[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso carnil at debian.org
Mon Nov 16 08:25:22 GMT 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fdb6a7d3 by Salvatore Bonaccorso at 2020-11-16T09:24:35+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -465,7 +465,7 @@ CVE-2020-28658
 CVE-2020-28657
 	RESERVED
 CVE-2020-28656 (The update functionality of the Discover Media infotainment system in  ...)
-	TODO: check
+	NOT-FOR-US: 3Discover Media infotainment system in Volkswagen Polo 2019 vehicles
 CVE-2020-28655
 	RESERVED
 CVE-2020-28654
@@ -481,7 +481,7 @@ CVE-2020-28650 (The WPBakery plugin before 6.4.1 for WordPress allows XSS becaus
 CVE-2020-28649 (The orbisius-child-theme-creator plugin before 1.5.2 for WordPress all ...)
 	NOT-FOR-US: orbisius-child-theme-creator plugin for WordPress
 CVE-2020-28648 (Improper input validation in the Auto-Discovery component of Nagios XI ...)
-	TODO: check
+	NOT-FOR-US: Nagios XI
 CVE-2020-28647
 	RESERVED
 CVE-2020-28646
@@ -493,7 +493,7 @@ CVE-2020-28644
 CVE-2020-28643
 	RESERVED
 CVE-2020-28642 (In InfiniteWP Admin Panel before 3.1.12.3, resetPasswordSendMail gener ...)
-	TODO: check
+	NOT-FOR-US: InfiniteWP Admin Panel
 CVE-2020-28641
 	RESERVED
 CVE-2020-28640
@@ -51719,15 +51719,15 @@ CVE-2020-8275
 CVE-2020-8274
 	RESERVED
 CVE-2020-8273 (Privilege escalation of an authenticated user to root in Citrix SD-WAN ...)
-	TODO: check
+	NOT-FOR-US: Citrix SD-WAN center
 CVE-2020-8272 (Authentication Bypass resulting in exposure of SD-WAN functionality in ...)
-	TODO: check
+	NOT-FOR-US: Citrix SD-WAN Center
 CVE-2020-8271 (Unauthenticated remote code execution with root privileges in Citrix S ...)
-	TODO: check
+	NOT-FOR-US: Citrix SD-WAN Center
 CVE-2020-8270 (An unprivileged Windows user on the VDA or an SMB user can perform arb ...)
-	TODO: check
+	NOT-FOR-US: Citrix
 CVE-2020-8269 (An unprivileged Windows user on the VDA can perform arbitrary command  ...)
-	TODO: check
+	NOT-FOR-US: Citrix
 CVE-2020-8268 (Prototype pollution vulnerability in json8-merge-patch npm package &lt ...)
 	NOT-FOR-US: Node json8-merge-patch
 CVE-2020-8267 (A security issue was found in UniFi Protect controller v1.14.10 and ea ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fdb6a7d3a1039024638a12d9aa45d353cbd7c3ba

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fdb6a7d3a1039024638a12d9aa45d353cbd7c3ba
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201116/9ef76aa7/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list