[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Thu Nov 15 15:40:37 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8701550c by Salvatore Bonaccorso at 2018-11-15T15:39:56Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,7 +5,7 @@ CVE-2018-19293
 CVE-2018-19292
 	RESERVED
 CVE-2018-19291 (An issue discovered in DiliCMS 2.4.0. There is a CSRF vulnerability ...)
-	TODO: check
+	NOT-FOR-US: DiliCMS
 CVE-2018-19290
 	RESERVED
 CVE-2018-19289 (An issue was discovered in Valine v1.3.3. It allows HTML injection, ...)
@@ -9159,17 +9159,17 @@ CVE-2018-15716
 CVE-2018-15715
 	RESERVED
 CVE-2018-15714 (Nagios XI 5.5.6 allows reflected cross site scripting from remote ...)
-	TODO: check
+	NOT-FOR-US: Nagios XI
 CVE-2018-15713 (Nagios XI 5.5.6 allows persistent cross site scripting from remote ...)
-	TODO: check
+	NOT-FOR-US: Nagios XI
 CVE-2018-15712 (Nagios XI 5.5.6 allows reflected cross site scripting from remote ...)
-	TODO: check
+	NOT-FOR-US: Nagios XI
 CVE-2018-15711 (Nagios XI 5.5.6 allows remote authenticated attackers to reset and ...)
-	TODO: check
+	NOT-FOR-US: Nagios XI
 CVE-2018-15710 (Nagios XI 5.5.6 allows local authenticated attackers to escalate ...)
-	TODO: check
+	NOT-FOR-US: Nagios XI
 CVE-2018-15709 (Nagios XI 5.5.6 allows remote authenticated attackers to execute ...)
-	TODO: check
+	NOT-FOR-US: Nagios XI
 CVE-2018-15708 (Snoopy 1.0 in Nagios XI 5.5.6 allows remote unauthenticated attackers ...)
 	TODO: check
 CVE-2018-15707 (Advantech WebAccess 8.3.1 and 8.3.2 are vulnerable to cross-site ...)
@@ -31090,9 +31090,9 @@ CVE-2018-7360
 CVE-2018-7359
 	RESERVED
 CVE-2018-7358 (ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, ...)
-	TODO: check
+	NOT-FOR-US: ZTE ZXHN H168N product
 CVE-2018-7357 (ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, ...)
-	TODO: check
+	NOT-FOR-US: ZTE ZXHN H168N product
 CVE-2018-7356 (All versions up to V3.03.10.B23P2 of ZTE ZXR10 8905E product are ...)
 	NOT-FOR-US: ZTE ZXR10 8905E
 CVE-2018-7355 (All versions up to V1.0.0B05 of ZTE MF65 and all versions up to ...)
@@ -42005,13 +42005,13 @@ CVE-2018-3701
 CVE-2018-3700
 	RESERVED
 CVE-2018-3699 (Cross-site scripting in the Intel RAID Web Console v3 for Windows may ...)
-	TODO: check
+	NOT-FOR-US: Intel RAID Web Console
 CVE-2018-3698 (Improper file permissions in the installer for the Intel Ready Mode ...)
 	TODO: check
 CVE-2018-3697 (Improper directory permissions in the installer for the Intel Media ...)
 	TODO: check
 CVE-2018-3696 (Authentication bypass in the Intel RAID Web Console 3 for Windows ...)
-	TODO: check
+	NOT-FOR-US: Intel RAID Web Console
 CVE-2018-3695
 	RESERVED
 CVE-2018-3694



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8701550c1179027dcdd0a53bdb52222641caa84e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8701550c1179027dcdd0a53bdb52222641caa84e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181115/8b5d151e/attachment.html>

More information about the debian-security-tracker-commits mailing list