[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Fri May 15 13:11:50 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
72a5f7f9 by Salvatore Bonaccorso at 2020-05-15T14:11:21+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,7 +9,7 @@ CVE-2020-12884
 CVE-2020-12883
 	RESERVED
 CVE-2020-12882 (Submitty through 20.04.01 allows XSS via upload of an SVG document, as ...)
-	TODO: check
+	NOT-FOR-US: Submitty
 CVE-2020-12881
 	RESERVED
 CVE-2020-12880
@@ -1914,7 +1914,7 @@ CVE-2020-12070 (The Advanced Woo Search plugin version through 1.99 for Wordpres
 CVE-2020-12069
 	RESERVED
 CVE-2020-12068 (An issue was discovered in CODESYS Development System before 3.5.16.0. ...)
-	TODO: check
+	NOT-FOR-US: CODESYS
 CVE-2020-12067
 	RESERVED
 CVE-2020-12066 (CServer::SendMsg in engine/server/server.cpp in Teeworlds 0.7.x before ...)
@@ -1977,7 +1977,7 @@ CVE-2020-12048
 CVE-2020-12047
 	RESERVED
 CVE-2020-12046 (Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC’s firmwar ...)
-	TODO: check
+	NOT-FOR-US: Opto 22 SoftPAC Project
 CVE-2020-12045
 	RESERVED
 CVE-2020-12044
@@ -1985,7 +1985,7 @@ CVE-2020-12044
 CVE-2020-12043
 	RESERVED
 CVE-2020-12042 (Opto 22 SoftPAC Project Version 9.6 and prior. Paths specified within  ...)
-	TODO: check
+	NOT-FOR-US: Opto 22 SoftPAC Project
 CVE-2020-12041
 	RESERVED
 CVE-2020-12040
@@ -6921,7 +6921,7 @@ CVE-2020-10622 (LCDS LAquis SCADA Versions 4.3.1 and prior. The affected product
 CVE-2020-10621 (Multiple issues exist that allow files to be uploaded and executed on  ...)
 	NOT-FOR-US: WebAccess/NMS
 CVE-2020-10620 (Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC communication d ...)
-	TODO: check
+	NOT-FOR-US: Opto 22 SoftPAC Project
 CVE-2020-10619 (An attacker could use a specially crafted URL to delete files outside  ...)
 	NOT-FOR-US: WebAccess/NMS
 CVE-2020-10618 (LCDS LAquis SCADA Versions 4.3.1 and prior. The affected product is vu ...)
@@ -6929,7 +6929,7 @@ CVE-2020-10618 (LCDS LAquis SCADA Versions 4.3.1 and prior. The affected product
 CVE-2020-10617 (There are multiple ways an unauthenticated attacker could perform SQL  ...)
 	NOT-FOR-US: WebAccess/NMS
 CVE-2020-10616 (Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC does not specif ...)
-	TODO: check
+	NOT-FOR-US: Opto 22 SoftPAC Project
 CVE-2020-10615 (Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41 ...)
 	NOT-FOR-US: Triangle MicroWorks SCADA Data Gateway
 CVE-2020-10614
@@ -6937,7 +6937,7 @@ CVE-2020-10614
 CVE-2020-10613 (Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41 ...)
 	NOT-FOR-US: Triangle MicroWorks SCADA Data Gateway
 CVE-2020-10612 (Opto 22 SoftPAC Project Version 9.6 and prior. SoftPACAgent communicat ...)
-	TODO: check
+	NOT-FOR-US: Opto 22 SoftPAC Project
 CVE-2020-10611 (Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41 ...)
 	NOT-FOR-US: Triangle MicroWorks SCADA Data Gateway
 CVE-2020-10610
@@ -44902,7 +44902,7 @@ CVE-2019-15085 (An issue was discovered in PRiSE adAS 1.7.0. The current databas
 CVE-2019-15084 (Realtek Waves MaxxAudio driver 1.6.2.0, as used on Dell laptops, insta ...)
 	NOT-FOR-US: Realtek
 CVE-2019-15083 (Default installations of Zoho ManageEngine ServiceDesk Plus 10.0 befor ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine
 CVE-2018-20974 (The js-jobs plugin before 1.0.7 for WordPress has CSRF. ...)
 	NOT-FOR-US: js-jobs plugin for WordPress
 CVE-2018-20973 (The companion-auto-update plugin before 3.2.1 for WordPress has local  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/72a5f7f9de54ced2f36d73b64568a8a07b2bbc38

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/72a5f7f9de54ced2f36d73b64568a8a07b2bbc38
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200515/6c27c381/attachment.html>

More information about the debian-security-tracker-commits mailing list