[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Oct 5 21:30:30 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e2b153db by Salvatore Bonaccorso at 2021-10-05T22:30:05+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1036,11 +1036,11 @@ CVE-2021-41557
CVE-2021-41556
RESERVED
CVE-2021-41555 (** UNSUPPORTED WHEN ASSIGNED ** In ARCHIBUS Web Central 21.3.3.815 (a ...)
- TODO: check
+ NOT-FOR-US: ARCHIBUS Web Central
CVE-2021-41554 (** UNSUPPORTED WHEN ASSIGNED ** ARCHIBUS Web Central 21.3.3.815 (a ver ...)
- TODO: check
+ NOT-FOR-US: ARCHIBUS Web Central
CVE-2021-41553 (** UNSUPPORTED WHEN ASSIGNED ** In ARCHIBUS Web Central 21.3.3.815 (a ...)
- TODO: check
+ NOT-FOR-US: ARCHIBUS Web Central
CVE-2021-41552
RESERVED
CVE-2021-41551
@@ -1634,7 +1634,7 @@ CVE-2021-41288 (Zoho ManageEngine OpManager version 125466 and below is vulnerab
CVE-2021-41287
RESERVED
CVE-2021-41286 (Omikron MultiCash Desktop 4.00.008.SP5 relies on a client-side authent ...)
- TODO: check
+ NOT-FOR-US: Omikron MultiCash Desktop
CVE-2021-3804 (taro is vulnerable to Inefficient Regular Expression Complexity ...)
NOT-FOR-US: NervJS Taro
CVE-2016-20012 (OpenSSH through 8.7 allows remote attackers, who have a suspicion that ...)
@@ -11119,7 +11119,7 @@ CVE-2021-37225
CVE-2021-37224
RESERVED
CVE-2021-37223 (Nagios Enterprises NagiosXI <= 5.8.4 contains a Server-Side Request ...)
- TODO: check
+ NOT-FOR-US: Nagios XI
CVE-2021-37222 (Parsers in the open source project RCDCAP before 1.0.5 allow remote at ...)
NOT-FOR-US: RCDCAP
CVE-2021-37221
@@ -15143,13 +15143,13 @@ CVE-2021-35508 (NMSAccess32.exe in TeraRecon AQNetClient 4.4.13 allows attackers
CVE-2021-35507
RESERVED
CVE-2021-35506 (Afian FileRun 2021.03.26 allows XSS when an administrator encounters a ...)
- TODO: check
+ NOT-FOR-US: Afian FileRun
CVE-2021-35505 (Afian FileRun 2021.03.26 allows Remote Code Execution (by administrato ...)
- TODO: check
+ NOT-FOR-US: Afian FileRun
CVE-2021-35504 (Afian FileRun 2021.03.26 allows Remote Code Execution (by administrato ...)
- TODO: check
+ NOT-FOR-US: Afian FileRun
CVE-2021-35503 (Afian FileRun 2021.03.26 allows stored XSS via an HTTP X-Forwarded-For ...)
- TODO: check
+ NOT-FOR-US: Afian FileRun
CVE-2021-35502 (app/View/Elements/genericElements/IndexTable/Fields/generic_field.ctp ...)
NOT-FOR-US: MISP
CVE-2021-3622
@@ -15195,9 +15195,9 @@ CVE-2021-35493 (The WebFOCUS Reporting Server and WebFOCUS Client components of
CVE-2021-3619 (Rapid7 Velociraptor 0.5.9 and prior is vulnerable to a post-authentica ...)
NOT-FOR-US: Rapid7 Velociraptor
CVE-2021-35492 (Wowza Streaming Engine through 4.8.11+5 could allow an authenticated, ...)
- TODO: check
+ NOT-FOR-US: Wowza Streaming Engine
CVE-2021-35491 (A Cross-Site Request Forgery (CSRF) vulnerability in Wowza Streaming E ...)
- TODO: check
+ NOT-FOR-US: Wowza Streaming Engine
CVE-2021-35490
RESERVED
CVE-2021-35489
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e2b153dbd73b6df7040738d1441a6ec878b175f6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e2b153dbd73b6df7040738d1441a6ec878b175f6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211005/8bc11169/attachment.htm>
More information about the debian-security-tracker-commits
mailing list