[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Wed Mar 25 20:15:33 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c7c92d09 by Salvatore Bonaccorso at 2020-03-25T21:15:05+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -294,61 +294,61 @@ CVE-2020-10818 (Artica Proxy 4.26 allows remote command execution for an authent
CVE-2020-10817
RESERVED
CVE-2019-20625 (An issue was discovered on Samsung mobile devices with N(7.1) and O(8. ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20624 (An issue was discovered on Samsung mobile devices with N(7.x) and O(8. ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20623 (An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20622 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20621 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20620 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20619 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20618 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20617 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20616 (An issue was discovered on Samsung mobile devices with N(7.x) and O(8. ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20615 (An issue was discovered on Samsung mobile devices with N(7.x) and O(8. ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20614 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20613 (An issue was discovered on Samsung mobile devices with N(7.x) and O(8. ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20612 (An issue was discovered on Samsung mobile devices with N(7.x) and O(8. ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20611 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20610 (An issue was discovered on Samsung mobile devices with N(7.X) and O(8. ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20609 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20608 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20607 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20606 (An issue was discovered on Samsung mobile devices with any (before May ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20605 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20604 (An issue was discovered on Samsung mobile devices with O(8.x) software ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20603 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.0), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20602 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.0), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20601 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20600 (An issue was discovered on Samsung mobile devices with O(8.0) and P(9. ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20599 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20598 (An issue was discovered on Samsung mobile devices with O(8.x) software ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20597 (An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), ...)
NOT-FOR-US: Samsung mobile devices
CVE-2019-20596 (An issue was discovered on Samsung mobile devices with N(7.x) and O(8. ...)
@@ -358,7 +358,7 @@ CVE-2019-20595 (An issue was discovered on Samsung mobile devices with P(9.0) so
CVE-2019-20594 (An issue was discovered on Samsung mobile devices with O(8.1) and P(9. ...)
NOT-FOR-US: Samsung mobile devices
CVE-2019-20593 (An issue was discovered on Samsung mobile devices with N(7.x) and O(8. ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20592 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
NOT-FOR-US: Samsung mobile devices
CVE-2019-20591 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
@@ -392,7 +392,7 @@ CVE-2019-20578 (An issue was discovered on Samsung mobile devices with P(9.0) (E
CVE-2019-20577 (An issue was discovered on Samsung mobile devices with P(9.0) (Exynos ...)
NOT-FOR-US: Samsung mobile devices
CVE-2019-20576 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
- TODO: check
+ NOT-FOR-US: Samsung mobile devices
CVE-2019-20575 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
NOT-FOR-US: Samsung mobile devices
CVE-2019-20574 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
@@ -566,13 +566,13 @@ CVE-2020-10793 (CodeIgniter through 4.0.0 allows remote attackers to gain privil
CVE-2020-10792 (openITCOCKPIT through 3.7.2 allows remote attackers to configure the s ...)
NOT-FOR-US: openITCOCKPIT
CVE-2020-10791 (app/Plugin/GrafanaModule/Controller/GrafanaConfigurationController.php ...)
- TODO: check
+ NOT-FOR-US: openITCOCKPIT
CVE-2020-10790 (openITCOCKPIT before 3.7.3 has unnecessary files (such as Lodash files ...)
- TODO: check
+ NOT-FOR-US: openITCOCKPIT
CVE-2020-10789 (openITCOCKPIT before 3.7.3 has a web-based terminal that allows attack ...)
- TODO: check
+ NOT-FOR-US: openITCOCKPIT
CVE-2020-10788 (openITCOCKPIT before 3.7.3 uses the 1fea123e07f730f76e661bced33a941523 ...)
- TODO: check
+ NOT-FOR-US: openITCOCKPIT
CVE-2020-10787
RESERVED
CVE-2020-10786
@@ -903,7 +903,7 @@ CVE-2020-10650
CVE-2019-20510
REJECTED
CVE-2020-10649 (DevActSvc.exe in ASUS Device Activation before 1.0.7.0 for Windows 10 ...)
- TODO: check
+ NOT-FOR-US: ASUS Device Activation
CVE-2020-10648 (Das U-Boot through 2020.01 allows attackers to bypass verified boot re ...)
- u-boot <unfixed>
NOTE: http://www.openwall.com/lists/oss-security/2020/03/18/5
@@ -3265,9 +3265,9 @@ CVE-2020-9554
CVE-2020-9553
RESERVED
CVE-2020-9552 (Adobe Bridge versions 10.0 have a heap-based buffer overflow vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9551 (Adobe Bridge versions 10.0 have an out-of-bounds write vulnerability. ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2019-20489 (An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. The web ...)
