[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Tue Feb 5 21:34:18 GMT 2019 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
be5fe963 by Moritz Muehlenhoff at 2019-02-05T21:33:32Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,9 +3,9 @@ CVE-2019-7415
 CVE-2019-7414
 	RESERVED
 CVE-2019-7413 (In the Parallax Scroll (aka adamrob-parallax-scroll) plugin before 2.1 ...)
-	TODO: check
+	NOT-FOR-US: Wordpress plugin
 CVE-2019-7412 (The PS PHPCaptcha WP plugin before v1.2.0 for WordPress mishandles ...)
-	TODO: check
+	NOT-FOR-US: Wordpress plugin
 CVE-2019-7411
 	RESERVED
 CVE-2019-7410
@@ -23,9 +23,9 @@ CVE-2019-7405
 CVE-2019-7404
 	RESERVED
 CVE-2019-7403 (An issue was discovered in PHPMyWind 5.5. It allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: PHPMyWind
 CVE-2019-7402 (An issue was discovered in PHPMyWind 5.5. The GetQQ function in ...)
-	TODO: check
+	NOT-FOR-US: PHPMyWind
 CVE-2019-7401
 	RESERVED
 CVE-2017-1000000
@@ -1948,9 +1948,9 @@ CVE-2019-6593
 CVE-2019-6592
 	RESERVED
 CVE-2019-6591 (On BIG-IP APM 14.0.0 to 14.0.0.4, 13.0.0 to 13.1.1.3 and 12.1.0 to ...)
-	TODO: check
+	NOT-FOR-US: BIG-IP
 CVE-2019-6590 (On BIG-IP LTM 13.0.0 to 13.0.1 and 12.1.0 to 12.1.3.6, under certain ...)
-	TODO: check
+	NOT-FOR-US: BIG-IP
 CVE-2019-6589
 	RESERVED
 CVE-2019-6588
@@ -20253,7 +20253,7 @@ CVE-2018-19031
 CVE-2018-19030
 	RESERVED
 CVE-2018-19029 (LCDS Laquis SCADA prior to version 4.1.0.4150 allows an attacker using ...)
-	TODO: check
+	NOT-FOR-US: LCDS Laquis SCADA
 CVE-2018-19028
 	RESERVED
 CVE-2018-19027 (Three type confusion vulnerabilities exist in CX-One Versions 4.50 and ...)
@@ -20307,19 +20307,19 @@ CVE-2018-19004 (LCDS Laquis SCADA prior to version 4.1.0.4150 allows out of boun
 CVE-2018-19003 (GE Mark VIe, EX2100e, EX2100e_Reg, and LS2100e Versions 03.03.28C to ...)
 	NOT-FOR-US: GE Mark
 CVE-2018-19002 (LCDS Laquis SCADA prior to version 4.1.0.4150 allows improper control ...)
-	TODO: check
+	NOT-FOR-US: LCDS Laquis SCADA
 CVE-2018-19001 (Philips HealthSuite Health Android App, all versions. The software ...)
 	NOT-FOR-US: Philips HealthSuite Health Android App
 CVE-2018-19000 (LCDS Laquis SCADA prior to version 4.1.0.4150 allows an authentication ...)
-	TODO: check
+	NOT-FOR-US: LCDS Laquis SCADA
 CVE-2018-18999 (WebAccess/SCADA, WebAccess/SCADA Version 8.3.2 installed on Windows ...)
 	NOT-FOR-US: Advantech WebAccess/SCADA
 CVE-2018-18998 (LCDS Laquis SCADA prior to version 4.1.0.4150 uses hard coded ...)
-	TODO: check
+	NOT-FOR-US: LCDS Laquis SCADA
 CVE-2018-18997 (Pluto Safety PLC Gateway Ethernet devices in ABB GATE-E1 and GATE-E2 ...)
 	NOT-FOR-US: ABB GATE-E2
 CVE-2018-18996 (LCDS Laquis SCADA prior to version 4.1.0.4150 allows taking in user ...)
-	TODO: check
+	NOT-FOR-US: LCDS Laquis SCADA
 CVE-2018-18995 (Pluto Safety PLC Gateway Ethernet devices ABB GATE-E1 and GATE-E2 all ...)
 	NOT-FOR-US: ABB GATE-E2
 CVE-2018-18994
@@ -20327,11 +20327,11 @@ CVE-2018-18994
 CVE-2018-18993 (Two stack-based buffer overflow vulnerabilities have been discovered ...)
 	NOT-FOR-US: CX-One
 CVE-2018-18992 (LCDS Laquis SCADA prior to version 4.1.0.4150 allows taking in user ...)
-	TODO: check
+	NOT-FOR-US: LCDS Laquis SCADA
 CVE-2018-18991 (Reflected cross-site scripting (non-persistent) in SCADA WebServer ...)
 	NOT-FOR-US: SCADA WebServer
 CVE-2018-18990 (LCDS Laquis SCADA prior to version 4.1.0.4150 allows a user-supplied ...)
-	TODO: check
+	NOT-FOR-US: LCDS Laquis SCADA
 CVE-2018-18989 (In CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and ...)
 	NOT-FOR-US: CX-One
 CVE-2018-18988 (LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution of ...)
@@ -20339,7 +20339,7 @@ CVE-2018-18988 (LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution o
 CVE-2018-18987 (VT-Designer Version 2.1.7.31 is vulnerable by the program populating ...)
 	NOT-FOR-US: VT-Designer
 CVE-2018-18986 (LCDS Laquis SCADA prior to version 4.1.0.4150 allows the opening of a ...)
-	TODO: check
+	NOT-FOR-US: LCDS Laquis SCADA
 CVE-2018-18985 (Tridium Niagara Enterprise Security 2.3u1, all versions prior to 2.3.118.6, Niagara AX 3.8u4, all versions prior to 3.8.401.1, Niagara 4.4u2, all versions prior to 4.4.93.40.2, and Niagara 4.6, all versions prior to 4.6.96.28.4 a cross-site scripting vulnerability has been identified that may allow a remote attacker to inject code to some web pages affecting confidentiality. ...)
 	NOT-FOR-US: Tridium Niagara Enterprise
 CVE-2018-18984 (Medtronic CareLink 2090 Programmer CareLink 9790 Programmer 29901 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/be5fe963683d602bf93ec254a5bf05045fe08d99

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/be5fe963683d602bf93ec254a5bf05045fe08d99
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190205/b2237844/attachment.html>

More information about the debian-security-tracker-commits mailing list