[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Sep 1 22:00:24 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b9797685 by Salvatore Bonaccorso at 2021-09-01T22:59:59+02:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -61,7 +61,7 @@ CVE-2021-3761
 CVE-2021-3760
 	RESERVED
 CVE-2021-40353 (A SQL injection vulnerability exists in version 8.0 of openSIS when My ...)
-	TODO: check
+	NOT-FOR-US: openSIS
 CVE-2021-40352 (OpenEMR 6.0.0 has a pnotes_print.php?noteid= Insecure Direct Object Re ...)
 	NOT-FOR-US: OpenEMR
 CVE-2021-40351
@@ -1181,7 +1181,7 @@ CVE-2021-39849
 CVE-2021-39848
 	RESERVED
 CVE-2021-39847 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a stack-ba ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-39846
 	RESERVED
 CVE-2021-39845
@@ -2124,11 +2124,11 @@ CVE-2021-39381
 CVE-2021-39380
 	RESERVED
 CVE-2021-39379 (A SQL Injection vulnerability exists in openSIS 8.0 when MySQL (MariaD ...)
-	TODO: check
+	NOT-FOR-US: openSIS
 CVE-2021-39378 (A SQL Injection vulnerability exists in openSIS 8.0 when MySQL (MariaD ...)
-	TODO: check
+	NOT-FOR-US: openSIS
 CVE-2021-39377 (A SQL Injection vulnerability exists in openSIS 8.0 when MySQL (MariaD ...)
-	TODO: check
+	NOT-FOR-US: openSIS
 CVE-2021-39376 (Philips Healthcare Tasy Electronic Medical Record (EMR) 3.06 allows SQ ...)
 	NOT-FOR-US: Philips Healthcare Tasy Electronic Medical Record (EMR)
 CVE-2021-39375 (Philips Healthcare Tasy Electronic Medical Record (EMR) 3.06 allows SQ ...)
@@ -11010,7 +11010,7 @@ CVE-2021-35510
 CVE-2021-35509
 	RESERVED
 CVE-2021-35508 (NMSAccess32.exe in TeraRecon AQNetClient 4.4.13 allows attackers to ex ...)
-	TODO: check
+	NOT-FOR-US: TeraRecon AQNetClient
 CVE-2021-35507
 	RESERVED
 CVE-2021-35506
@@ -23694,9 +23694,9 @@ CVE-2021-30357 (SSL Network Extender Client for Linux before build 800008302 rev
 CVE-2021-30356 (A denial of service vulnerability was reported in Check Point Identity ...)
 	NOT-FOR-US: Check Point Identity Agent
 CVE-2021-30355 (Amazon Kindle e-reader prior to and including version 5.13.4 improperl ...)
-	TODO: check
+	NOT-FOR-US: Amazon Kindle e-reader
 CVE-2021-30354 (Amazon Kindle e-reader prior to and including version 5.13.4 contains  ...)
-	TODO: check
+	NOT-FOR-US: Amazon Kindle e-reader
 CVE-2021-30353
 	RESERVED
 CVE-2021-30352
@@ -43714,7 +43714,7 @@ CVE-2021-22031
 CVE-2021-22030
 	RESERVED
 CVE-2021-22029 (VMware Workspace ONE UEM REST API contains a denial of service vulnera ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2021-22028
 	RESERVED
 CVE-2021-22027 (The vRealize Operations Manager API (8.x prior to 8.5) contains a Serv ...)
@@ -43766,9 +43766,9 @@ CVE-2021-22005
 CVE-2021-22004
 	RESERVED
 CVE-2021-22003 (VMware Workspace ONE Access and Identity Manager, unintentionally prov ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2021-22002 (VMware Workspace ONE Access and Identity Manager, allow the /cfg web a ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2021-22001 (In UAA versions prior to 75.3.0, sensitive information like relaying s ...)
 	NOT-FOR-US: CloudFoundry
 CVE-2021-22000 (VMware Thinapp version 5.x prior to 5.2.10 contain a DLL hijacking vul ...)
@@ -107304,11 +107304,11 @@ CVE-2020-9004 (A remote authenticated authorization-bypass vulnerability in Wowz
 CVE-2020-9003 (A stored XSS vulnerability exists in the Modula Image Gallery plugin b ...)
 	NOT-FOR-US: Modula Image Gallery plugin for WordPress
 CVE-2020-9002 (An issue was discovered in iPortalis iCS 7.1.13.0. An attacker can gai ...)
-	TODO: check
+	NOT-FOR-US: iPortalis iCS
 CVE-2020-9001
 	REJECTED
 CVE-2020-9000 (An issue was discovered in iPortalis iCS 7.1.13.0. Attackers can send  ...)
-	TODO: check
+	NOT-FOR-US: iPortalis iCS
 CVE-2020-8999
 	REJECTED
 CVE-2020-8998



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b979768526ff7834587a969502774e114146b97c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b979768526ff7834587a969502774e114146b97c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210901/360b128e/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list