[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Apr 6 09:21:20 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
77f779d4 by Salvatore Bonaccorso at 2021-04-06T10:20:48+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -38,7 +38,7 @@ CVE-2021-30143
 CVE-2021-30142
 	RESERVED
 CVE-2021-30141 (** DISPUTED ** Module/Settings/UserExport.php in Friendica through 202 ...)
-	TODO: check
+	NOT-FOR-US: Friendica
 CVE-2021-30140
 	RESERVED
 CVE-2021-30139
@@ -4255,75 +4255,75 @@ CVE-2021-28210 [unlimited FV recursion, round 2]
 	NOTE: https://github.com/tianocore/edk2/pull/1137
 	NOTE: https://github.com/tianocore/edk2/commit/47343af30435302c087027177613412a1a83e919
 CVE-2021-28209 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28208 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28207 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28206 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28205 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28204 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28203 (The Web Set Media Image function in ASUS BMC’s firmware Web mana ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28202 (The Service configuration-2 function in ASUS BMC’s firmware Web  ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28201 (The Service configuration-1 function in ASUS BMC’s firmware Web  ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28200 (The CD media configuration function in ASUS BMC’s firmware Web m ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28199 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28198 (The Firmware protocol configuration function in ASUS BMC’s firmw ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28197 (The Active Directory configuration function in ASUS BMC’s firmwa ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28196 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28195 (The Radius configuration function in ASUS BMC’s firmware Web man ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28194 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28193 (The SMTP configuration function in ASUS BMC’s firmware Web manag ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28192 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28191 (The Firmware update function in ASUS BMC’s firmware Web manageme ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28190 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28189 (The SMTP configuration function in ASUS BMC’s firmware Web manag ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28188 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28187 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28186 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28185 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28184 (The Active Directory configuration function in ASUS BMC’s firmwa ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28183 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28182 (The Web Service configuration function in ASUS BMC’s firmware We ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28181 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28180 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28179 (The specific function in ASUS BMC’s firmware Web management page ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28178 (The UEFI configuration function in ASUS BMC’s firmware Web manag ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28177 (The LDAP configuration function in ASUS BMC’s firmware Web manag ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28176 (The DNS configuration function in ASUS BMC’s firmware Web manage ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28175 (The Radius configuration function in ASUS BMC’s firmware Web man ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2021-28174
 	RESERVED
 CVE-2021-28173
@@ -19490,15 +19490,15 @@ CVE-2021-21535
 CVE-2021-21534
 	RESERVED
 CVE-2021-21533 (Wyse Management Suite versions up to 3.2 contains a vulnerability wher ...)
-	TODO: check
+	NOT-FOR-US: Wyse Management Suite
 CVE-2021-21532 (Dell Wyse ThinOS 8.6 MR9 contains remediation for an improper manageme ...)
-	TODO: check
+	NOT-FOR-US: Dell Wyse ThinOS
 CVE-2021-21531
 	RESERVED
 CVE-2021-21530
 	RESERVED
 CVE-2021-21529 (Dell System Update (DSU) 1.9 and earlier versions contain a denial of  ...)
-	TODO: check
+	NOT-FOR-US: Dell System Update (DSU)
 CVE-2021-21528
 	RESERVED
 CVE-2021-21527
@@ -35820,7 +35820,7 @@ CVE-2020-27670 (An issue was discovered in Xen through 4.14.x allowing x86 guest
 	[stretch] - xen <end-of-life> (DSA 4602-1)
 	NOTE: https://xenbits.xen.org/xsa/advisory-347.html
 CVE-2020-27600 (HNAP1/control/SetMasterWLanSettings.php in D-Link D-Link Router DIR-84 ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-27599
 	RESERVED
 CVE-2020-27598
@@ -48996,11 +48996,11 @@ CVE-2020-21592
 CVE-2020-21591
 	RESERVED
 CVE-2020-21590 (Directory traversal in coreframe/app/template/admin/index.php in WUZHI ...)
-	TODO: check
+	NOT-FOR-US: WUZHI CMS
 CVE-2020-21589
 	RESERVED
 CVE-2020-21588 (Buffer overflow in Core FTP LE v2.2 allows local attackers to cause a  ...)
-	TODO: check
+	NOT-FOR-US: Core FTP
 CVE-2020-21587
 	RESERVED
 CVE-2020-21586
@@ -53001,9 +53001,9 @@ CVE-2020-19598
 CVE-2020-19597
 	RESERVED
 CVE-2020-19596 (Buffer overflow vulnerability in Core FTP Server v1.2 Build 583, via a ...)
-	TODO: check
+	NOT-FOR-US: Core FTP
 CVE-2020-19595 (Buffer overflow vulnerability in Core FTP Server v2 Build 697, via a c ...)
-	TODO: check
+	NOT-FOR-US: Core FTP
 CVE-2020-19594
 	RESERVED
 CVE-2020-19593
@@ -57354,7 +57354,7 @@ CVE-2020-17455
 CVE-2020-17454 (WSO2 API Manager 3.1.0 and earlier has reflected XSS on the "publisher ...)
 	NOT-FOR-US: WSO2 API Manager
 CVE-2020-17453 (WSO2 Management Console through 5.10 allows XSS via the carbon/admin/l ...)
-	TODO: check
+	NOT-FOR-US: WSO2 Management Console
 CVE-2020-17452 (flatCore before 1.5.7 allows upload and execution of a .php file by an ...)
 	NOT-FOR-US: flatCore CMS
 CVE-2020-17451 (flatCore before 1.5.7 allows XSS by an admin via the acp/acp.php?tn=pa ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/77f779d40975467bd02d26752f6131a2c5384875

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/77f779d40975467bd02d26752f6131a2c5384875
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210406/0e155c85/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list