[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
837e1f79 by Salvatore Bonaccorso at 2021-01-29T09:27:58+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -17989,13 +17989,13 @@ CVE-2020-29540 (API calls in the Translation API feature in Systran Pure Neural
 CVE-2020-29539 (A Cross-Site Scripting (XSS) issue in WebUI Translation in Systran Pur ...)
 	NOT-FOR-US: Systran Pure Neural Server
 CVE-2020-29538 (Archer before 6.9 P1 (6.9.0.1) contains an improper access control vul ...)
-	TODO: check
+	NOT-FOR-US: Archer
 CVE-2020-29537 (Archer before 6.8 P2 (6.8.0.2) is affected by an open redirect vulnera ...)
-	TODO: check
+	NOT-FOR-US: Archer
 CVE-2020-29536 (Archer before 6.8 P2 (6.8.0.2) is affected by a path exposure vulnerab ...)
-	TODO: check
+	NOT-FOR-US: Archer
 CVE-2020-29535 (Archer before 6.8 P4 (6.8.0.4) contains a stored XSS vulnerability. A  ...)
-	TODO: check
+	NOT-FOR-US: Archer
 CVE-2020-29533
 	RESERVED
 CVE-2020-29532
@@ -21909,17 +21909,17 @@ CVE-2020-28408 (The server in Dundas BI through 8.0.0.1001 allows XSS via an HTM
 CVE-2020-28407
 	RESERVED
 CVE-2020-28406 (An improper authorization vulnerability exists in Star Practice Manage ...)
-	TODO: check
+	NOT-FOR-US: Star Practice Management Web
 CVE-2020-28405 (An improper authorization vulnerability exists in Star Practice Manage ...)
-	TODO: check
+	NOT-FOR-US: Star Practice Management Web
 CVE-2020-28404 (An improper authorization vulnerability exists in Star Practice Manage ...)
-	TODO: check
+	NOT-FOR-US: Star Practice Management Web
 CVE-2020-28403 (A Cross-Site Request Forgery (CSRF) vulnerability exists in Star Pract ...)
-	TODO: check
+	NOT-FOR-US: Star Practice Management Web
 CVE-2020-28402 (An improper authorization vulnerability exists in Star Practice Manage ...)
-	TODO: check
+	NOT-FOR-US: Star Practice Management Web
 CVE-2020-28401 (An improper authorization vulnerability exists in Star Practice Manage ...)
-	TODO: check
+	NOT-FOR-US: Star Practice Management Web
 CVE-2020-28400
 	RESERVED
 CVE-2020-28399
@@ -57562,7 +57562,7 @@ CVE-2020-13571
 CVE-2020-13570 (A use-after-free vulnerability exists in the JavaScript engine of Foxi ...)
 	NOT-FOR-US: Foxit
 CVE-2020-13569 (A cross-site request forgery vulnerability exists in the GACL function ...)
-	TODO: check
+	NOT-FOR-US: OpenEMR
 CVE-2020-13568
 	RESERVED
 CVE-2020-13567
@@ -71731,7 +71731,7 @@ CVE-2020-8587
 CVE-2020-8586
 	RESERVED
 CVE-2020-8585 (OnCommand Unified Manager Core Package versions prior to 5.2.5 may dis ...)
-	TODO: check
+	NOT-FOR-US: OnCommand Unified Manager Core Package
 CVE-2020-8584 (Element OS versions prior to 1.8P1 and 12.2 are susceptible to a vulne ...)
 	NOT-FOR-US: Element OS
 CVE-2020-8583 (Element Software versions prior to 12.2 and HCI versions prior to 1.8P ...)
@@ -78433,7 +78433,7 @@ CVE-2020-6026
 CVE-2020-6025
 	RESERVED
 CVE-2020-6024 (Check Point SmartConsole before R80.10 Build 185, R80.20 Build 119, R8 ...)
-	TODO: check
+	NOT-FOR-US: Check Point SmartConsole
 CVE-2020-6023 (Check Point ZoneAlarm before version 15.8.139.18543 allows a local act ...)
 	NOT-FOR-US: Check Point ZoneAlarm
 CVE-2020-6022 (Check Point ZoneAlarm before version 15.8.139.18543 allows a local act ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/837e1f79730764c6cd60b5c3cd24482320d6ce9c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/837e1f79730764c6cd60b5c3cd24482320d6ce9c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210129/53a25b6c/attachment.html>