[Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
carnil at debian.org
Thu May 6 22:08:37 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d69d21b3 by Salvatore Bonaccorso at 2021-05-06T23:08:15+02:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -35259,21 +35259,21 @@ CVE-2021-1514 (A vulnerability in the CLI of Cisco SD-WAN Software could allow a
CVE-2021-1513 (A vulnerability in the vDaemon process of Cisco SD-WAN Software could ...)
NOT-FOR-US: Cisco
CVE-2021-1512 (A vulnerability in the CLI of Cisco SD-WAN Software could allow an aut ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1511 (Multiple vulnerabilities in Cisco SD-WAN vEdge Software could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1510 (Multiple vulnerabilities in Cisco SD-WAN vEdge Software could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1509 (Multiple vulnerabilities in Cisco SD-WAN vEdge Software could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1508 (Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1507 (A vulnerability in an API of Cisco SD-WAN vManage Software could allow ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1506 (Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1505 (Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1504 (Multiple vulnerabilities in Cisco Adaptive Security Appliance (ASA) So ...)
NOT-FOR-US: Cisco
CVE-2021-1503
@@ -35285,13 +35285,13 @@ CVE-2021-1501 (A vulnerability in the SIP inspection engine of Cisco Adaptive Se
CVE-2021-1500
RESERVED
CVE-2021-1499 (A vulnerability in the web-based management interface of Cisco HyperFl ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1498 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1497 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1496 (Multiple vulnerabilities in the install, uninstall, and upgrade proces ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1495 (Multiple Cisco products are affected by a vulnerability in the Snort d ...)
NOT-FOR-US: Cisco
CVE-2021-1494
@@ -35303,7 +35303,7 @@ CVE-2021-1492 (The Duo Authentication Proxy installer prior to 5.2.1 did not pro
CVE-2021-1491
RESERVED
CVE-2021-1490 (A vulnerability in the web-based management interface of Cisco AsyncOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1489 (A vulnerability in filesystem usage management for Cisco Firepower Dev ...)
NOT-FOR-US: Cisco
CVE-2021-1488 (A vulnerability in the upgrade process of Cisco Adaptive Security Appl ...)
@@ -35311,7 +35311,7 @@ CVE-2021-1488 (A vulnerability in the upgrade process of Cisco Adaptive Security
CVE-2021-1487
RESERVED
CVE-2021-1486 (A vulnerability in Cisco SD-WAN vManage Software could allow an unauth ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1485 (A vulnerability in the CLI of Cisco IOS XR Software could allow an aut ...)
NOT-FOR-US: Cisco
CVE-2021-1484
@@ -35327,7 +35327,7 @@ CVE-2021-1480 (Multiple vulnerabilities in Cisco SD-WAN vManage Software could a
CVE-2021-1479 (Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow ...)
NOT-FOR-US: Cisco
CVE-2021-1478 (A vulnerability in the Java Management Extensions (JMX) component of C ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1477 (A vulnerability in an access control mechanism of Cisco Firepower Mana ...)
NOT-FOR-US: Cisco
CVE-2021-1476 (A vulnerability in the CLI of Cisco Adaptive Security Appliance (ASA) ...)
@@ -35347,7 +35347,7 @@ CVE-2021-1470
CVE-2021-1469 (Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for ...)
NOT-FOR-US: Cisco
CVE-2021-1468 (Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1467 (A vulnerability in Cisco Webex Meetings for Android could allow an aut ...)
NOT-FOR-US: Cisco
CVE-2021-1466
@@ -35389,7 +35389,7 @@ CVE-2021-1449 (A vulnerability in the boot logic of Cisco Access Points Software
CVE-2021-1448 (A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Sof ...)
NOT-FOR-US: Cisco
CVE-2021-1447 (A vulnerability in the user account management system of Cisco AsyncOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1446 (A vulnerability in the DNS application layer gateway (ALG) functionali ...)
NOT-FOR-US: Cisco
CVE-2021-1445 (Multiple vulnerabilities in Cisco Adaptive Security Appliance (ASA) So ...)
@@ -35407,7 +35407,7 @@ CVE-2021-1440
CVE-2021-1439 (A vulnerability in the multicast DNS (mDNS) gateway feature of Cisco A ...)
NOT-FOR-US: Cisco
CVE-2021-1438 (A vulnerability in Cisco Wide Area Application Services (WAAS) Softwar ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1437 (A vulnerability in the FlexConnect Upgrade feature of Cisco Aironet Se ...)
NOT-FOR-US: Cisco
CVE-2021-1436 (A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow ...)
@@ -35423,15 +35423,15 @@ CVE-2021-1432 (A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could
CVE-2021-1431 (A vulnerability in the vDaemon process of Cisco IOS XE SD-WAN Software ...)
NOT-FOR-US: Cisco
CVE-2021-1430 (Multiple vulnerabilities in the install, uninstall, and upgrade proces ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1429 (Multiple vulnerabilities in the install, uninstall, and upgrade proces ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1428 (Multiple vulnerabilities in the install, uninstall, and upgrade proces ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1427 (Multiple vulnerabilities in the install, uninstall, and upgrade proces ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1426 (Multiple vulnerabilities in the install, uninstall, and upgrade proces ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1425
RESERVED
CVE-2021-1424
@@ -35441,7 +35441,7 @@ CVE-2021-1423 (A vulnerability in the implementation of a CLI command in Cisco A
CVE-2021-1422
RESERVED
CVE-2021-1421 (A vulnerability in Cisco Enterprise NFV Infrastructure Software (NFVIS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1420 (A vulnerability in certain web pages of Cisco Webex Meetings could all ...)
