[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6de48cf5 by Salvatore Bonaccorso at 2020-09-30T22:41:25+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9708,17 +9708,17 @@ CVE-2020-21529
 CVE-2020-21528
 	RESERVED
 CVE-2020-21527 (There is an Arbitrary file deletion vulnerability in halo v1.1.3. A ba ...)
-	TODO: check
+	NOT-FOR-US: Halo
 CVE-2020-21526 (An Arbitrary file writing vulnerability in halo v1.1.3. In an interfac ...)
-	TODO: check
+	NOT-FOR-US: Halo
 CVE-2020-21525 (Halo V1.1.3 is affected by: Arbitrary File reading. In an interface th ...)
-	TODO: check
+	NOT-FOR-US: Halo
 CVE-2020-21524 (There is a XML external entity (XXE) vulnerability in halo v1.1.3, The ...)
-	TODO: check
+	NOT-FOR-US: Halo
 CVE-2020-21523 (A Server-Side Freemarker template injection vulnerability in halo CMS  ...)
-	TODO: check
+	NOT-FOR-US: Halo
 CVE-2020-21522 (An issue was discovered in halo V1.1.3. A Zip Slip Directory Traversal ...)
-	TODO: check
+	NOT-FOR-US: Halo
 CVE-2020-21521
 	RESERVED
 CVE-2020-21520
@@ -30102,9 +30102,9 @@ CVE-2020-12508
 CVE-2020-12507
 	RESERVED
 CVE-2020-12506 (Improper Authentication vulnerability in WAGO 750-8XX series with FW v ...)
-	TODO: check
+	NOT-FOR-US: WAGO
 CVE-2020-12505 (Improper Authentication vulnerability in WAGO 750-8XX series with FW v ...)
-	TODO: check
+	NOT-FOR-US: WAGO
 CVE-2020-12504
 	RESERVED
 CVE-2020-12503
@@ -50394,7 +50394,7 @@ CVE-2020-5134
 CVE-2020-5133
 	RESERVED
 CVE-2020-5132 (SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature misc ...)
-	TODO: check
+	NOT-FOR-US: SonicWall
 CVE-2020-5131 (SonicWall NetExtender Windows client vulnerable to arbitrary file writ ...)
 	NOT-FOR-US: SonicWall NetExtender Windows client
 CVE-2020-5130 (SonicOS SSLVPN LDAP login request allows remote attackers to cause ext ...)
@@ -69537,7 +69537,7 @@ CVE-2019-17100 (An Untrusted Search Path vulnerability in bdserviceshost.exe as
 CVE-2019-17099 (An Untrusted Search Path vulnerability in EPSecurityService.exe as use ...)
 	NOT-FOR-US: Bitdefender Endpoint Security Tools
 CVE-2019-17098 (Use of hard-coded cryptographic key vulnerability in August Connect Wi ...)
-	TODO: check
+	NOT-FOR-US: August Connect Wi-Fi Bridge App
 CVE-2019-17097
 	RESERVED
 CVE-2019-17096 (A OS Command Injection vulnerability in the bootstrap stage of Bitdefe ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6de48cf5559880b4d0d3edd49ba1b5c2c3329e12

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6de48cf5559880b4d0d3edd49ba1b5c2c3329e12
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200930/8c86f4d4/attachment.html>