[Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 15 20:25:43 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9ecf53f2 by Salvatore Bonaccorso at 2021-12-15T21:25:12+01:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1362,7 +1362,7 @@ CVE-2021-44655 (Online Pre-owned/Used Car Showroom Management System 1.0 contain
CVE-2021-44654
RESERVED
CVE-2021-44653 (Online Magazine Management System 1.0 contains a SQL injection authent ...)
- TODO: check
+ NOT-FOR-US: Online Magazine Management System
CVE-2021-44652
RESERVED
CVE-2021-44651
@@ -3556,7 +3556,7 @@ CVE-2021-43937
CVE-2021-43936 (The software allows the attacker to upload or transfer files of danger ...)
NOT-FOR-US: Distributed Data Systems
CVE-2021-43935 (The impacted products, when configured to use SSO, are affected by an ...)
- TODO: check
+ NOT-FOR-US: Hillrom
CVE-2021-43934
RESERVED
CVE-2021-43933
@@ -3610,13 +3610,13 @@ CVE-2021-43910
CVE-2021-43909
RESERVED
CVE-2021-43908 (Visual Studio Code Spoofing Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43907 (Visual Studio Code WSL Extension Remote Code Execution Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43906
RESERVED
CVE-2021-43905 (Microsoft Office app Remote Code Execution Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43904
RESERVED
CVE-2021-43903
@@ -3628,29 +3628,29 @@ CVE-2021-43901
CVE-2021-43900
RESERVED
CVE-2021-43899 (Microsoft 4K Wireless Display Adapter Remote Code Execution Vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43898
RESERVED
CVE-2021-43897
RESERVED
CVE-2021-43896 (Microsoft PowerShell Spoofing Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43895
RESERVED
CVE-2021-43894
RESERVED
CVE-2021-43893 (Windows Encrypting File System (EFS) Elevation of Privilege Vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43892 (Microsoft BizTalk ESB Toolkit Spoofing Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43891 (Visual Studio Code Remote Code Execution Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43890 (Windows AppX Installer Spoofing Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43889 (Microsoft Defender for IoT Remote Code Execution Vulnerability This CV ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43888 (Microsoft Defender for IoT Information Disclosure Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43887
RESERVED
CVE-2021-43886
@@ -3660,13 +3660,13 @@ CVE-2021-43885
CVE-2021-43884
RESERVED
CVE-2021-43883 (Windows Installer Elevation of Privilege Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43882 (Microsoft Defender for IoT Remote Code Execution Vulnerability This CV ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43881
RESERVED
CVE-2021-43880 (Windows Mobile Device Management Elevation of Privilege Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43879
RESERVED
CVE-2021-43878
@@ -3676,7 +3676,7 @@ CVE-2021-43877 (ASP.NET Core and Visual Studio Elevation of Privilege Vulnerabil
CVE-2021-43876
RESERVED
CVE-2021-43875 (Microsoft Office Graphics Remote Code Execution Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43874
RESERVED
CVE-2021-43873
@@ -4934,7 +4934,7 @@ CVE-2021-43677
CVE-2021-43676 (matyhtf framework v3.0.5 is affected by a path manipulation vulnerabil ...)
NOT-FOR-US: matyhtf framework
CVE-2021-43675 (Lychee-v3 3.2.16 is affected by a Cross Site Scripting (XSS) vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Lychee-v3
CVE-2021-43674 (** UNSUPPORTED WHEN ASSIGNED ** ThinkUp 2.0-beta.10 is affected by a p ...)
NOT-FOR-US: ThinkUp
CVE-2021-43673 (dzzoffice 2.02.1_SC_UTF8 is affected by a Cross Site Scripting (XSS) v ...)
