[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
654c6ed6 by security tracker role at 2020-03-30T20:10:21+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,203 @@
+CVE-2020-11099
+	RESERVED
+CVE-2020-11098
+	RESERVED
+CVE-2020-11097
+	RESERVED
+CVE-2020-11096
+	RESERVED
+CVE-2020-11095
+	RESERVED
+CVE-2020-11094
+	RESERVED
+CVE-2020-11093
+	RESERVED
+CVE-2020-11092
+	RESERVED
+CVE-2020-11091
+	RESERVED
+CVE-2020-11090
+	RESERVED
+CVE-2020-11089
+	RESERVED
+CVE-2020-11088
+	RESERVED
+CVE-2020-11087
+	RESERVED
+CVE-2020-11086
+	RESERVED
+CVE-2020-11085
+	RESERVED
+CVE-2020-11084
+	RESERVED
+CVE-2020-11083
+	RESERVED
+CVE-2020-11082
+	RESERVED
+CVE-2020-11081
+	RESERVED
+CVE-2020-11080
+	RESERVED
+CVE-2020-11079
+	RESERVED
+CVE-2020-11078
+	RESERVED
+CVE-2020-11077
+	RESERVED
+CVE-2020-11076
+	RESERVED
+CVE-2020-11075
+	RESERVED
+CVE-2020-11074
+	RESERVED
+CVE-2020-11073
+	RESERVED
+CVE-2020-11072
+	RESERVED
+CVE-2020-11071
+	RESERVED
+CVE-2020-11070
+	RESERVED
+CVE-2020-11069
+	RESERVED
+CVE-2020-11068
+	RESERVED
+CVE-2020-11067
+	RESERVED
+CVE-2020-11066
+	RESERVED
+CVE-2020-11065
+	RESERVED
+CVE-2020-11064
+	RESERVED
+CVE-2020-11063
+	RESERVED
+CVE-2020-11062
+	RESERVED
+CVE-2020-11061
+	RESERVED
+CVE-2020-11060
+	RESERVED
+CVE-2020-11059
+	RESERVED
+CVE-2020-11058
+	RESERVED
+CVE-2020-11057
+	RESERVED
+CVE-2020-11056
+	RESERVED
+CVE-2020-11055
+	RESERVED
+CVE-2020-11054
+	RESERVED
+CVE-2020-11053
+	RESERVED
+CVE-2020-11052
+	RESERVED
+CVE-2020-11051
+	RESERVED
+CVE-2020-11050
+	RESERVED
+CVE-2020-11049
+	RESERVED
+CVE-2020-11048
+	RESERVED
+CVE-2020-11047
+	RESERVED
+CVE-2020-11046
+	RESERVED
+CVE-2020-11045
+	RESERVED
+CVE-2020-11044
+	RESERVED
+CVE-2020-11043
+	RESERVED
+CVE-2020-11042
+	RESERVED
+CVE-2020-11041
+	RESERVED
+CVE-2020-11040
+	RESERVED
+CVE-2020-11039
+	RESERVED
+CVE-2020-11038
+	RESERVED
+CVE-2020-11037
+	RESERVED
+CVE-2020-11036
+	RESERVED
+CVE-2020-11035
+	RESERVED
+CVE-2020-11034
+	RESERVED
+CVE-2020-11033
+	RESERVED
+CVE-2020-11032
+	RESERVED
+CVE-2020-11031
+	RESERVED
+CVE-2020-11030
+	RESERVED
+CVE-2020-11029
+	RESERVED
+CVE-2020-11028
+	RESERVED
+CVE-2020-11027
+	RESERVED
+CVE-2020-11026
+	RESERVED
+CVE-2020-11025
+	RESERVED
+CVE-2020-11024
+	RESERVED
+CVE-2020-11023
+	RESERVED
+CVE-2020-11022
+	RESERVED
+CVE-2020-11021
+	RESERVED
+CVE-2020-11020
+	RESERVED
+CVE-2020-11019
+	RESERVED
+CVE-2020-11018
+	RESERVED
+CVE-2020-11017
+	RESERVED
+CVE-2020-11016
+	RESERVED
+CVE-2020-11015
+	RESERVED
+CVE-2020-11014
+	RESERVED
+CVE-2020-11013
+	RESERVED
+CVE-2020-11012
+	RESERVED
+CVE-2020-11011
+	RESERVED
+CVE-2020-11010
+	RESERVED
+CVE-2020-11009
+	RESERVED
+CVE-2020-11008
+	RESERVED
+CVE-2020-11007
+	RESERVED
+CVE-2020-11006
+	RESERVED
+CVE-2020-11005
+	RESERVED
+CVE-2020-11004
+	RESERVED
+CVE-2020-11003
+	RESERVED
+CVE-2020-11002
+	RESERVED
+CVE-2020-11001
+	RESERVED
+CVE-2020-11000
+	RESERVED
 CVE-2020-10999
 	RESERVED
 CVE-2020-10998
@@ -1238,8 +1438,8 @@ CVE-2020-10562 (An issue was discovered in DEVOME GRR before 3.4.1c. admin_edit_
 	NOT-FOR-US: DEVOME GRR
 CVE-2020-10561
 	RESERVED
-CVE-2020-10560
-	RESERVED
+CVE-2020-10560 (An issue was discovered in Open Source Social Network (OSSN) through 5 ...)
+	TODO: check
 CVE-2020-10559
 	RESERVED
 CVE-2020-10558 (The driving interface of Tesla Model 3 vehicles in any release before  ...)
