[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Sep 27 21:26:33 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e50936e4 by Salvatore Bonaccorso at 2021-09-27T22:26:03+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -37,7 +37,7 @@ CVE-2021-41755
CVE-2021-41754
RESERVED
CVE-2021-41753 (A denial-of-service attack in WPA2, and WPA3-SAE authentication method ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2021-41752
RESERVED
CVE-2021-41751
@@ -2295,17 +2295,17 @@ CVE-2021-40716
CVE-2021-40715
RESERVED
CVE-2021-40714 (Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-40713 (Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-40712 (Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-40711 (Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-40710
RESERVED
CVE-2021-40709 (Adobe Photoshop versions 21.2.11 (and earlier) and 22.5 (and earlier) ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-40708
RESERVED
CVE-2021-40707
@@ -2317,13 +2317,13 @@ CVE-2021-40705
CVE-2021-40704
RESERVED
CVE-2021-40703 (Adobe Premiere Elements version 2021.2235820 (and earlier) is affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-40702 (Adobe Premiere Elements version 2021.2235820 (and earlier) is affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-40701 (Adobe Premiere Elements version 2021.2235820 (and earlier) is affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-40700 (Adobe Premiere Elements version 2021.2235820 (and earlier) is affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-40699
RESERVED
CVE-2021-40698
@@ -3746,19 +3746,19 @@ CVE-2021-40111
CVE-2021-40110
RESERVED
CVE-2021-40109 (A SSRF issue was discovered in Concrete CMS through 8.5.5. Users can a ...)
- TODO: check
+ NOT-FOR-US: Concrete CMS
CVE-2021-40108 (An issue was discovered in Concrete CMS through 8.5.5. The Calendar is ...)
- TODO: check
+ NOT-FOR-US: Concrete CMS
CVE-2021-40107
RESERVED
CVE-2021-40106 (An issue was discovered in Concrete CMS through 8.5.5. There is unauth ...)
- TODO: check
+ NOT-FOR-US: Concrete CMS
CVE-2021-40105 (An issue was discovered in Concrete CMS through 8.5.5. There is XSS vi ...)
- TODO: check
+ NOT-FOR-US: Concrete CMS
CVE-2021-40104 (An issue was discovered in Concrete CMS through 8.5.5. There is an SVG ...)
- TODO: check
+ NOT-FOR-US: Concrete CMS
CVE-2021-40103 (An issue was discovered in Concrete CMS through 8.5.5. Path Traversal ...)
- TODO: check
+ NOT-FOR-US: Concrete CMS
CVE-2021-40102 (An issue was discovered in Concrete CMS through 8.5.5. Arbitrary File ...)
NOT-FOR-US: Concrete CMS
CVE-2021-40101
@@ -3768,9 +3768,9 @@ CVE-2021-40100 (An issue was discovered in Concrete CMS through 8.5.5. Stored XS
CVE-2021-40099 (An issue was discovered in Concrete CMS through 8.5.5. Fetching the up ...)
NOT-FOR-US: Concrete CMS
CVE-2021-40098 (An issue was discovered in Concrete CMS through 8.5.5. Path Traversal ...)
- TODO: check
+ NOT-FOR-US: Concrete CMS
CVE-2021-40097 (An issue was discovered in Concrete CMS through 8.5.5. Authenticated p ...)
- TODO: check
+ NOT-FOR-US: Concrete CMS
CVE-2021-40096
RESERVED
CVE-2021-40095
@@ -4327,17 +4327,17 @@ CVE-2021-39830
CVE-2021-39829
RESERVED
CVE-2021-39828 (Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by a p ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-39827 (Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-39826 (Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-39825 (Photoshop Elements versions 2021 build 19.0 (20210304.m.156367) (and e ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-39824 (Adobe Premiere Elements version 2021.2235820 (and earlier) is affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-39823 (Adobe svg-native-viewer 8182d14dfad5d1e10f53ed830328d7d9a3cfa96d and e ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-39822
RESERVED
CVE-2021-39821
@@ -4345,9 +4345,9 @@ CVE-2021-39821
CVE-2021-39820
RESERVED
CVE-2021-39819 (Adobe InCopy version 11.1 (and earlier) is affected by a memory corrup ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-39818 (Adobe InCopy version 11.1 (and earlier) is affected by a memory corrup ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-39817 (Adobe Bridge version 11.1 (and earlier) is affected by a memory corrup ...)
NOT-FOR-US: Adobe
CVE-2021-39816 (Adobe Bridge version 11.1 (and earlier) is affected by a memory corrup ...)
@@ -9279,7 +9279,7 @@ CVE-2021-37763
CVE-2021-37762
RESERVED
CVE-2021-37761 (Zoho ManageEngine ADManager Plus version 7110 and prior is vulnerable ...)
- TODO: check
+ NOT-FOR-US: Zoho ManageEngine
CVE-2021-37760 (A Session ID leak in the audit log in Graylog before 4.1.2 allows atta ...)
- graylog2 <itp> (bug #652273)
CVE-2021-37759 (A Session ID leak in the DEBUG log file in Graylog before 4.1.2 allows ...)
@@ -9792,7 +9792,7 @@ CVE-2021-37541 (In JetBrains Hub before 2021.1.13402, HTML injection in the pass
CVE-2021-37540 (In JetBrains Hub before 2021.1.13262, a potentially insufficient CSP f ...)
NOT-FOR-US: JetBrains
CVE-2021-37539 (Zoho ManageEngine ADManager Plus before 7111 is vulnerable to unrestri ...)
- TODO: check
+ NOT-FOR-US: Zoho ManageEngine
CVE-2021-3666 (body-parser-xml is vulnerable to Improperly Controlled Modification of ...)
NOT-FOR-US: Node body-parser-xml
CVE-2021-37576 (arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on t ...)
@@ -11222,19 +11222,19 @@ CVE-2021-36882
CVE-2021-36881
RESERVED
CVE-2021-36880 (Unauthenticated SQL Injection (SQLi) vulnerability in WordPress uListi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36879 (Unauthenticated Privilege Escalation vulnerability in WordPress uListi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36878 (Cross-Site Request Forgery (CSRF) vulnerability in WordPress uListing ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36877 (Cross-Site Request Forgery (CSRF) vulnerability in WordPress uListing ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36876 (Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in WordPres ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36875 (Authenticated Reflected Cross-Site Scripting (XSS) vulnerability in Wo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36874 (Authenticated Insecure Direct Object References (IDOR) vulnerability i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36873 (Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in W ...)
NOT-FOR-US: WordPress plugin
CVE-2021-36872 (Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in W ...)
@@ -11292,7 +11292,7 @@ CVE-2021-36847
CVE-2021-36846
RESERVED
CVE-2021-36845 (Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabiliti ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36844
RESERVED
CVE-2021-36843
@@ -11300,7 +11300,7 @@ CVE-2021-36843
CVE-2021-36842
RESERVED
CVE-2021-36841 (Authenticated Stored Cross-Site Scripting (XSS) vulnerability in YITH ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-36840
RESERVED
CVE-2021-36839
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e50936e4bd5da54d042944a7123dd68bada3d31a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e50936e4bd5da54d042944a7123dd68bada3d31a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210927/42a3f39b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list