[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
42ba9559 by Moritz Muehlenhoff at 2019-09-11T16:42:29Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3009,7 +3009,7 @@ CVE-2019-15104 (An issue was discovered in Zoho ManageEngine OpManager through 1
 CVE-2019-15103
 	RESERVED
 CVE-2019-15102 (An issue was discovered in Tyto Sahi Pro 6.x through 8.0.0. TestRunner ...)
-	TODO: check
+	NOT-FOR-US: Tyto Sahi Pro
 CVE-2019-15101
 	RESERVED
 CVE-2019-15100
@@ -6026,7 +6026,7 @@ CVE-2019-14280 (In some circumstances, Craft 2 before 2.7.10 and 3 before 3.2.6
 CVE-2019-14279
 	RESERVED
 CVE-2019-14278 (In Knowage through 6.1.1, an unauthenticated user can enumerated valid ...)
-	TODO: check
+	NOT-FOR-US: Knowage
 CVE-2019-14277 (** DISPUTED ** Axway SecureTransport 5.x through 5.3 (or 5.x through 5 ...)
 	NOT-FOR-US: Axway SecureTransport
 CVE-2019-14276
@@ -6083,9 +6083,9 @@ CVE-2019-14260 (On the Alcatel-Lucent Enterprise (ALE) 8008 Cloud Edition Deskph
 CVE-2019-14259 (On the Polycom Obihai Obi1022 VoIP phone with firmware 5.1.11, a comma ...)
 	NOT-FOR-US: Polycom Obihai Obi1022 VoIP phone
 CVE-2019-14258 (The XML-RPC subsystem in Zenoss 2.5.3 allows XXE attacks that lead to  ...)
-	TODO: check
+	- zenoss <itp> (bug #361253)
 CVE-2019-14257 (pyraw in Zenoss 2.5.3 allows local privilege escalation by modifying e ...)
-	TODO: check
+	- zenoss <itp> (bug #361253)
 CVE-2019-14256
 	RESERVED
 CVE-2019-14255 (A Server Side Request Forgery (SSRF) vulnerability in go-camo up to ve ...)
@@ -6182,11 +6182,11 @@ CVE-2019-14226
 CVE-2019-14225
 	RESERVED
 CVE-2019-14224 (An issue was discovered in Alfresco Community Edition 5.2 201707. By l ...)
-	TODO: check
+	NOT-FOR-US: Alfresco
 CVE-2019-14223 (An issue was discovered in Alfresco Community Edition versions below 5 ...)
-	TODO: check
+	NOT-FOR-US: Alfresco
 CVE-2019-14222 (An issue was discovered in Alfresco Community Edition versions 6.0 and ...)
-	TODO: check
+	NOT-FOR-US: Alfresco
 CVE-2019-14221 (1CRM On-Premise Software 8.5.7 allows XSS via a payload that is mishan ...)
 	NOT-FOR-US: 1CRM On-Premise Software
 CVE-2019-14220
@@ -6737,9 +6737,9 @@ CVE-2019-13978 (Ovidentia 8.4.3 has SQL Injection via the id parameter in an ind
 CVE-2019-13977 (index.php in Ovidentia 8.4.3 has XSS via tg=groups, tg=maildoms&id ...)
 	NOT-FOR-US: Ovidentia
 CVE-2019-13976 (eGain Chat 15.0.3 allows unrestricted file upload. ...)
-	TODO: check
+	NOT-FOR-US: eGain Chat
 CVE-2019-13975 (eGain Chat 15.0.3 allows HTML Injection. ...)
-	TODO: check
+	NOT-FOR-US: eGain Chat
 CVE-2019-13974 (LayerBB 1.1.3 allows conversations.php/cmd/new CSRF. ...)
 	NOT-FOR-US: LayerBB
 CVE-2019-13973 (LayerBB 1.1.3 allows admin/general.php arbitrary file upload because t ...)
@@ -7394,7 +7394,7 @@ CVE-2019-13658
 CVE-2019-13657
 	RESERVED
 CVE-2019-13656 (An access vulnerability in CA Common Services DIA of CA Technologies C ...)
-	TODO: check
+	NOT-FOR-US: CA Technologies Client Automation
 CVE-2019-13655 (Imgix through 2019-06-19 allows remote attackers to cause a denial of  ...)
 	NOT-FOR-US: Imgix
 CVE-2019-13654
@@ -8761,7 +8761,7 @@ CVE-2019-13524
 CVE-2019-13523
 	RESERVED
 CVE-2019-13522 (An attacker could use a specially crafted project file to corrupt the  ...)
-	TODO: check
+	NOT-FOR-US: EZ PLC Editor
 CVE-2019-13521
 	RESERVED
 CVE-2019-13520 (Multiple buffer overflow issues have been identified in Alpha5 Smart L ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/42ba9559db43d793c6a0c42eda044d1a393c6827

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/42ba9559db43d793c6a0c42eda044d1a393c6827
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190911/3631809c/attachment-0001.html>