[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ad636512 by security tracker role at 2021-04-03T08:10:22+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2021-30126 (Lightmeter ControlCenter 1.1.0 through 1.5.x before 1.5.1 allows anyon ...)
+	TODO: check
+CVE-2021-30125 (Jamf Pro before 10.28.0 allows XSS related to inventory history, aka P ...)
+	TODO: check
 CVE-2021-30124
 	RESERVED
 CVE-2021-30123
@@ -98,12 +102,12 @@ CVE-2021-30076
 	RESERVED
 CVE-2021-30075
 	RESERVED
-CVE-2021-30074
-	RESERVED
+CVE-2021-30074 (docsify 4.12.1 is affected by Cross Site Scripting (XSS) because the s ...)
+	TODO: check
 CVE-2021-30073
 	RESERVED
-CVE-2021-30072
-	RESERVED
+CVE-2021-30072 (An issue was discovered in prog.cgi on D-Link DIR-878 1.30B08 devices. ...)
+	TODO: check
 CVE-2021-30071
 	RESERVED
 CVE-2021-30070
@@ -2583,8 +2587,8 @@ CVE-2021-28943
 	RESERVED
 CVE-2021-28942
 	RESERVED
-CVE-2021-28941
-	RESERVED
+CVE-2021-28941 (Because of no validation on a curl command in MagpieRSS 0.72 in the /e ...)
+	TODO: check
 CVE-2021-28940 (Because of a incorrect escaped exec command in MagpieRSS in 0.72 in th ...)
 	NOT-FOR-US: MagpieRSS
 CVE-2021-28939
@@ -19384,16 +19388,16 @@ CVE-2021-21535
 	RESERVED
 CVE-2021-21534
 	RESERVED
-CVE-2021-21533
-	RESERVED
-CVE-2021-21532
-	RESERVED
+CVE-2021-21533 (Wyse Management Suite versions up to 3.2 contains a vulnerability wher ...)
+	TODO: check
+CVE-2021-21532 (Dell Wyse ThinOS 8.6 MR9 contains remediation for an improper manageme ...)
+	TODO: check
 CVE-2021-21531
 	RESERVED
 CVE-2021-21530
 	RESERVED
-CVE-2021-21529
-	RESERVED
+CVE-2021-21529 (Dell System Update (DSU) 1.9 and earlier versions contain a denial of  ...)
+	TODO: check
 CVE-2021-21528
 	RESERVED
 CVE-2021-21527
@@ -35694,8 +35698,8 @@ CVE-2020-27670 (An issue was discovered in Xen through 4.14.x allowing x86 guest
 	- xen 4.14.0+80-gd101b417b7-1
 	[stretch] - xen <end-of-life> (DSA 4602-1)
 	NOTE: https://xenbits.xen.org/xsa/advisory-347.html
-CVE-2020-27600
-	RESERVED
+CVE-2020-27600 (HNAP1/control/SetMasterWLanSettings.php in D-Link D-Link Router DIR-84 ...)
+	TODO: check
 CVE-2020-27599
 	RESERVED
 CVE-2020-27598
@@ -48863,18 +48867,18 @@ CVE-2020-21592
 	RESERVED
 CVE-2020-21591
 	RESERVED
-CVE-2020-21590
-	RESERVED
+CVE-2020-21590 (Directory traversal in coreframe/app/template/admin/index.php in WUZHI ...)
+	TODO: check
 CVE-2020-21589
 	RESERVED
-CVE-2020-21588
-	RESERVED
+CVE-2020-21588 (Buffer overflow in Core FTP LE v2.2 allows local attackers to cause a  ...)
+	TODO: check
 CVE-2020-21587
 	RESERVED
 CVE-2020-21586
 	RESERVED
-CVE-2020-21585
-	RESERVED
+CVE-2020-21585 (Vulnerability in emlog v6.0.0 allows user to upload webshells via zip  ...)
+	TODO: check
 CVE-2020-21584
 	RESERVED
 CVE-2020-21583



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ad636512c99fdcd60648614579093e99b3dbfc15

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ad636512c99fdcd60648614579093e99b3dbfc15
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210403/0f413a52/attachment.htm>