@@ -7072,9 +7072,9 @@ CVE-2022-20623
CVE-2022-20622
RESERVED
CVE-2021-43256 (Microsoft Excel Remote Code Execution Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43255 (Microsoft Office Trust Center Spoofing Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43254
RESERVED
CVE-2021-43253
@@ -7088,75 +7088,75 @@ CVE-2021-43250
CVE-2021-43249
RESERVED
CVE-2021-43248 (Windows Digital Media Receiver Elevation of Privilege Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43247 (Windows TCP/IP Driver Elevation of Privilege Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43246 (Windows Hyper-V Denial of Service Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43245 (Windows Digital TV Tuner Elevation of Privilege Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43244 (Windows Kernel Information Disclosure Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43243 (VP9 Video Extensions Information Disclosure Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43242 (Microsoft SharePoint Server Spoofing Vulnerability This CVE ID is uniq ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43241
RESERVED
CVE-2021-43240 (NTFS Set Short Name Elevation of Privilege Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43239 (Windows Recovery Environment Agent Elevation of Privilege Vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43238 (Windows Remote Access Elevation of Privilege Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43237 (Windows Setup Elevation of Privilege Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43236 (Microsoft Message Queuing Information Disclosure Vulnerability This CV ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43235 (Storage Spaces Controller Information Disclosure Vulnerability This CV ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43234 (Windows Fax Service Remote Code Execution Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43233 (Remote Desktop Client Remote Code Execution Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43232 (Windows Event Tracing Remote Code Execution Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43231 (Windows NTFS Elevation of Privilege Vulnerability This CVE ID is uniqu ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43230 (Windows NTFS Elevation of Privilege Vulnerability This CVE ID is uniqu ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43229 (Windows NTFS Elevation of Privilege Vulnerability This CVE ID is uniqu ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43228 (SymCrypt Denial of Service Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43227 (Storage Spaces Controller Information Disclosure Vulnerability This CV ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43226 (Windows Common Log File System Driver Elevation of Privilege Vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43225 (Bot Framework SDK Remote Code Execution Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43224 (Windows Common Log File System Driver Information Disclosure Vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43223 (Windows Remote Access Connection Manager Elevation of Privilege Vulner ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43222 (Microsoft Message Queuing Information Disclosure Vulnerability This CV ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43221 (Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2021-43220 (Microsoft Edge for iOS Spoofing Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2021-43219 (DirectX Graphics Kernel File Denial of Service Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43218
RESERVED
CVE-2021-43217 (Windows Encrypting File System (EFS) Remote Code Execution Vulnerabili ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43216 (Microsoft Local Security Authority Server (lsasrv) Information Disclos ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43215 (iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Ex ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43214 (Web Media Extensions Remote Code Execution Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43213
RESERVED
CVE-2021-43212
@@ -7170,7 +7170,7 @@ CVE-2021-43209 (3D Viewer Remote Code Execution Vulnerability This CVE ID is uni
CVE-2021-43208 (3D Viewer Remote Code Execution Vulnerability This CVE ID is unique fr ...)
NOT-FOR-US: Microsoft
CVE-2021-43207 (Windows Common Log File System Driver Elevation of Privilege Vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-43206
RESERVED
CVE-2021-43205
@@ -10495,7 +10495,7 @@ CVE-2021-42322 (Visual Studio Code Elevation of Privilege Vulnerability ...)
CVE-2021-42321 (Microsoft Exchange Server Remote Code Execution Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2021-42320 (Microsoft SharePoint Server Spoofing Vulnerability This CVE ID is uniq ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-42319 (Visual Studio Elevation of Privilege Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2021-42318
@@ -10505,19 +10505,19 @@ CVE-2021-42317
CVE-2021-42316 (Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerabili ...)
NOT-FOR-US: Microsoft
CVE-2021-42315 (Microsoft Defender for IoT Remote Code Execution Vulnerability This CV ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-42314 (Microsoft Defender for IoT Remote Code Execution Vulnerability This CV ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-42313 (Microsoft Defender for IoT Remote Code Execution Vulnerability This CV ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-42312 (Microsoft Defender for IOT Elevation of Privilege Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-42311 (Microsoft Defender for IoT Remote Code Execution Vulnerability This CV ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-42310 (Microsoft Defender for IoT Remote Code Execution Vulnerability This CV ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-42309 (Microsoft SharePoint Server Remote Code Execution Vulnerability This C ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-42308 (Microsoft Edge (Chromium-based) Spoofing Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2021-42307
@@ -10545,11 +10545,11 @@ CVE-2021-42297 (Windows 10 Update Assistant Elevation of Privilege Vulnerability
CVE-2021-42296 (Microsoft Word Remote Code Execution Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2021-42295 (Visual Basic for Applications Information Disclosure Vulnerability ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-42294 (Microsoft SharePoint Server Remote Code Execution Vulnerability This C ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-42293 (Microsoft Jet Red Database Engine and Access Connectivity Engine Eleva ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2021-42292 (Microsoft Excel Security Feature Bypass Vulnerability ...)
NOT-FOR-US: Microsoft
CVE-2021-42291 (Active Directory Domain Services Elevation of Privilege Vulnerability ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ecf53f2a28086a0f5fa79fd86cf5a17ecc871a1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ecf53f2a28086a0f5fa79fd86cf5a17ecc871a1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211215/9de5cb22/attachment.htm>
More information about the debian-security-tracker-commits
mailing list