NOT-FOR-US: Cisco
CVE-2021-1419
@@ -35487,15 +35487,15 @@ CVE-2021-1403 (A vulnerability in the web UI feature of Cisco IOS XE Software co
CVE-2021-1402 (A vulnerability in the software-based SSL/TLS message handler of Cisco ...)
NOT-FOR-US: Cisco
CVE-2021-1401 (Multiple vulnerabilities in the web-based management interface of cert ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1400 (Multiple vulnerabilities in the web-based management interface of cert ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1399 (A vulnerability in the Self Care Portal of Cisco Unified Communication ...)
NOT-FOR-US: Cisco
CVE-2021-1398 (A vulnerability in the boot logic of Cisco IOS XE Software could allow ...)
NOT-FOR-US: Cisco
CVE-2021-1397 (A vulnerability in the web-based management interface of Cisco Integra ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1396 (Multiple vulnerabilities in Cisco Application Services Engine could al ...)
NOT-FOR-US: Cisco
CVE-2021-1395
@@ -35559,11 +35559,11 @@ CVE-2021-1367 (A vulnerability in the Protocol Independent Multicast (PIM) featu
CVE-2021-1366 (A vulnerability in the interprocess communication (IPC) channel of Cis ...)
NOT-FOR-US: Cisco
CVE-2021-1365 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1364 (Multiple vulnerabilities in Cisco Unified Communications Manager IM &a ...)
NOT-FOR-US: Cisco
CVE-2021-1363 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1362 (A vulnerability in the SOAP API endpoint of Cisco Unified Communicatio ...)
NOT-FOR-US: Cisco
CVE-2021-1361 (A vulnerability in the implementation of an internal file management s ...)
@@ -35721,7 +35721,7 @@ CVE-2021-1286 (Multiple vulnerabilities in the web-based management interface of
CVE-2021-1285
RESERVED
CVE-2021-1284 (A vulnerability in the web-based messaging service interface of Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1283 (A vulnerability in the logging subsystem of Cisco Data Center Network ...)
NOT-FOR-US: Cisco
CVE-2021-1282 (Multiple vulnerabilities in Cisco Unified Communications Manager IM &a ...)
@@ -35739,7 +35739,7 @@ CVE-2021-1277 (Multiple vulnerabilities in Cisco Data Center Network Manager (DC
CVE-2021-1276 (Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) c ...)
NOT-FOR-US: Cisco
CVE-2021-1275 (Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2021-1274 (Multiple vulnerabilities in Cisco SD-WAN products could allow an unaut ...)
NOT-FOR-US: Cisco
CVE-2021-1273 (Multiple vulnerabilities in Cisco SD-WAN products could allow an unaut ...)
@@ -51203,9 +51203,9 @@ CVE-2020-23130
CVE-2020-23129
RESERVED
CVE-2020-23128 (Chamilo LMS 1.11.10 does not properly manage privileges which could al ...)
- TODO: check
+ NOT-FOR-US: Chamilo LMS
CVE-2020-23127 (Chamilo LMS 1.11.10 is affected by Cross Site Request Forgery (CSRF) v ...)
- TODO: check
+ NOT-FOR-US: Chamilo LMS
CVE-2020-23126
RESERVED
CVE-2020-23125
@@ -59253,21 +59253,21 @@ CVE-2020-19116
CVE-2020-19115
RESERVED
CVE-2020-19114 (SQL Injection vulnerability in Online Book Store v1.0 via the publishe ...)
- TODO: check
+ NOT-FOR-US: Online Book Store
CVE-2020-19113 (Arbitrary File Upload vulnerability in Online Book Store v1.0 in admin ...)
- TODO: check
+ NOT-FOR-US: Online Book Store
CVE-2020-19112 (SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn ...)
- TODO: check
+ NOT-FOR-US: Online Book Store
CVE-2020-19111 (Incorrect Access Control vulnerability in Online Book Store v1.0 via a ...)
- TODO: check
+ NOT-FOR-US: Online Book Store
CVE-2020-19110 (SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn ...)
- TODO: check
+ NOT-FOR-US: Online Book Store
CVE-2020-19109 (SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn ...)
- TODO: check
+ NOT-FOR-US: Online Book Store
CVE-2020-19108 (SQL Injection vulnerability in Online Book Store v1.0 via the pubid pa ...)
- TODO: check
+ NOT-FOR-US: Online Book Store
CVE-2020-19107 (SQL Injection vulnerability in Online Book Store v1.0 via the isbn par ...)
- TODO: check
+ NOT-FOR-US: Online Book Store
CVE-2020-19106
RESERVED
CVE-2020-19105
@@ -59701,11 +59701,11 @@ CVE-2020-18892
CVE-2020-18891
RESERVED
CVE-2020-18890 (Rmote Code Execution (RCE) vulnerability in puppyCMS v5.1 due to insec ...)
- TODO: check
+ NOT-FOR-US: puppyCMS
CVE-2020-18889 (Cross Site Request Forgery (CSRF) vulnerability in puppyCMS v5.1 that ...)
- TODO: check
+ NOT-FOR-US: puppyCMS
CVE-2020-18888 (Arbitrary File Deletion vulnerability in puppyCMS v5.1 allows remote m ...)
- TODO: check
+ NOT-FOR-US: puppyCMS
CVE-2020-18887
RESERVED
CVE-2020-18886
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d69d21b3f3e64553701c2da12d35e3d86a2ae536
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d69d21b3f3e64553701c2da12d35e3d86a2ae536
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210506/35670a64/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list