[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Feb 25 20:40:02 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d165442f by Salvatore Bonaccorso at 2020-02-25T21:39:15+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2020-9395
 	RESERVED
 CVE-2020-9394 (An issue was discovered in the pricing-table-by-supsystic plugin befor ...)
-	TODO: check
+	NOT-FOR-US: pricing-table-by-supsystic plugin for WordPress
 CVE-2020-9393 (An issue was discovered in the pricing-table-by-supsystic plugin befor ...)
-	TODO: check
+	NOT-FOR-US: pricing-table-by-supsystic plugin for WordPress
 CVE-2020-9392
 	RESERVED
 CVE-2020-9390
@@ -155,7 +155,7 @@ CVE-2020-6802 [mutation XSS vulnerability]
 CVE-2020-9335 (Multiple stored XSS vulnerabilities exist in the 10Web Photo Gallery p ...)
 	TODO: check
 CVE-2020-9334 (A stored XSS vulnerability exists in the Envira Photo Gallery plugin t ...)
-	TODO: check
+	NOT-FOR-US: Envira Photo Gallery plugin for WordPress
 CVE-2020-9333
 	RESERVED
 CVE-2020-9332
@@ -840,7 +840,7 @@ CVE-2020-9021 (Post Oak AWAM Bluetooth Field Device 7400v2.08.21.2018, 7800SD.20
 CVE-2020-9020 (Iteris Vantage Velocity Field Unit 2.3.1, 2.4.2, and 3.0 devices allow ...)
 	NOT-FOR-US: Iteris Vantage Velocity Field Unit devices
 CVE-2020-9019 (The WPJobBoard plugin 5.5.3 for WordPress allows Persistent XSS via th ...)
-	TODO: check
+	NOT-FOR-US: WPJobBoard plugin for WordPress
 CVE-2020-9018 (LiteCart through 2.2.1 allows admin/?app=users&doc=edit_user CSRF  ...)
 	TODO: check
 CVE-2020-9017 (LiteCart through 2.2.1 allows CSV injection via a customer's profile. ...)
@@ -65244,7 +65244,7 @@ CVE-2019-4674 (IBM Security Identity Manager 7.0.1 could allow a remote attacker
 CVE-2019-4673
 	RESERVED
 CVE-2019-4672 (IBM QRadar Advisor 1.1 through 2.5 could allow an unauthorized attacke ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4671
 	RESERVED
 CVE-2019-4670 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a  ...)
@@ -65474,7 +65474,7 @@ CVE-2019-4559 (IBM QRadar SIEM 7.3.0 through 7.3.3 discloses sensitive informati
 CVE-2019-4558 (A security vulnerability has been identified in all levels of IBM Spec ...)
 	NOT-FOR-US: IBM
 CVE-2019-4557 (IBM Qradar Advisor 1.1 through 2.5 with Watson uses weaker than expect ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4556 (IBM QRadar Advisor 1.0.0 through 2.4.0 uses incomplete blacklisting fo ...)
 	NOT-FOR-US: IBM
 CVE-2019-4555 (IBM Cognos Analytics 11.0 and 11.0 is vulnerable to cross-site scripti ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d165442fb1fdf165a6a7a605113c645cdba10e07

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d165442fb1fdf165a6a7a605113c645cdba10e07
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200225/ac50db1b/attachment.html>

More information about the debian-security-tracker-commits mailing list