[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
carnil at debian.org
Fri Jan 15 18:09:41 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
807c7a9c by Salvatore Bonaccorso at 2021-01-15T19:08:55+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9751,9 +9751,9 @@ CVE-2020-35584 (In Solstice Pod before 3.0.3, the web services allow users to co
CVE-2020-35583
RESERVED
CVE-2020-35582 (A stored cross-site scripting (XSS) issue in Envira Gallery Lite befor ...)
- TODO: check
+ NOT-FOR-US: Envira Gallery Lite
CVE-2020-35581 (A stored cross-site scripting (XSS) issue in Envira Gallery Lite befor ...)
- TODO: check
+ NOT-FOR-US: Envira Gallery Lite
CVE-2020-35580
RESERVED
CVE-2020-35579 (tindy2013 subconverter 0.6.4 has a /sub?target=%TARGET%&url=%URL%& ...)
@@ -10798,9 +10798,9 @@ CVE-2021-20620
CVE-2021-20619
RESERVED
CVE-2021-20618 (Privilege chaining vulnerability in acmailer ver. 4.0.2 and earlier, a ...)
- TODO: check
+ NOT-FOR-US: acmailer
CVE-2021-20617 (Improper access control vulnerability in acmailer ver. 4.0.1 and earli ...)
- TODO: check
+ NOT-FOR-US: acmailer
CVE-2021-20616 (Untrusted search path vulnerability in the installer of SKYSEA Client ...)
NOT-FOR-US: SKYSEA Client View
CVE-2021-20615
@@ -23488,7 +23488,7 @@ CVE-2020-27370
CVE-2020-27369
RESERVED
CVE-2020-27368 (Directory Indexing in Login Portal of Login Portal of TOTOLINK-A702R-V ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2020-27367
RESERVED
CVE-2020-27366
@@ -24922,9 +24922,9 @@ CVE-2020-26735
CVE-2020-26734
RESERVED
CVE-2020-26733 (Cross Site Scripting (XSS) in Configuration page in SKYWORTH GN542VF H ...)
- TODO: check
+ NOT-FOR-US: SKYWORTH GN542VF Hardware
CVE-2020-26732 (Skyworth GN542VF Boa version 0.94.13 does not set the Secure flag for ...)
- TODO: check
+ NOT-FOR-US: Skyworth GN542VF Boa
CVE-2020-26731
RESERVED
CVE-2020-26730
@@ -73242,9 +73242,9 @@ CVE-2020-6779
CVE-2020-6778
RESERVED
CVE-2020-6777 (A vulnerability in the web-based management interface of Bosch PRAESID ...)
- TODO: check
+ NOT-FOR-US: Bosch
CVE-2020-6776 (A vulnerability in the web-based management interface of Bosch PRAESID ...)
- TODO: check
+ NOT-FOR-US: Bosch
CVE-2020-6775
RESERVED
CVE-2020-6774 (Improper Access Control in the Kiosk Mode functionality of Bosch Recor ...)
@@ -76178,7 +76178,7 @@ CVE-2020-5635 (Aterm SA3500G firmware versions prior to Ver. 3.5.9 allows an att
CVE-2020-5634 (ELECOM LAN routers (WRC-2533GST2 firmware versions prior to v1.14, WRC ...)
NOT-FOR-US: ELECOM LAN routers
CVE-2020-5633 (Multiple NEC products (Express5800/T110j, Express5800/T110j-S, Express ...)
- TODO: check
+ NOT-FOR-US: NEC
CVE-2020-5632 (InfoCage SiteShell series (Host type SiteShell for IIS V1.4, V1.5, and ...)
NOT-FOR-US: InfoCage SiteShell
CVE-2020-5631 (Stored cross-site scripting vulnerability in CMONOS.JP ver2.0.20191009 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/807c7a9cb79068b8c288e17acd07563579b6e4e2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/807c7a9cb79068b8c288e17acd07563579b6e4e2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210115/c3d5b09d/attachment.html>
More information about the debian-security-tracker-commits
mailing list