[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Sep 15 06:40:42 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5b090adc by Salvatore Bonaccorso at 2021-09-15T07:40:18+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8846,7 +8846,7 @@ CVE-2021-37183 (A vulnerability has been identified in SINEMA Remote Connect Ser
CVE-2021-37182
RESERVED
CVE-2021-37181 (A vulnerability has been identified in Cerberus DMS V4.0 (All versions ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2021-37180 (A vulnerability has been identified in Solid Edge SE2021 (All Versions ...)
NOT-FOR-US: Siemens
CVE-2021-37179 (A vulnerability has been identified in Solid Edge SE2021 (All Versions ...)
@@ -8854,15 +8854,15 @@ CVE-2021-37179 (A vulnerability has been identified in Solid Edge SE2021 (All Ve
CVE-2021-37178 (A vulnerability has been identified in Solid Edge SE2021 (All Versions ...)
NOT-FOR-US: Siemens
CVE-2021-37177 (A vulnerability has been identified in SINEMA Remote Connect Server (A ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2021-37176 (A vulnerability has been identified in Simcenter Femap V2020.2 (All ve ...)
NOT-FOR-US: Siemens
CVE-2021-37175 (A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versi ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2021-37174 (A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versi ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2021-37173 (A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versi ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2021-37172 (A vulnerability has been identified in SIMATIC S7-1200 CPU family (inc ...)
NOT-FOR-US: Siemens
CVE-2021-37171
@@ -21362,7 +21362,7 @@ CVE-2021-31893 (A vulnerability has been identified in SIMATIC PCS 7 V8.2 and ea
CVE-2021-31892 (A vulnerability has been identified in SINUMERIK Analyse MyCondition ( ...)
NOT-FOR-US: Siemens
CVE-2021-31891 (A vulnerability has been identified in Desigo CC (All versions with OI ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2021-31890
RESERVED
CVE-2021-31889
@@ -23950,11 +23950,11 @@ CVE-2021-30862
CVE-2021-30861
REJECTED
CVE-2021-30860 (An integer overflow was addressed with improved input validation. This ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2021-30859
REJECTED
CVE-2021-30858 (A use after free issue was addressed with improved memory management. ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2021-30857
REJECTED
CVE-2021-30856
@@ -32789,7 +32789,7 @@ CVE-2021-27393 (A vulnerability has been identified in Nucleus NET (All versions
CVE-2021-27392 (A vulnerability has been identified in Siveillance Video Open Network ...)
NOT-FOR-US: Siveillance
CVE-2021-27391 (A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2021-27390 (A vulnerability has been identified in JT2Go (All versions < V13.1. ...)
NOT-FOR-US: Siemens
CVE-2021-27389 (A vulnerability has been identified in Opcenter Quality (All versions ...)
@@ -34640,7 +34640,7 @@ CVE-2021-26610
CVE-2021-26609
RESERVED
CVE-2021-26608 (An arbitrary file download and execution vulnerability was found in th ...)
- TODO: check
+ NOT-FOR-US: handysoft
CVE-2021-26607
RESERVED
CVE-2021-26606 (A vulnerability in PKI Security Solution of Dream Security could allow ...)
@@ -34650,7 +34650,7 @@ CVE-2021-26605 (An improper input validation vulnerability in the service of ezP
CVE-2021-26604
RESERVED
CVE-2021-26603 (A heap overflow issue was found in ARK library of bandisoft Co., Ltd w ...)
- TODO: check
+ NOT-FOR-US: bandisoft
CVE-2021-26602
RESERVED
CVE-2021-26601
@@ -37249,7 +37249,7 @@ CVE-2021-25667 (A vulnerability has been identified in RUGGEDCOM RM1224 (All ver
CVE-2021-25666 (A vulnerability has been identified in SCALANCE W780 and W740 (IEEE 80 ...)
NOT-FOR-US: Siemens
CVE-2021-25665 (A vulnerability has been identified in Simcenter STAR-CCM+ Viewer (All ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2021-25664 (A vulnerability has been identified in Nucleus 4 (All versions < V4 ...)
NOT-FOR-US: Nucleus (Siemens)
CVE-2021-25663 (A vulnerability has been identified in Nucleus 4 (All versions < V4 ...)
@@ -43091,7 +43091,7 @@ CVE-2021-23048 (On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1
CVE-2021-23047 (On version 16.x before 16.1.0, 15.1.x before 15.1.3.1, 14.1.x before 1 ...)
NOT-FOR-US: F5 BIG-IP
CVE-2021-23046 (On all versions of Guided Configuration before 8.0.0, when a configura ...)
- TODO: check
+ NOT-FOR-US: F5
CVE-2021-23045 (On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, 14.1 ...)
NOT-FOR-US: F5 BIG-IP
CVE-2021-23044 (On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.3.1, 14.1.x b ...)
@@ -78261,9 +78261,9 @@ CVE-2020-21084
CVE-2020-21083
RESERVED
CVE-2020-21082 (A cross-site scripting (XSS) vulnerability in the background administr ...)
- TODO: check
+ NOT-FOR-US: Maccms
CVE-2020-21081 (A cross-site request forgery (CSRF) in Maccms 8.0 causes administrator ...)
- TODO: check
+ NOT-FOR-US: Maccms
CVE-2020-21080
RESERVED
CVE-2020-21079
@@ -79095,11 +79095,11 @@ CVE-2020-20674
CVE-2020-20673
RESERVED
CVE-2020-20672 (An arbitrary file upload vulnerability in /admin/upload/uploadfile of ...)
- TODO: check
+ NOT-FOR-US: KiteCMS
CVE-2020-20671 (A cross-site request forgery (CSRF) in KiteCMS V1.1 allows attackers t ...)
- TODO: check
+ NOT-FOR-US: KiteCMS
CVE-2020-20670 (An arbitrary file upload vulnerability in /admin/media/upload of ZKEAC ...)
- TODO: check
+ NOT-FOR-US: ZKEACMS
CVE-2020-20669
RESERVED
CVE-2020-20668
@@ -122028,7 +122028,7 @@ CVE-2019-20103
CVE-2019-20102 (The attachment-uploading feature in Atlassian Confluence Server from v ...)
NOT-FOR-US: Atlassian
CVE-2019-20101 (Affected versions of Atlassian Jira Server and Data Center allow anony ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2019-20100 (The Atlassian Application Links plugin is vulnerable to cross-site req ...)
NOT-FOR-US: Atlassian Application Links plugin
CVE-2019-20099 (The VerifyPopServerConnection!add.jspa component in Atlassian Jira Ser ...)
@@ -158375,7 +158375,7 @@ CVE-2019-10943 (A vulnerability has been identified in SIMATIC ET 200SP Open Con
CVE-2019-10942 (A vulnerability has been identified in SCALANCE X-200 switch family (i ...)
NOT-FOR-US: Siemens
CVE-2019-10941 (A vulnerability has been identified in SINEMA Server (All versions < ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2019-10940 (A vulnerability has been identified in SINEMA Server (All versions < ...)
NOT-FOR-US: Siemens
CVE-2019-10939 (A vulnerability has been identified in TIM 3V-IE (incl. SIPLUS NET var ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b090adc76ba4746c5735cbf3cd76ecb335ec456
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b090adc76ba4746c5735cbf3cd76ecb335ec456
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210915/c2b42e5c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list