[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Fri Nov 27 08:14:02 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8710af61 by Salvatore Bonaccorso at 2020-11-27T09:13:41+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -349,9 +349,9 @@ CVE-2020-29147
CVE-2020-29146
RESERVED
CVE-2020-29145 (In Ericsson BSCS iX R18 Billing & Rating iX R18, ADMX is a web bas ...)
- TODO: check
+ NOT-FOR-US: Ericsson
CVE-2020-29144 (In Ericsson BSCS iX R18 Billing & Rating iX R18, MX is a web base ...)
- TODO: check
+ NOT-FOR-US: Ericsson
CVE-2020-29143
RESERVED
CVE-2020-29142
@@ -365,15 +365,15 @@ CVE-2020-29139
CVE-2020-29138
RESERVED
CVE-2020-29137 (cPanel before 90.0.17 allows self-XSS via the WHM Transfer Tool interf ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2020-29136 (In cPanel before 90.0.17, 2FA can be bypassed via a brute-force approa ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2020-29135 (cPanel before 90.0.17 has multiple instances of URL parameter injectio ...)
- TODO: check
+ NOT-FOR-US: cPanel
CVE-2020-29134
RESERVED
CVE-2020-29133 (jsp/upload.jsp in Coremail XT 5.0 allows XSS via an uploaded personal ...)
- TODO: check
+ NOT-FOR-US: Coremail XT
CVE-2020-29132
RESERVED
CVE-2020-29131
@@ -11211,7 +11211,7 @@ CVE-2020-25739 (An issue was discovered in the gon gem before gon-6.4.0 for Ruby
[buster] - ruby-gon <no-dsa> (Minor issue)
NOTE: https://github.com/gazay/gon/commit/fe3c7b2191a992386dc9edd37de5447a4e809bc7
CVE-2020-25738 (CyberArk Endpoint Privilege Manager (EPM) 11.1.0.173 allows attackers ...)
- TODO: check
+ NOT-FOR-US: CyberArk Endpoint Privilege Manager (EPM)
CVE-2020-25737
RESERVED
CVE-2020-25736
@@ -41638,7 +41638,7 @@ CVE-2020-12264
CVE-2020-12263
RESERVED
CVE-2020-12262 (Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61 ...)
- TODO: check
+ NOT-FOR-US: Intelbras
CVE-2020-12261 (Open-AudIT 3.3.0 allows an XSS attack after login. ...)
NOT-FOR-US: Open-AudIT
CVE-2020-12260
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8710af61689ddd3b9997b3e7b94ef0f3a5e12a02
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8710af61689ddd3b9997b3e7b94ef0f3a5e12a02
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201127/c34dadb8/attachment.html>
More information about the debian-security-tracker-commits
mailing list