[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d63b04f5 by security tracker role at 2020-08-15T08:10:19+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13787,12 +13787,12 @@ CVE-2020-17477
 	RESERVED
 CVE-2020-17476 (Mibew Messenger before 3.2.7 allows XSS via a crafted user name. ...)
 	NOT-FOR-US: Mibew Messenger
-CVE-2020-17475
-	RESERVED
-CVE-2020-17474
-	RESERVED
-CVE-2020-17473
-	RESERVED
+CVE-2020-17475 (Lack of authentication in the network relays used in MEGVII Koala 2.9. ...)
+	TODO: check
+CVE-2020-17474 (A token-reuse vulnerability in ZKTeco FaceDepot 7B 1.0.213 and ZKBiose ...)
+	TODO: check
+CVE-2020-17473 (Lack of mutual authentication in ZKTeco FaceDepot 7B 1.0.213 and ZKBio ...)
+	TODO: check
 CVE-2020-17472
 	RESERVED
 CVE-2020-17471
@@ -13810,7 +13810,7 @@ CVE-2020-17466 (Turcom TRCwifiZone through 2020-08-10 allows authentication bypa
 CVE-2020-17465
 	RESERVED
 CVE-2020-17464
-	RESERVED
+	REJECTED
 CVE-2020-17463 (FUEL CMS 1.4.7 allows SQL Injection via the col parameter to /pages/it ...)
 	NOT-FOR-US: FUEL CMS
 CVE-2020-17462 (CMS Made Simple 2.2.14 allows Authenticated Arbitrary File Upload beca ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d63b04f5c81f198bf6f1731ee10baf83f5036887

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d63b04f5c81f198bf6f1731ee10baf83f5036887
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200815/8d0938db/attachment.html>