[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1783f669 by Salvatore Bonaccorso at 2020-12-26T21:28:45+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,15 +3,15 @@ CVE-2020-35718
 CVE-2020-35717
 	RESERVED
 CVE-2020-35716 (Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote attacker ...)
-	TODO: check
+	NOT-FOR-US: Belkin LINKSYS RE6500 devices
 CVE-2020-35715 (Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote authenti ...)
-	TODO: check
+	NOT-FOR-US: Belkin LINKSYS RE6500 devices
 CVE-2020-35714 (Belkin LINKSYS RE6500 devices before 1.0.11.001 allow remote authentic ...)
-	TODO: check
+	NOT-FOR-US: Belkin LINKSYS RE6500 devices
 CVE-2020-35713 (Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote attacker ...)
-	TODO: check
+	NOT-FOR-US: Belkin LINKSYS RE6500 devices
 CVE-2020-35712 (Esri ArcGIS Server before 10.8 is vulnerable to SSRF in some configura ...)
-	TODO: check
+	NOT-FOR-US: Esri ArcGIS Server
 CVE-2020-35710 (Parallels Remote Application Server (RAS) 18 allows remote attackers t ...)
 	NOT-FOR-US: Parallels Remote Application Server (RAS)
 CVE-2020-35709 (bloofoxCMS 0.5.2.1 allows admins to upload arbitrary .php files (with  ...)
@@ -953,7 +953,7 @@ CVE-2020-35577
 CVE-2020-35576
 	RESERVED
 CVE-2020-35575 (A password-disclosure issue in the web interface on certain TP-Link de ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2020-35574
 	RESERVED
 CVE-2020-35572
@@ -3483,7 +3483,7 @@ CVE-2020-35439
 CVE-2020-35438
 	RESERVED
 CVE-2020-35437 (Subrion CMS 4.2.1 is affected by: Cross Site Scripting (XSS) through t ...)
-	TODO: check
+	NOT-FOR-US: Subrion CMS
 CVE-2020-35436
 	RESERVED
 CVE-2020-35435
@@ -3581,7 +3581,7 @@ CVE-2020-35390
 CVE-2020-35389
 	RESERVED
 CVE-2020-35388 (rainrocka xinhu 2.1.9 allows remote attackers to obtain sensitive info ...)
-	TODO: check
+	NOT-FOR-US: rainrocka xinhu
 CVE-2020-35387
 	RESERVED
 CVE-2020-35386
@@ -3632,7 +3632,7 @@ CVE-2020-35366
 CVE-2020-35365
 	RESERVED
 CVE-2020-35364 (Beijing Huorong Internet Security 5.0.55.2 allows a non-admin user to  ...)
-	TODO: check
+	NOT-FOR-US: Beijing Huorong Internet Security
 CVE-2020-35363
 	RESERVED
 CVE-2020-35362 (DEXT5Upload 2.7.1262310 and earlier is affected by Directory Traversal ...)
@@ -3662,13 +3662,13 @@ CVE-2020-35351
 CVE-2020-35350
 	RESERVED
 CVE-2020-35349 (Savsoft Quiz 5 is affected by: Cross Site Scripting (XSS) via field_ti ...)
-	TODO: check
+	NOT-FOR-US: Savsoft Quiz
 CVE-2020-35348
 	RESERVED
 CVE-2020-35347 (CXUUCMS V3 3.1 has a CSRF vulnerability that can add an administrator  ...)
-	TODO: check
+	NOT-FOR-US: CXUUCMS
 CVE-2020-35346 (CXUUCMS V3 3.1 is affected by a reflected XSS vulnerability that allow ...)
-	TODO: check
+	NOT-FOR-US: CXUUCMS
 CVE-2020-35345
 	RESERVED
 CVE-2020-35344
@@ -8016,7 +8016,7 @@ CVE-2020-28761
 CVE-2020-28760
 	RESERVED
 CVE-2020-28759 (** DISPUTED ** The serializer module in OAID Tengine lite-v1.0 has a B ...)
-	TODO: check
+	NOT-FOR-US: OAID Tengine
 CVE-2020-28758
 	RESERVED
 CVE-2020-28757
@@ -14214,7 +14214,7 @@ CVE-2020-27517
 CVE-2020-27516
 	RESERVED
 CVE-2020-27515 (A Cross Site Scripting (XSS) vulnerability in Savsoft Quiz v5.0 allows ...)
-	TODO: check
+	NOT-FOR-US: Savsoft Quiz
 CVE-2020-27514
 	RESERVED
 CVE-2020-27513
@@ -15884,7 +15884,7 @@ CVE-2020-26768
 CVE-2020-26767
 	RESERVED
 CVE-2020-26766 (A Cross Site Request Forgery (CSRF) vulnerability exists in the logins ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul User Registration & Login and User Management System
 CVE-2020-26765
 	RESERVED
 CVE-2020-26764
@@ -17782,7 +17782,7 @@ CVE-2020-25919
 CVE-2020-25918
 	RESERVED
 CVE-2020-25917 (Stratodesk NoTouch Center before 4.4.68 is affected by: Incorrect Acce ...)
-	TODO: check
+	NOT-FOR-US: Stratodesk NoTouch Center
 CVE-2020-25916
 	RESERVED
 CVE-2020-25915



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1783f66998ba3077dca5bc236d7554aa1202e28a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1783f66998ba3077dca5bc236d7554aa1202e28a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201226/4deb6a59/attachment.html>