[Git][security-tracker-team/security-tracker][master] Process some further NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
42b8227c by Salvatore Bonaccorso at 2020-11-02T21:26:40+01:00
Process some further NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -120103,19 +120103,19 @@ CVE-2018-19958
 CVE-2018-19957
 	RESERVED
 CVE-2018-19956 (The cross-site scripting vulnerability has been reported to affect ear ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2018-19955 (The cross-site scripting vulnerability has been reported to affect ear ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2018-19954 (The cross-site scripting vulnerability has been reported to affect ear ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2018-19953 (If exploited, this cross-site scripting vulnerability could allow remo ...)
 	NOT-FOR-US: QNAP
 CVE-2018-19952 (If exploited, this SQL injection vulnerability could allow remote atta ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2018-19951 (If exploited, this cross-site scripting vulnerability could allow remo ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2018-19950 (If exploited, this command injection vulnerability could allow remote  ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2018-19949 (If exploited, this command injection vulnerability could allow remote  ...)
 	NOT-FOR-US: QNAP
 CVE-2018-19948 (The vulnerability have been reported to affect earlier versions of Hel ...)
@@ -126669,7 +126669,7 @@ CVE-2018-19027 (Three type confusion vulnerabilities exist in CX-One Versions 4.
 CVE-2018-19026
 	RESERVED
 CVE-2018-19025 (In JUUKO K-808, an attacker could specially craft a packet that encode ...)
-	TODO: check
+	NOT-FOR-US: JUUKO K-808
 CVE-2018-19024
 	RESERVED
 CVE-2018-19023 (Hetronic Nova-M prior to verson r161 uses fixed codes that are reprodu ...)
@@ -129703,7 +129703,7 @@ CVE-2018-17934 (NUUO CMS All versions 3.3 and prior the application allows exter
 CVE-2018-17933 (VGo Robot (Versions 3.0.3.52164 and 3.0.3.53662. Prior versions may al ...)
 	NOT-FOR-US: VGo Robot
 CVE-2018-17932 (JUUKO K-800 (Firmware versions prior to numbers ending ...9A, ...9B, . ...)
-	TODO: check
+	NOT-FOR-US: JUUKO K-800
 CVE-2018-17931 (If an attacker has physical access to the VGo Robot (Versions 3.0.3.52 ...)
 	NOT-FOR-US: VGo Robot
 CVE-2018-17930 (A stack-based buffer overflow vulnerability has been identified in Tel ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/42b8227c8cd74f4af2612b2674123a3d7208ff6e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/42b8227c8cd74f4af2612b2674123a3d7208ff6e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201102/2254ef13/attachment.html>