[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Sep 22 21:38:45 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e7076740 by Salvatore Bonaccorso at 2020-09-22T22:37:35+02:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3211,7 +3211,7 @@ CVE-2020-24335
 CVE-2020-24334
 	RESERVED
 CVE-2020-24333 (A vulnerability in Arista’s CloudVision Portal (CVP) prior to 20 ...)
-	TODO: check
+	NOT-FOR-US: Arista
 CVE-2020-24332 (An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon ...)
 	- trousers <unfixed> (unimportant)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1164472
@@ -5007,7 +5007,7 @@ CVE-2020-23448
 CVE-2020-23447
 	RESERVED
 CVE-2020-23446 (Verint Workforce Optimization suite 15.1 (15.1.0.37634) has Unauthenti ...)
-	TODO: check
+	NOT-FOR-US: Verint Workforce Optimization suite
 CVE-2020-23445
 	RESERVED
 CVE-2020-23444
@@ -19640,7 +19640,7 @@ CVE-2020-16204 (The affected product is vulnerable due to an undocumented interf
 CVE-2020-16203 (Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and ...)
 	NOT-FOR-US: Delta Industrial Automation
 CVE-2020-16202 (WebAccess Node (All versions prior to 9.0.1) has incorrect permissions ...)
-	TODO: check
+	NOT-FOR-US: WebAccess Node
 CVE-2020-16201 (Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and ...)
 	NOT-FOR-US: Delta Industrial Automation
 CVE-2020-16200 (Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. Th ...)
@@ -20469,7 +20469,7 @@ CVE-2020-15841 (Liferay Portal before 7.3.0, and Liferay DXP 7.0 before fix pack
 CVE-2020-15840
 	RESERVED
 CVE-2020-15839 (Liferay Portal before 7.3.3, and Liferay DXP 7.1 before fix pack 18 an ...)
-	TODO: check
+	NOT-FOR-US: Liferay
 CVE-2020-15838
 	RESERVED
 CVE-2020-15837
@@ -25329,25 +25329,25 @@ CVE-2020-14033 (An issue was discovered in janus-gateway (aka Janus WebRTC Serve
 CVE-2020-14032
 	RESERVED
 CVE-2020-14031 (An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The ou ...)
-	TODO: check
+	NOT-FOR-US: Ozeki NG SMS Gateway
 CVE-2020-14030
 	RESERVED
 CVE-2020-14029 (An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The RS ...)
 	NOT-FOR-US: Ozeki NG SMS Gateway
 CVE-2020-14028 (An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. By lev ...)
-	TODO: check
+	NOT-FOR-US: Ozeki NG SMS Gateway
 CVE-2020-14027 (An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The da ...)
-	TODO: check
+	NOT-FOR-US: Ozeki NG SMS Gateway
 CVE-2020-14026 (CSV Injection (aka Excel Macro Injection or Formula Injection) exists  ...)
-	TODO: check
+	NOT-FOR-US: Ozeki NG SMS Gateway
 CVE-2020-14025 (Ozeki NG SMS Gateway through 4.17.6 has multiple CSRF vulnerabilities. ...)
-	TODO: check
+	NOT-FOR-US: Ozeki NG SMS Gateway
 CVE-2020-14024 (Ozeki NG SMS Gateway through 4.17.6 has multiple authenticated stored  ...)
-	TODO: check
+	NOT-FOR-US: Ozeki NG SMS Gateway
 CVE-2020-14023 (Ozeki NG SMS Gateway through 4.17.6 allows SSRF via SMS WCF or RSS To  ...)
-	TODO: check
+	NOT-FOR-US: Ozeki NG SMS Gateway
 CVE-2020-14022 (Ozeki NG SMS Gateway 4.17.1 through 4.17.6 does not check the file typ ...)
-	TODO: check
+	NOT-FOR-US: Ozeki NG SMS Gateway
 CVE-2020-14021 (An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The AS ...)
 	NOT-FOR-US: Ozeki NG SMS Gateway
 CVE-2020-14020
@@ -51952,7 +51952,7 @@ CVE-2020-3979 (InstallBuilder for Qt Windows (versions prior to 20.7.0) installe
 CVE-2020-3978
 	RESERVED
 CVE-2020-3977 (VMware Horizon DaaS (7.x and 8.x before 8.0.1 Update 1) contains a bro ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2020-3976 (VMware ESXi and vCenter Server contain a partial denial of service vul ...)
 	NOT-FOR-US: VMware
 CVE-2020-3975 (VMware App Volumes 2.x prior to 2.18.6 and VMware App Volumes 4 prior  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e707674012dcdca7cb5a1abf6aca16efe0f9af92

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e707674012dcdca7cb5a1abf6aca16efe0f9af92
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200922/fc2294a7/attachment.html>

More information about the debian-security-tracker-commits mailing list