[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6010d912 by Salvatore Bonaccorso at 2019-06-28T08:26:04Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -975,11 +975,11 @@ CVE-2019-12585 (Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 an
 CVE-2019-12584 (Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and othe ...)
 	- apcupsd <not-affected> (Vulnerable code in pfSense-specific status page)
 CVE-2019-12583 (Missing Access Control in the "Free Time" component of several Zyxel U ...)
-	TODO: check
+	NOT-FOR-US: Zyxel
 CVE-2019-12582
 	REJECTED
 CVE-2019-12581 (A reflective Cross-site scripting (XSS) vulnerability in the free_time ...)
-	TODO: check
+	NOT-FOR-US: Zyxel
 CVE-2019-12580
 	RESERVED
 CVE-2019-12579
@@ -3506,7 +3506,7 @@ CVE-2019-11585
 CVE-2019-11584
 	RESERVED
 CVE-2019-11583 (The issue searching component in Jira before version 8.1.0 allows remo ...)
-	TODO: check
+	NOT-FOR-US: issue searching component in Jira
 CVE-2019-11582 (An argument injection vulnerability in Atlassian Sourcetree for Window ...)
 	NOT-FOR-US: Atlassian Sourcetree
 CVE-2019-11581
@@ -15416,13 +15416,13 @@ CVE-2019-7230 (The ABB IDAL FTP server mishandles format strings in a username d
 CVE-2019-7229 (The ABB CP635 HMI uses two different transmission methods to upgrade i ...)
 	NOT-FOR-US: ABB CP635 HMI
 CVE-2019-7228 (The ABB IDAL HTTP server mishandles format strings in a username or co ...)
-	TODO: check
+	NOT-FOR-US: ABB IDAL HTTP server
 CVE-2019-7227 (In the ABB IDAL FTP server, an authenticated attacker can traverse to  ...)
-	TODO: check
+	NOT-FOR-US: ABB IDAL FTP server
 CVE-2019-7226 (The ABB IDAL HTTP server CGI interface contains a URL that allows an u ...)
-	TODO: check
+	NOT-FOR-US: ABB IDAL HTTP server
 CVE-2019-7225 (The ABB HMI components implement hidden administrative accounts that a ...)
-	TODO: check
+	NOT-FOR-US: ABB HMI components
 CVE-2019-7224
 	RESERVED
 CVE-2019-7223 (InvoicePlane 1.5 has stored XSS via the index.php/invoices/ajax/save i ...)
@@ -23791,13 +23791,13 @@ CVE-2019-3633
 CVE-2019-3632 (Directory Traversal vulnerability in McAfee Enterprise Security Manage ...)
 	TODO: check
 CVE-2019-3631 (Command Injection vulnerability in McAfee Enterprise Security Manager  ...)
-	TODO: check
+	NOT-FOR-US: McAfee
 CVE-2019-3630 (Command Injection vulnerability in McAfee Enterprise Security Manager  ...)
-	TODO: check
+	NOT-FOR-US: McAfee
 CVE-2019-3629 (Application protection bypass vulnerability in McAfee Enterprise Secur ...)
-	TODO: check
+	NOT-FOR-US: McAfee
 CVE-2019-3628 (Privilege escalation in McAfee Enterprise Security Manager (ESM) 11.x  ...)
-	TODO: check
+	NOT-FOR-US: McAfee
 CVE-2019-3627
 	RESERVED
 CVE-2019-3626



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6010d9123f010344c5ba21939500ffc1c1bc9e67

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6010d9123f010344c5ba21939500ffc1c1bc9e67
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190628/a83fc9ba/attachment-0001.html>