[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Jan 8 09:20:10 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
27024a35 by Salvatore Bonaccorso at 2021-01-08T10:19:45+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,9 +7,9 @@ CVE-2021-3110
 CVE-2021-3109
 	RESERVED
 CVE-2021-23242 (MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../  ...)
-	TODO: check
+	NOT-FOR-US: MERCUSYS Mercury X18G devices
 CVE-2021-23241 (MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../  ...)
-	TODO: check
+	NOT-FOR-US: MERCUSYS Mercury X18G devices
 CVE-2021-23240
 	RESERVED
 CVE-2021-23239
@@ -1167,7 +1167,7 @@ CVE-2021-3027
 CVE-2021-3026 (Invision Community IPS Community Suite before 4.5.4.2 allows XSS durin ...)
 	NOT-FOR-US: Invision Community IPS Community Suite
 CVE-2021-3025 (Invision Community IPS Community Suite before 4.5.4.2 allows SQL Injec ...)
-	TODO: check
+	NOT-FOR-US: Invision Community IPS Community
 CVE-2021-22695
 	RESERVED
 CVE-2021-22694
@@ -4656,7 +4656,7 @@ CVE-2020-35747
 CVE-2020-35746
 	RESERVED
 CVE-2020-35745 (PHPGURUKUL Hospital Management System V 4.0 does not properly restrict ...)
-	TODO: check
+	NOT-FOR-US: PHPGURUKUL Hospital Management System
 CVE-2020-35744
 	RESERVED
 CVE-2020-35743 (HGiga MailSherlock contains a SQL injection flaw. Attackers can inject ...)
@@ -22595,7 +22595,7 @@ CVE-2020-25952 (SQL injection vulnerability in PHPGurukul User Registration &amp
 CVE-2020-25951
 	RESERVED
 CVE-2020-25950 (Advanced Webhost Billing System 3.7.0 is affected by Cross Site Reques ...)
-	TODO: check
+	NOT-FOR-US: Advanced Webhost Billing System
 CVE-2020-25949
 	RESERVED
 CVE-2020-25948
@@ -25852,7 +25852,7 @@ CVE-2020-24579 (An issue was discovered on D-Link DSL-2888A devices with firmwar
 CVE-2020-24578 (An issue was discovered on D-Link DSL-2888A devices with firmware prio ...)
 	NOT-FOR-US: D-Link
 CVE-2020-24577 (An issue was discovered on D-Link DSL-2888A devices with firmware prio ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-24576
 	RESERVED
 CVE-2020-24575
@@ -40164,7 +40164,7 @@ CVE-2020-17502
 CVE-2020-17501
 	RESERVED
 CVE-2020-17500 (Barco TransForm NDN-210 Lite, NDN-210 Pro, NDN-211 Lite, and NDN-211 P ...)
-	TODO: check
+	NOT-FOR-US: Barco
 CVE-2020-17499
 	RESERVED
 CVE-2020-17498 (In Wireshark 3.2.0 to 3.2.5, the Kafka protocol dissector could crash. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27024a35e6649949d17518aa3121f75c041f8f70

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27024a35e6649949d17518aa3121f75c041f8f70
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210108/43220345/attachment.html>

More information about the debian-security-tracker-commits mailing list