[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
52d0da22 by security tracker role at 2021-04-26T08:10:16+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2021-31804
+	RESERVED
+CVE-2021-31803
+	RESERVED
 CVE-2021-31802
 	RESERVED
 CVE-2021-31801
@@ -26829,16 +26833,16 @@ CVE-2021-20714
 	RESERVED
 CVE-2021-20713
 	RESERVED
-CVE-2021-20712
-	RESERVED
-CVE-2021-20711
-	RESERVED
-CVE-2021-20710
-	RESERVED
-CVE-2021-20709
-	RESERVED
-CVE-2021-20708
-	RESERVED
+CVE-2021-20712 (Improper access control vulnerability in NEC Aterm WG2600HS firmware V ...)
+	TODO: check
+CVE-2021-20711 (Aterm WG2600HS firmware Ver1.5.1 and earlier allows an attacker to exe ...)
+	TODO: check
+CVE-2021-20710 (Cross-site scripting vulnerability in Aterm WG2600HS firmware Ver1.5.1 ...)
+	TODO: check
+CVE-2021-20709 (Improper validation of integrity check value vulnerability in NEC Ater ...)
+	TODO: check
+CVE-2021-20708 (NEC Aterm devices (Aterm WF1200CR firmware Ver1.3.2 and earlier, Aterm ...)
+	TODO: check
 CVE-2021-20707
 	RESERVED
 CVE-2021-20706
@@ -26859,16 +26863,16 @@ CVE-2021-20699
 	RESERVED
 CVE-2021-20698
 	RESERVED
-CVE-2021-20697
-	RESERVED
-CVE-2021-20696
-	RESERVED
-CVE-2021-20695
-	RESERVED
-CVE-2021-20694
-	RESERVED
-CVE-2021-20693
-	RESERVED
+CVE-2021-20697 (Missing authentication for critical function in DAP-1880AC firmware ve ...)
+	TODO: check
+CVE-2021-20696 (DAP-1880AC firmware version 1.21 and earlier allows a remote authentic ...)
+	TODO: check
+CVE-2021-20695 (Improper following of a certificate's chain of trust vulnerability in  ...)
+	TODO: check
+CVE-2021-20694 (Improper access control vulnerability in DAP-1880AC firmware version 1 ...)
+	TODO: check
+CVE-2021-20693 (Improper access control vulnerability in Gurunavi App for Android ver. ...)
+	TODO: check
 CVE-2021-20692 (Directory traversal vulnerability in Archive collectively operation ut ...)
 	NOT-FOR-US: Enkisoft
 CVE-2021-20691 (Cross-site scripting vulnerability in Yomi-Search Ver4.22 allows remot ...)
@@ -26893,8 +26897,8 @@ CVE-2021-20682 (baserCMS versions prior to 4.4.5 allows a remote attacker with a
 	NOT-FOR-US: baserCMS
 CVE-2021-20681 (Improper neutralization of JavaScript input in the page editing functi ...)
 	NOT-FOR-US: baserCMS
-CVE-2021-20680
-	RESERVED
+CVE-2021-20680 (Cross-site scripting vulnerability in NEC Aterm devices (Aterm WG1900H ...)
+	TODO: check
 CVE-2021-20679 (Fuji Xerox multifunction devices and printers (DocuCentre-VII C7773/C6 ...)
 	NOT-FOR-US: Fuji
 CVE-2021-20678 (SQL injection vulnerability in the Paid Memberships Pro versions prior ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52d0da228aa99d7e43bcdb0cecec472cc13f153d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52d0da228aa99d7e43bcdb0cecec472cc13f153d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210426/d58c82b5/attachment-0001.htm>