[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon May 24 09:19:22 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0503ca04 by Salvatore Bonaccorso at 2021-05-24T10:18:58+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -38,9 +38,9 @@ CVE-2021-3563
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1962908
TODO: scarce details on it if there are upstream references, try to get more information
CVE-2021-33497 (Dutchcoders transfer.sh before 1.2.4 allows Directory Traversal for de ...)
- TODO: check
+ NOT-FOR-US: Dutchcoders transfer.sh
CVE-2021-33496 (Dutchcoders transfer.sh before 1.2.4 allows XSS via an inline view. ...)
- TODO: check
+ NOT-FOR-US: Dutchcoders transfer.sh
CVE-2021-33495
RESERVED
CVE-2021-33494
@@ -31298,15 +31298,15 @@ CVE-2021-20728
CVE-2021-20727
RESERVED
CVE-2021-20726 (Untrusted search path vulnerability in The Installer of Overwolf 2.168 ...)
- TODO: check
+ NOT-FOR-US: Overwolf
CVE-2021-20725 (Reflected cross-site scripting vulnerability in the admin page of [Cal ...)
- TODO: check
+ NOT-FOR-US: Calendar01
CVE-2021-20724 (Reflected cross-site scripting vulnerability in the admin page of [Tel ...)
- TODO: check
+ NOT-FOR-US: Telop01
CVE-2021-20723 (Reflected cross-site scripting vulnerability in [MailForm01] free edit ...)
- TODO: check
+ NOT-FOR-US: MailForm01
CVE-2021-20722 (Untrusted search path vulnerability in the installers of ScanSnap Mana ...)
- TODO: check
+ NOT-FOR-US: ScanSnap Manager
CVE-2021-20721 (KonaWiki2 versions prior to 2.2.4 allows a remote attacker to upload a ...)
NOT-FOR-US: KonaWiki2
CVE-2021-20720 (SQL injection vulnerability in the KonaWiki2 versions prior to 2.2.4 a ...)
@@ -31325,7 +31325,7 @@ CVE-2021-20715 (Improper access control vulnerability in Hot Pepper Gourmet App
CVE-2021-20714 (Directory traversal vulnerability in WP Fastest Cache versions prior t ...)
NOT-FOR-US: WP fastest cache
CVE-2021-20713 (Privilege escalation vulnerability in QND Advance/Premium/Standard Ver ...)
- TODO: check
+ NOT-FOR-US: QND Advance/Premium/Standard
CVE-2021-20712 (Improper access control vulnerability in NEC Aterm WG2600HS firmware V ...)
NOT-FOR-US: Aterm firmware
CVE-2021-20711 (Aterm WG2600HS firmware Ver1.5.1 and earlier allows an attacker to exe ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0503ca045563ee4ddfb1ee82253393bb25461b9f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0503ca045563ee4ddfb1ee82253393bb25461b9f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210524/349a5ac4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list