnerability in the web interface of the Cisco Adaptive Security ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0295 (A vulnerability in the Border Gateway Protocol (BGP) implementation of ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0294 (A vulnerability in the write-erase feature of Cisco FXOS Software and ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0293 (A vulnerability in role-based access control (RBAC) for Cisco NX-OS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0292 (A vulnerability in the Internet Group Management Protocol (IGMP) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0291 (A vulnerability in the Simple Network Management Protocol (SNMP) input ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0290 (A vulnerability in the TCP stack of Cisco SocialMiner could allow an ...)
NOT-FOR-US: Cisco
CVE-2018-0289 (A vulnerability in the logs component of Cisco Identity Services Engine ...)
@@ -35475,7 +35475,7 @@ CVE-2018-0276 (A vulnerability in Cisco WebEx Connect IM could allow an ...)
CVE-2018-0275 (A vulnerability in the support tunnel feature of Cisco Identity ...)
NOT-FOR-US: Cisco
CVE-2018-0274 (A vulnerability in the CLI parser of Cisco Network Services ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0273 (A vulnerability in the IPsec Manager of Cisco StarOS for Cisco ...)
NOT-FOR-US: Cisco
CVE-2018-0272 (A vulnerability in the Secure Sockets Layer (SSL) Engine of Cisco ...)
@@ -35497,7 +35497,7 @@ CVE-2018-0265
CVE-2018-0264 (A vulnerability in the Cisco WebEx Network Recording Player for ...)
NOT-FOR-US: Cisco
CVE-2018-0263 (A vulnerability in Cisco Meeting Server (CMS) could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0262 (A vulnerability in Cisco Meeting Server could allow an unauthenticated, ...)
NOT-FOR-US: Cisco
CVE-2018-0261
@@ -35573,7 +35573,7 @@ CVE-2018-0227 (A vulnerability in the Secure Sockets Layer (SSL) Virtual Private
CVE-2018-0226 (A vulnerability in the assignment and management of default user ...)
NOT-FOR-US: Cisco
CVE-2018-0225 (The Enterprise Console in Cisco AppDynamics App iQ Platform before ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0224 (A vulnerability in the CLI of the Cisco StarOS operating system for ...)
NOT-FOR-US: Cisco
CVE-2018-0223 (A vulnerability in DesktopServlet in the web-based management interface ...)
@@ -35735,7 +35735,7 @@ CVE-2018-0151 (A vulnerability in the quality of service (QoS) subsystem of Cisc
CVE-2018-0150 (A vulnerability in Cisco IOS XE Software could allow an ...)
NOT-FOR-US: Cisco
CVE-2018-0149 (A vulnerability in the web-based management interface of Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0148 (A vulnerability in the web-based management interface of Cisco UCS ...)
NOT-FOR-US: Cisco
CVE-2018-0147 (A vulnerability in Java deserialization used by Cisco Secure Access ...)
@@ -36695,7 +36695,7 @@ CVE-2017-16861 (It was possible for double OGNL evaluation in certain redirect a
CVE-2017-16860 (The invalidRedirectUrl template in Atlassian Application Links before ...)
NOT-FOR-US: Atlassian
CVE-2017-16859 (The review attachment resource in Atlassian Fisheye and Crucible ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2017-16858 (The 'crowd-application' plugin module (notably used by the Google Apps ...)
NOT-FOR-US: 'crowd-application' plugin module in Atlassian Crowd
CVE-2017-16857 (It is possible to bypass the bitbucket auto-unapprove plugin via ...)
@@ -37075,7 +37075,7 @@ CVE-2017-16728 (An Untrusted Pointer Dereference issue was discovered in Advante
CVE-2017-16727 (A Credentials Management issue was discovered in Moxa NPort W2150A ...)
NOT-FOR-US: Moxa
CVE-2017-16726 (Beckhoff TwinCAT supports communication over ADS. ADS is a protocol ...)
- TODO: check
+ NOT-FOR-US: Beckhoff TwinCAT
CVE-2017-16725 (A Stack-based Buffer Overflow issue was discovered in Xiongmai ...)
NOT-FOR-US: Xiongmai Technology IP Cameras and DVRs
CVE-2017-16724 (A Stack-based Buffer Overflow issue was discovered in Advantech ...)
@@ -37091,7 +37091,7 @@ CVE-2017-16720 (A Path Traversal issue was discovered in WebAccess versions prio
CVE-2017-16719 (An Injection issue was discovered in Moxa NPort 5110 Version 2.2, NPort ...)
NOT-FOR-US: Moxa
CVE-2017-16718 (Beckhoff TwinCAT 3 supports communication over ADS. ADS is a protocol ...)
- TODO: check
+ NOT-FOR-US: Beckhoff TwinCAT
CVE-2017-16717 (A Heap-based Buffer Overflow issue was discovered in WECON LeviStudio ...)
NOT-FOR-US: WECON LeviStudio HMI
CVE-2017-16716 (A SQL Injection issue was discovered in WebAccess versions prior to ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f5c3cfb4b1f5750eb27d387a09583d646330706c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f5c3cfb4b1f5750eb27d387a09583d646330706c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180629/fa9b88c0/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list