@@ -5885,8 +6085,8 @@ CVE-2020-8511 (In Artica Pandora FMS through 7.42, Web Admin users can execute a
 	NOT-FOR-US: Artica Pandora FMS
 CVE-2020-8510 (An issue was discovered in phpABook 0.9 Intermediate. On the login pag ...)
 	NOT-FOR-US: phpABook
-CVE-2020-8509
-	RESERVED
+CVE-2020-8509 (Zoho ManageEngine Desktop Central allows unauthenticated users to acce ...)
+	TODO: check
 CVE-2020-8508 (nsak64.sys in Norman Malware Cleaner 2.08.08 allows users to call arbi ...)
 	NOT-FOR-US: Norman Malware Cleaner
 CVE-2020-8507 (The Citytv Video application 4.08.0 for Android and 3.35 for iOS sends ...)
@@ -7952,8 +8152,8 @@ CVE-2020-7612
 	RESERVED
 CVE-2020-7611
 	RESERVED
-CVE-2020-7610
-	RESERVED
+CVE-2020-7610 (All versions of bson before 1.1.4 are vulnerable to Deserialization of ...)
+	TODO: check
 CVE-2020-7609
 	RESERVED
 CVE-2020-7608 (yargs-parser could be tricked into adding or modifying properties of O ...)
@@ -7979,8 +8179,8 @@ CVE-2020-7601 (gulp-scss-lint through 1.0.0 allows execution of arbitrary comman
 	NOT-FOR-US: Node gulp-scss-lint
 CVE-2020-7600 (querymen prior to 2.1.4 allows modification of object properties. The  ...)
 	NOT-FOR-US: querymen nodejs module
-CVE-2020-7599
-	RESERVED
+CVE-2020-7599 (All versions of com.gradle.plugin-publish before 0.11.0 are vulnerable ...)
+	TODO: check
 CVE-2020-7598 (minimist before 1.2.2 could be tricked into adding or modifying proper ...)
 	- node-minimist 1.2.5-1 (bug #953762)
 	[buster] - node-minimist <no-dsa> (Minor issue)
@@ -12228,14 +12428,14 @@ CVE-2020-5728
 	RESERVED
 CVE-2020-5727
 	RESERVED
-CVE-2020-5726
-	RESERVED
-CVE-2020-5725
-	RESERVED
-CVE-2020-5724
-	RESERVED
-CVE-2020-5723
-	RESERVED
+CVE-2020-5726 (The Grandstream UCM6200 series before 1.0.20.22 is vulnerable to an SQ ...)
+	TODO: check
+CVE-2020-5725 (The Grandstream UCM6200 series before 1.0.20.22 is vulnerable to an SQ ...)
+	TODO: check
+CVE-2020-5724 (The Grandstream UCM6200 series before 1.0.20.22 is vulnerable to an SQ ...)
+	TODO: check
+CVE-2020-5723 (The UCM6200 series 1.0.20.22 and below stores unencrypted user passwor ...)
+	TODO: check
 CVE-2020-5722 (The HTTP interface of the Grandstream UCM6200 series is vulnerable to  ...)
 	NOT-FOR-US: Grandstream
 CVE-2020-5721
@@ -12628,8 +12828,8 @@ CVE-2020-5529 (HtmlUnit prior to 2.37.0 contains code execution vulnerabilities.
 	TODO: check details, might affect jenkins-htmlunit
 CVE-2020-5528 (Cross-site scripting vulnerability in Movable Type series (Movable Typ ...)
 	- movabletype-opensource <removed>
-CVE-2020-5527
-	RESERVED
+CVE-2020-5527 (When MELSOFT transmission port (UDP/IP) of Mitsubishi Electric MELSEC  ...)
+	TODO: check
 CVE-2020-5526 (The AWMS Mobile App for Android 2.0.0 to 2.0.5 and for iOS 2.0.0 to 2. ...)
 	NOT-FOR-US: AWMS Mobile App for Android and iOS
 CVE-2020-5525 (Aterm series (Aterm WF1200C firmware Ver1.2.1 and earlier, Aterm WG120 ...)
@@ -31247,10 +31447,10 @@ CVE-2019-17563 (When using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.
 	NOTE: https://github.com/apache/tomcat/commit/ab72a106fe5d992abddda954e30849d7cf8cc583 (7.0.99)
 CVE-2019-17562
 	RESERVED
-CVE-2019-17561
-	RESERVED
-CVE-2019-17560
-	RESERVED
+CVE-2019-17561 (The "Apache NetBeans" autoupdate system does not fully validate code s ...)
+	TODO: check
+CVE-2019-17560 (The "Apache NetBeans" autoupdate system does not validate SSL certific ...)
+	TODO: check
 CVE-2019-17559 (There is a vulnerability in Apache Traffic Server 6.0.0 to 6.2.3, 7.0. ...)
 	- trafficserver 8.0.6+ds-1
 	NOTE: https://lists.apache.org/thread.html/r99d18d0bc4daa05e7d0e5a63e0e22701a421b2ef5a8f4f7694c43869%40%3Cannounce.trafficserver.apache.org%3E
@@ -61689,8 +61889,8 @@ CVE-2019-7757
 	RESERVED
 CVE-2019-7756
 	RESERVED
-CVE-2019-7755
-	RESERVED
+CVE-2019-7755 (In webERP 4.15, the Import Bank Transactions function fails to sanitiz ...)
+	TODO: check
 CVE-2019-7754
 	RESERVED
 CVE-2019-7753 (Verydows 2.0 has XSS via the index.php?m=api&c=stats&a=count r ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/654c6ed685b149e95ae95a555127d5ef4b1c0a7d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/654c6ed685b149e95ae95a555127d5ef4b1c0a7d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200330/992b9266/attachment-0001.html>