[Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 1 21:01:03 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
308e9f5d by Salvatore Bonaccorso at 2021-12-01T22:00:37+01:00
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13693,7 +13693,7 @@ CVE-2021-40155 (A maliciously crafted DWG file in Autodesk Navisworks 2019, 2020
CVE-2021-3747 (The MacOS version of Multipass, version 1.7.0, fixed in 1.7.2, acciden ...)
NOT-FOR-US: Multipass
CVE-2021-40154 (NXP LPC55S69 devices before A3 have a buffer over-read via a crafted w ...)
- TODO: check
+ NOT-FOR-US: NXP LPC55S69 devices
CVE-2021-40152
RESERVED
CVE-2021-40151
@@ -27004,7 +27004,7 @@ CVE-2021-34601
CVE-2021-34600
RESERVED
CVE-2021-34599 (Affected versions of CODESYS Git in Versions prior to V1.1.0.0 lack ce ...)
- TODO: check
+ NOT-FOR-US: CODESYS
CVE-2021-34598 (In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 an ...)
NOT-FOR-US: Phoenix
CVE-2021-34597 (Improper Input Validation vulnerability in PC Worx Automation Suite of ...)
@@ -31925,7 +31925,7 @@ CVE-2021-32594 (An unrestricted file upload vulnerability in the web interface o
CVE-2021-32593
RESERVED
CVE-2021-32592 (An unsafe search path vulnerability in FortiClientWindows 7.0.0, 6.4.6 ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2021-32591
RESERVED
CVE-2021-32590 (Multiple improper neutralization of special elements used in an SQL co ...)
@@ -62603,7 +62603,7 @@ CVE-2021-20853 (ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WR
CVE-2021-20852 (Buffer overflow vulnerability in ELECOM LAN routers (WRH-733GBK firmwa ...)
NOT-FOR-US: ELECOM
CVE-2021-20851 (Cross-site request forgery (CSRF) vulnerability in Browser and Operati ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-20850 (PowerCMS XMLRPC API of PowerCMS 5.19 and earlier, PowerCMS 4.49 and ea ...)
NOT-FOR-US: PowerCMS
CVE-2021-20849
@@ -62611,7 +62611,7 @@ CVE-2021-20849
CVE-2021-20848 (Cross-site scripting vulnerability in rwtxt versions prior to v1.8.6 a ...)
NOT-FOR-US: rwtxt
CVE-2021-20847 (Cross-site scripting vulnerability in Wi-Fi STATION SH-52A (38JP_1_11G ...)
- TODO: check
+ NOT-FOR-US: Wi-Fi STATION SH-52A
CVE-2021-20846 (Cross-site request forgery (CSRF) vulnerability in Push Notifications ...)
NOT-FOR-US: WordPress plugin
CVE-2021-20845 (Cross-site request forgery (CSRF) vulnerability in Unlimited Sitemap G ...)
@@ -63086,11 +63086,11 @@ CVE-2021-20613
CVE-2021-20612
RESERVED
CVE-2021-20611 (Improper Input Validation vulnerability in MELSEC iQ-R Series R00/01/0 ...)
- TODO: check
+ NOT-FOR-US: Mitsubishi
CVE-2021-20610 (Improper Handling of Length Parameter Inconsistency vulnerability in M ...)
- TODO: check
+ NOT-FOR-US: Mitsubishi
CVE-2021-20609 (Uncontrolled Resource Consumption vulnerability in MELSEC iQ-R Series ...)
- TODO: check
+ NOT-FOR-US: Mitsubishi
CVE-2021-20608
RESERVED
CVE-2021-20607
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/308e9f5dbd543fbea54e6c54d0aedf95467b2b6c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/308e9f5dbd543fbea54e6c54d0aedf95467b2b6c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211201/5915b737/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list