[Git][security-tracker-team/security-tracker][master] Process some NFUs
Neil Williams (@codehelp)
codehelp at debian.org
Fri Mar 11 13:34:17 GMT 2022
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
086d0a79 by Neil Williams at 2022-03-11T13:33:49+00:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -54344,7 +54344,7 @@ CVE-2021-3533 (A flaw was found in Ansible if an ansible user sets ANSIBLE_ASYNC
CVE-2021-32026
RESERVED
CVE-2021-32025 (An elevation of privilege vulnerability in the QNX Neutrino Kernel of ...)
- TODO: check
+ NOT-FOR-US: QNX
CVE-2021-32024 (A remote code execution vulnerability in the BMP image codec of BlackB ...)
NOT-FOR-US: BlackBerry
CVE-2021-32023 (An elevation of privilege vulnerability in the message broker of Black ...)
@@ -54400,9 +54400,9 @@ CVE-2021-32008 (This issue affects: Secomea GateManager Version 9.6.621421014 an
CVE-2021-32007
RESERVED
CVE-2021-32006 (This issue affects: Secomea GateManager Version 9.6.621421014 and all ...)
- TODO: check
+ NOT-FOR-US: Secomea GateManager
CVE-2021-32005 (Cross-site Scripting (XSS) vulnerability in log view of Secomea SiteMa ...)
- TODO: check
+ NOT-FOR-US: Secomea SiteManager
CVE-2021-32004 (This issue affects: Secomea GateManager All versions prior to 9.6. Imp ...)
NOT-FOR-US: Secomea GateManager
CVE-2021-32003 (Unprotected Transport of Credentials vulnerability in SiteManager prov ...)
@@ -63752,7 +63752,7 @@ CVE-2021-28490 (In OWASP CSRFGuard through 3.1.0, CSRF can occur because the CSR
CVE-2021-28489
RESERVED
CVE-2021-28488 (Ericsson Network Manager 20.2 has Insecure Permissions. ...)
- TODO: check
+ NOT-FOR-US: Ericsson
CVE-2021-28487
RESERVED
CVE-2021-28486
@@ -77503,7 +77503,7 @@ CVE-2021-22785 (A CWE-200: Information Exposure vulnerability exists that could
CVE-2021-22784 (A CWE-306: Missing Authentication for Critical Function vulnerability ...)
NOT-FOR-US: Schneider Electric
CVE-2021-22783 (A CWE-200: Information Exposure vulnerability exists which could allow ...)
- TODO: check
+ NOT-FOR-US: Schneider Electric
CVE-2021-22782 (Missing Encryption of Sensitive Data vulnerability exists in EcoStruxu ...)
NOT-FOR-US: Schneider Electric
CVE-2021-22781 (Insufficiently Protected Credentials vulnerability exists in EcoStruxu ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/086d0a7941d7810f26dcbc6f0dc6da957c6b0014
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/086d0a7941d7810f26dcbc6f0dc6da957c6b0014
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220311/455d78b6/attachment.htm>
More information about the debian-security-tracker-commits
mailing list