[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Jan 12 20:20:03 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
24b6d7a8 by Salvatore Bonaccorso at 2021-01-12T21:19:19+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2021-3134 (Mubu 2.2.1 allows local users to gain privileges to execute commands,  ...)
 	TODO: check
 CVE-2021-3133 (The Elementor Contact Form DB plugin before 1.6 for WordPress allows C ...)
-	TODO: check
+	NOT-FOR-US: Elementor Contact Form DB plugin for WordPress
 CVE-2021-3132
 	RESERVED
 CVE-2021-3131
@@ -5770,57 +5770,57 @@ CVE-2021-21472
 CVE-2021-21471 (In CLA-Assistant, versions before 2.8.5, due to improper access contro ...)
 	TODO: check
 CVE-2021-21470 (SAP EPM Add-in for Microsoft Office, version - 1010 and SAP EPM Add-in ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21469 (When security guidelines for SAP NetWeaver Master Data Management, ver ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21468 (The BW Database Interface does not perform necessary authorization che ...)
 	TODO: check
 CVE-2021-21467 (SAP Banking Services (Generic Market Data) 400, 450, and 500 does not  ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21466 (SAP Business Warehouse, versions 700, 701, 702, 711, 730, 731, 740, 75 ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21465 (The BW Database Interface allows an attacker with low privileges to ex ...)
 	TODO: check
 CVE-2021-21464 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21463 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21462 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21461 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21460 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21459 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21458 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21457 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21456 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21455 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21454 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21453 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21452 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21451 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21450 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21449 (SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open ma ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21448 (SAP GUI for Windows, version - 7.60, allows an attacker to spoof logon ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21447 (SAP BusinessObjects Business Intelligence platform, versions 410, 420, ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21446 (SAP NetWeaver AS ABAP, versions 740, 750, 751, 752, 753, 754, 755, all ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21445 (SAP Commerce Cloud, versions - 1808, 1811, 1905, 2005, 2011, allows an ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-21444
 	RESERVED
 CVE-2020-35856
@@ -75780,7 +75780,7 @@ CVE-2020-4840 (IBM Security Secret Server 10.6 could allow a remote attacker to
 CVE-2020-4839
 	RESERVED
 CVE-2020-4838 (IBM API Connect 5.0.0.0 through 5.0.8.10 is vulnerable to stored cross ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4837
 	RESERVED
 CVE-2020-4836
@@ -76111,9 +76111,9 @@ CVE-2020-4676
 CVE-2020-4675
 	RESERVED
 CVE-2020-4674 (IBM Workload Automation 9.5 stores the server path in URLs that could  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4673 (IBM Workload Automation 9.5 stores sensitive information in HTML comme ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4672 (IBM Business Automation Workflow 20.0.0.1 is vulnerable to cross-site  ...)
 	NOT-FOR-US: IBM
 CVE-2020-4671 (IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.2 a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/24b6d7a859801bc7c3c3749bdea6e9e62640828b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/24b6d7a859801bc7c3c3749bdea6e9e62640828b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210112/979e0ea5/attachment.html>

More information about the debian-security-tracker-commits mailing list