[Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
carnil at debian.org
Wed Oct 9 21:33:39 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3fcdb510 by Salvatore Bonaccorso at 2019-10-09T20:33:08Z
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -54,31 +54,31 @@ CVE-2019-17382 (An issue was discovered in zabbix.php?action=dashboard.view&
CVE-2019-17381
RESERVED
CVE-2019-17380 (cPanel before 82.0.15 allows self XSS in the WHM Update Preferences in ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17379 (cPanel before 82.0.15 allows self stored XSS in the WHM SSL Storage Ma ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17378 (cPanel before 82.0.15 allows self XSS in the SSL Key Delete interface ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17377 (cPanel before 82.0.15 allows self XSS in LiveAPI example scripts (SEC- ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17376 (cPanel before 82.0.15 allows self XSS in the SSL Certificate Upload in ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17375 (cPanel before 82.0.15 allows API token credentials to persist after an ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2019-17374
RESERVED
CVE-2019-17373 (Certain NETGEAR devices allow unauthenticated access to critical .cgi ...)
- TODO: check
+ NOT-FOR-US: NETGEAR
CVE-2019-17372 (Certain NETGEAR devices allow remote attackers to disable all authenti ...)
- TODO: check
+ NOT-FOR-US: NETGEAR
CVE-2019-17371 (libpng 1.6.37 has memory leaks in png_malloc_warn and png_create_info_ ...)
TODO: check
CVE-2019-17370 (OTCMS v3.85 allows arbitrary PHP Code Execution because admin/sysCheck ...)
- TODO: check
+ NOT-FOR-US: OTCMS
CVE-2019-17369 (OTCMS v3.85 has CSRF in the admin/member_deal.php Admin Panel page, le ...)
- TODO: check
+ NOT-FOR-US: OTCMS
CVE-2019-17368 (S-CMS v1.5 has XSS in tpl.php via the member/member_login.php from par ...)
- TODO: check
+ NOT-FOR-US: S-CMS
CVE-2019-17367
RESERVED
CVE-2019-17366
@@ -112,9 +112,9 @@ CVE-2019-17356
CVE-2019-17355
RESERVED
CVE-2019-17354 (wan.htm page on Zyxel NBG-418N v2 with firmware version V1.00(AARP.9)C ...)
- TODO: check
+ NOT-FOR-US: Zyxel
CVE-2019-17353 (An issue discovered on D-Link DIR-615 devices with firmware version 20 ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2019-17352 (In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vul ...)
TODO: check
CVE-2019-17339
@@ -561,7 +561,7 @@ CVE-2019-17133 (In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in
CVE-2019-17129
RESERVED
CVE-2019-17128 (Netreo OmniCenter through 12.1.1 allows unauthenticated SQL Injection ...)
- TODO: check
+ NOT-FOR-US: Netreo OmniCenter
CVE-2019-17127
RESERVED
CVE-2019-17126
@@ -569,7 +569,7 @@ CVE-2019-17126
CVE-2019-17125
RESERVED
CVE-2019-17124 (Kramer VIAware 2.5.0719.1034 has Incorrect Access Control. ...)
- TODO: check
+ NOT-FOR-US: Kramer VIAware
CVE-2019-17123
RESERVED
CVE-2019-17122
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3fcdb51086541c915ea7e2b8280e4c20cb6d3609
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3fcdb51086541c915ea7e2b8280e4c20cb6d3609
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191009/a8770411/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list