[Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
carnil at debian.org
Wed May 1 09:43:03 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e4f06c43 by Salvatore Bonaccorso at 2019-05-01T08:42:37Z
Process several NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,49 +5,49 @@ CVE-2019-11630
CVE-2019-11629
RESERVED
CVE-2019-11628 (An issue was discovered in QlikView Server before 11.20 SR19, 12.00 an ...)
- TODO: check
+ NOT-FOR-US: Qlik products
CVE-2019-11626 (routers/ajaxRouter.php in doorGets 7.0 has a web site physical path le ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11625 (doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/reques ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11624 (doorGets 7.0 has an arbitrary file deletion vulnerability in /doorgets ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11623 (doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/reques ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11622 (doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/reques ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11621 (doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/reques ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11620 (doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/reques ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11619 (doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/reques ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11618 (doorGets 7.0 has a default administrator credential vulnerability. A r ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11617 (doorGets 7.0 has a CSRF vulnerability in /doorgets/app/requests/user/c ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11616 (doorGets 7.0 has a sensitive information disclosure vulnerability in / ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11615 (/fileman/php/upload.php in doorGets 7.0 has an arbitrary file upload v ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11614 (doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/views/ ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11613 (doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/views/ ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11612 (doorGets 7.0 has an arbitrary file deletion vulnerability in /fileman/ ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11611 (doorGets 7.0 has a sensitive information disclosure vulnerability in / ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11610 (doorGets 7.0 has a sensitive information disclosure vulnerability in / ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11609 (doorGets 7.0 has a sensitive information disclosure vulnerability in / ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11608 (doorGets 7.0 has a sensitive information disclosure vulnerability in / ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11607 (doorGets 7.0 has a sensitive information disclosure vulnerability in / ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11606 (doorGets 7.0 has a sensitive information disclosure vulnerability in / ...)
- TODO: check
+ NOT-FOR-US: doorGets
CVE-2019-11605
RESERVED
CVE-2019-11604
@@ -15571,7 +15571,7 @@ CVE-2019-5626
CVE-2019-5625
RESERVED
CVE-2019-5624 (Rapid7 Metasploit Framework suffers from an instance of CWE-22, Improp ...)
- TODO: check
+ NOT-FOR-US: Rapid7 Metasploit Framework
CVE-2019-5623
RESERVED
CVE-2019-5622
@@ -18996,35 +18996,35 @@ CVE-2019-3941 (Advantech WebAccess 8.3.4 allows unauthenticated, remote attacker
CVE-2019-3940 (Advantech WebAccess 8.3.4 is vulnerable to file upload attacks via una ...)
NOT-FOR-US: Advantech WebAccess
CVE-2019-3939 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3938 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3937 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3936 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3935 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3934 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3933 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3932 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3931 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3930 (The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3929 (The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3928 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3927 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3926 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3925 (Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 ...)
- TODO: check
+ NOT-FOR-US: Crestron AM-100
CVE-2019-3924 (MikroTik RouterOS before 6.43.12 (stable) and 6.42.12 (long-term) is v ...)
NOT-FOR-US: MikroTik
CVE-2019-3923 (Nessus versions 8.2.1 and earlier were found to contain a stored XSS v ...)
@@ -21634,7 +21634,7 @@ CVE-2019-3401
CVE-2019-3400
RESERVED
CVE-2019-3399 (The BrowseProjects.jspa resource in Jira before version 7.13.2, and fr ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2019-3398 (Confluence Server and Data Center had a path traversal vulnerability i ...)
NOT-FOR-US: Confluence Server and Data Center
CVE-2019-3397
@@ -30691,7 +30691,7 @@ CVE-2018-19376 (An issue was discovered in GreenCMS v2.3.0603. There is a CSRF v
CVE-2018-19375
RESERVED
CVE-2018-19374 (Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to ...)
- TODO: check
+ NOT-FOR-US: Zoho ManageEngine ADManager Plus
CVE-2018-19373
RESERVED
CVE-2018-19372
@@ -31091,7 +31091,7 @@ CVE-2019-0196 [mod_http2, read-after-free on a string compare]
CVE-2019-0195
RESERVED
CVE-2019-0194 (Apache Camel's File is vulnerable to directory traversal. Camel 2.21.0 ...)
- TODO: check
+ NOT-FOR-US: Apache Camel
CVE-2019-0193
RESERVED
CVE-2019-0192 (In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e4f06c4330d614208f020787e1f82a9403ecba52
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e4f06c4330d614208f020787e1f82a9403ecba52
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190501/9711f0f0/attachment.html>
More information about the debian-security-tracker-commits
mailing list