NOT-FOR-US: Netgear
CVE-2019-20488 (An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. Multipl ...)
@@ -3705,7 +3705,7 @@ CVE-2020-9377
CVE-2020-9376
RESERVED
CVE-2020-9375 (TP-Link Archer C50 V3 devices before Build 200318 Rel. 62209 allows re ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2019-20482
RESERVED
CVE-2020-9374 (On TP-Link TL-WR849N 0.9.1 4.16 devices, a remote command execution vu ...)
@@ -4650,11 +4650,11 @@ CVE-2020-8988 (The Voatz application 2020-01-01 for Android allows only 100 mill
CVE-2020-8987 (Avast AntiTrack before 1.5.1.172 and AVG Antitrack before 2.0.0.178 pr ...)
NOT-FOR-US: Avast AntiTrack
CVE-2020-8986 (lib/NSSDropbox.php in ZendTo prior to 5.22-2 Beta failed to properly c ...)
- TODO: check
+ NOT-FOR-US: ZendTo
CVE-2020-8985 (ZendTo prior to 5.22-2 Beta allowed reflected XSS and CSRF via the unl ...)
- TODO: check
+ NOT-FOR-US: ZendTo
CVE-2020-8984 (lib/NSSDropbox.php in ZendTo prior to 5.22-2 Beta allowed IP address s ...)
- TODO: check
+ NOT-FOR-US: ZendTo
CVE-2020-8983
RESERVED
CVE-2020-8982
@@ -9189,11 +9189,11 @@ CVE-2020-7009
CVE-2020-7008
RESERVED
CVE-2020-7007 (In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the attacker ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2020-7006 (Systech Corporation NDS-5000 Terminal Server, NDS/5008 (8 Port, RJ45), ...)
NOT-FOR-US: Systech Corporation
CVE-2020-7005 (In Honeywell WIN-PAK 4.7.2, Web and prior versions, the affected produ ...)
- TODO: check
+ NOT-FOR-US: Honeywell
CVE-2020-7004
RESERVED
CVE-2020-7003 (In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpre ...)
@@ -9201,7 +9201,7 @@ CVE-2020-7003 (In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and I
CVE-2020-7002 (Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and prior. ...)
NOT-FOR-US: McAfee
CVE-2020-7001 (In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the affected ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2020-7000
RESERVED
CVE-2020-6999
@@ -9209,19 +9209,19 @@ CVE-2020-6999
CVE-2020-6998
RESERVED
CVE-2020-6997 (In Moxa EDS-G516E Series firmware, Version 5.2 or lower, sensitive inf ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2020-6996
RESERVED
CVE-2020-6995 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 ser ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2020-6994
RESERVED
CVE-2020-6993 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 ser ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2020-6992
RESERVED
CVE-2020-6991 (In Moxa EDS-G516E Series firmware, Version 5.2 or lower, weak password ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2020-6990 (Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and p ...)
NOT-FOR-US: Rockwell
CVE-2020-6989 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 ser ...)
@@ -9233,21 +9233,21 @@ CVE-2020-6987 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-782
CVE-2020-6986 (In all versions of Omron PLC CJ Series, an attacker can send a series ...)
NOT-FOR-US: Omron
CVE-2020-6985 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 ser ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2020-6984 (Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and p ...)
NOT-FOR-US: Rockwell
CVE-2020-6983 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 ser ...)
NOT-FOR-US: Moxa
CVE-2020-6982 (In Honeywell WIN-PAK 4.7.2, Web and prior versions, the header injecti ...)
- TODO: check
+ NOT-FOR-US: Honeywell
CVE-2020-6981 (In Moxa EDS-G516E Series firmware, Version 5.2 or lower, an attacker m ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2020-6980 (Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and p ...)
NOT-FOR-US: Rockwell
CVE-2020-6979 (In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the affected ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2020-6978 (In Honeywell WIN-PAK 4.7.2, Web and prior versions, the affected produ ...)
- TODO: check
+ NOT-FOR-US: Honeywell
CVE-2020-6977 (A restricted desktop environment escape vulnerability exists in the Ki ...)
NOT-FOR-US: GE
CVE-2020-6976 (Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and prior. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c7c92d091a725c6deb92d3c1c09f9ef6715040f0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c7c92d091a725c6deb92d3c1c09f9ef6715040f0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200325/c5d6fc74/attachment.html>
More information about the debian-security-tracker-commits
mailing list