[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Fri Apr 12 14:08:59 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
db7acf88 by Salvatore Bonaccorso at 2019-04-12T13:08:34Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11,7 +11,7 @@ CVE-2019-11198
CVE-2019-11197
RESERVED
CVE-2019-11196 (An authentication bypass vulnerability in all versions of ValuePLUS In ...)
- TODO: check
+ NOT-FOR-US: ValuePLUS Integrated University Management System (IUMS)
CVE-2019-11195
RESERVED
CVE-2019-11194
@@ -5934,7 +5934,7 @@ CVE-2019-9058 (An issue was discovered in CMS Made Simple 2.2.8. In the administ
CVE-2019-9057 (An issue was discovered in CMS Made Simple 2.2.8. In the module FilePi ...)
NOT-FOR-US: CMS Made Simple
CVE-2019-9056 (An issue was discovered in CMS Made Simple 2.2.8. In the module FrontE ...)
- TODO: check
+ NOT-FOR-US: CMS Made Simple
CVE-2019-9055 (An issue was discovered in CMS Made Simple 2.2.8. In the module Design ...)
NOT-FOR-US: CMS Made Simple
CVE-2019-9054
@@ -11980,7 +11980,7 @@ CVE-2019-6536 (Opening a specially crafted LCDS LAquis SCADA before 4.3.1.71 ELS
CVE-2019-6535 (Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and pri ...)
NOT-FOR-US: Mitsubishi Electric MELSEC-Q Series PLCs
CVE-2019-6534 (The uncontrolled search path element vulnerability in Gemalto Sentinel ...)
- TODO: check
+ NOT-FOR-US: Gemalto Sentinel UltraPro Client Library ux32w.dll
CVE-2019-6533 (Registers used to store Modbus values can be read and written from the ...)
NOT-FOR-US: PR100088 Modbus
CVE-2019-6532
@@ -12091,7 +12091,7 @@ CVE-2019-6495
CVE-2019-6494
RESERVED
CVE-2019-6493 (SmartDefragDriver.sys (2.0) in IObit Smart Defrag 6 never frees an exe ...)
- TODO: check
+ NOT-FOR-US: IObit Smart Defrag
CVE-2019-6492 (SmartDefragDriver.sys (2.0) in IObit Smart Defrag 6 never frees an exe ...)
NOT-FOR-US: IObit Smart Defrag
CVE-2019-6491 (RISI Gestao de Horarios v3201.09.08 rev.23 allows SQL Injection. ...)
@@ -19691,7 +19691,7 @@ CVE-2018-20488 [Secret CI variable exposure]
- gitlab 11.5.6+dfsg-1 (bug #918086)
NOTE: https://about.gitlab.com/2018/12/31/security-release-gitlab-11-dot-6-dot-1-released/
CVE-2018-20487 (An issue was discovered in the firewall3 component in Inteno IOPSYS 1. ...)
- TODO: check
+ NOT-FOR-US: Inteno IOPSYS
CVE-2018-20486 (MetInfo 6.x through 6.1.3 has XSS via the /admin/login/login_check.php ...)
NOT-FOR-US: MetInfo
CVE-2018-20485 (Zoho ManageEngine ADSelfService Plus 5.7 before build 5702 has XSS in ...)
@@ -30259,7 +30259,7 @@ CVE-2018-19204 (PRTG Network Monitor before 18.3.44.2054 allows a remote authent
CVE-2018-19203 (PRTG Network Monitor before 18.2.41.1652 allows remote unauthenticated ...)
NOT-FOR-US: PRTG Network Monitor
CVE-2018-19202 (A reflected XSS vulnerability in index.php in MyBB 1.8.x through 1.8.1 ...)
- TODO: check
+ NOT-FOR-US: MyBB
CVE-2018-19201 (A reflected XSS vulnerability in the ModCP Profile Editor in MyBB befo ...)
NOT-FOR-US: MyBB
CVE-2018-19200 (An issue was discovered in uriparser before 0.9.0. UriCommon.c allows ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/db7acf889c300c657b0dc5592012d1e2fbdd54d4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/db7acf889c300c657b0dc5592012d1e2fbdd54d4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190412/e290be4d/attachment.html>
More information about the debian-security-tracker-commits
mailing list