[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Oct 9 21:37:27 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0e40b35a by Salvatore Bonaccorso at 2018-10-09T20:36:49Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -207,11 +207,11 @@ CVE-2018-18086
 CVE-2018-18085
 	RESERVED
 CVE-2018-18084 (An issue was discovered in DuomiCMS 3.0. SQL injection exists in the ...)
-	TODO: check
+	NOT-FOR-US: DuomiCMS
 CVE-2018-18083 (An issue was discovered in DuomiCMS 3.0. Remote PHP code execution is ...)
-	TODO: check
+	NOT-FOR-US: DuomiCMS
 CVE-2018-18082 (XSS exists in Waimai Super Cms 20150505 via the fname parameter to the ...)
-	TODO: check
+	NOT-FOR-US: Waimai Super Cms
 CVE-2018-18081
 	RESERVED
 CVE-2018-18080
@@ -225,7 +225,7 @@ CVE-2018-18077
 CVE-2018-18076
 	RESERVED
 CVE-2018-18075 (WikidForum 2.20 has SQL Injection via the rpc.php parent_post_id or ...)
-	TODO: check
+	NOT-FOR-US: WikidForum
 CVE-2018-18074 (The Requests package through 2.19.1 before 2018-09-14 for Python sends ...)
 	TODO: check
 CVE-2018-18073
@@ -233,9 +233,9 @@ CVE-2018-18073
 CVE-2018-18072
 	RESERVED
 CVE-2018-18071 (An issue was discovered in the Daimler Mercedes-Benz Me app 2.11.0-846 ...)
-	TODO: check
+	NOT-FOR-US:  Daimler Mercedes-Benz Me app for iOS
 CVE-2018-18070 (An issue was discovered in Daimler Mercedes-Benz COMAND 17/13.0 50.12 ...)
-	TODO: check
+	NOT-FOR-US: Daimler Mercedes-Benz COMAND on Mercedes-Benz C-Class 2018 vehicles
 CVE-2018-18069 (process_forms in the WPML (aka sitepress-multilingual-cms) plugin ...)
 	NOT-FOR-US: Wordpress plugin
 CVE-2018-18068
@@ -348,7 +348,7 @@ CVE-2018-18031
 CVE-2018-18030
 	RESERVED
 CVE-2018-18029 (Navigate CMS has Stored XSS via the navigate.php Title field in an ...)
-	TODO: check
+	NOT-FOR-US: Navigate CMS
 CVE-2018-18028
 	RESERVED
 CVE-2018-18027
@@ -9940,9 +9940,9 @@ CVE-2018-14083 (LICA miniCMTS E8K(u/i/...) devices allow remote attackers to obt
 CVE-2018-14082 (PHP Scripts Mall JOB SITE (aka Job Portal) 3.0.1 has Cross-site ...)
 	NOT-FOR-US: PHP Scripts Mall JOB SITE (aka Job Portal)
 CVE-2018-14081 (An issue was discovered on D-Link DIR-809 A1 through 1.09, A2 through ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2018-14080 (An issue was discovered on D-Link DIR-809 A1 through 1.09, A2 through ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2018-14079 (Wi2be SMART HP WMT R1.2.20_201400922 allows unauthorized remote ...)
 	NOT-FOR-US: Wi2be SMART HP WMT
 CVE-2018-14078 (Wi2be SMART HP WMT R1.2.20_201400922 allows unauthorized remote ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0e40b35a8414b1a6fb1852f5cc9e6ebb16bf41b1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0e40b35a8414b1a6fb1852f5cc9e6ebb16bf41b1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181009/9f2f5956/attachment.html>

More information about the debian-security-tracker-commits mailing list