[Git][security-tracker-team/security-tracker][master] Process some NFUs
Neil Williams (@codehelp)
codehelp at debian.org
Thu May 26 09:53:55 BST 2022
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d7be4e68 by Neil Williams at 2022-05-26T09:53:24+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8365,7 +8365,7 @@ CVE-2022-26841
CVE-2022-26837
RESERVED
CVE-2022-26833 (An improper authentication vulnerability exists in the REST API functi ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26515
RESERVED
CVE-2022-26513
@@ -12986,7 +12986,7 @@ CVE-2021-46711
CVE-2021-46710
RESERVED
CVE-2022-27169 (An information disclosure vulnerability exists in the OAS Engine Secur ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-27167 (Privilege escalation vulnerability in Windows products of ESET, spol. ...)
NOT-FOR-US: ESET
CVE-2022-27166
@@ -12996,19 +12996,19 @@ CVE-2022-26511 (WPS Presentation 11.8.0.5745 insecurely load d3dx9_41.dll when o
CVE-2022-26510 (A firmware update vulnerability exists in the iburn firmware checks fu ...)
NOT-FOR-US: InHand Networks InRouter302
CVE-2022-26303 (An external config control vulnerability exists in the OAS Engine Secu ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26082 (A file write vulnerability exists in the OAS Engine SecureTransferFile ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26081 (The installer of WPS Office Version 10.8.0.5745 insecurely load shcore ...)
NOT-FOR-US: WPS Office
CVE-2022-26077 (A cleartext transmission of sensitive information vulnerability exists ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26067 (An information disclosure vulnerability exists in the OAS Engine Secur ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26043 (An external config control vulnerability exists in the OAS Engine Secu ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-26026 (A denial of service vulnerability exists in the OAS Engine SecureConfi ...)
- TODO: check
+ NOT-FOR-US: Open Automation Software
CVE-2022-25969 (The installer of WPS Office Version 10.8.0.6186 insecurely load VERSIO ...)
NOT-FOR-US: WPS Office
CVE-2022-25949 (The kernel mode driver kwatch3 of KINGSOFT Internet Security 9 Plus Ve ...)
@@ -30789,7 +30789,7 @@ CVE-2022-22129
CVE-2022-22128
RESERVED
CVE-2022-22127 (Tableau is aware of a broken access control vulnerability present in T ...)
- TODO: check
+ NOT-FOR-US: Tableau Server
CVE-2022-22126 (Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored XSS via ...)
NOT-FOR-US: Openmct
CVE-2022-22125 (In Halo, versions v1.0.0 to v1.4.17 (latest) are vulnerable to Stored ...)
@@ -32077,7 +32077,7 @@ CVE-2022-21953
CVE-2022-21952
RESERVED
CVE-2022-21951 (A Missing Encryption of Sensitive Data vulnerability in SUSE Rancher, ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2022-21950
RESERVED
CVE-2022-21949 (A Improper Restriction of XML External Entity Reference vulnerability ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d7be4e680bbce2e9eb0ebd6d7d9b1058e0d2b781
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d7be4e680bbce2e9eb0ebd6d7d9b1058e0d2b781
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220526/49244eda/attachment.htm>
More information about the debian-security-tracker-commits
mailing list