diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2020-02-18 21:19:29 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-02-18 21:33:22 +0100 |
| commit | 2aaa52e627ea7da33f58e9acc669d26172397d88 (patch) | |
| tree | 31a639b80d6ac0b2f83cacbcba92375764572841 /data/CVE/2013.list | |
| parent | 1eeb4a2bb1ab2175e4eca42b8823f9e11e209354 (diff) | |
Process NFUs
Diffstat (limited to 'data/CVE/2013.list')
| -rw-r--r-- | data/CVE/2013.list | 36 |
1 files changed, 18 insertions, 18 deletions
diff --git a/data/CVE/2013.list b/data/CVE/2013.list index 7e379a9ac2..9b34b47232 100644 --- a/data/CVE/2013.list +++ b/data/CVE/2013.list @@ -663,9 +663,9 @@ CVE-2013-7290 (The do_item_get function in items.c in memcached 1.4.4 and other CVE-2013-7289 (Multiple cross-site scripting (XSS) vulnerabilities in register.php in ...) NOT-FOR-US: Andy's PHP Knowledgebase (Aphpkb) CVE-2013-7287 (MobileIron VSP < 5.9.1 and Sentry < 5.0 has an insecure encrypti ...) - TODO: check + NOT-FOR-US: MobileIron CVE-2013-7286 (MobileIron VSP < 5.9.1 and Sentry < 5.0 has a weak password obfu ...) - TODO: check + NOT-FOR-US: MobileIron CVE-2013-7283 (Race condition in the libreswan.spec files for Red Hat Enterprise Linu ...) - libreswan <not-affected> (Fixed before initial upload in Debian; /tmp-race in libreswan.spec for rpm based systems) CVE-2013-7282 (The management web interface on the Nisuta NS-WIR150NE router with fir ...) @@ -923,7 +923,7 @@ CVE-2013-7175 (Multiple SQL injection vulnerabilities in Avanset Visual CertExam CVE-2013-7174 (Absolute path traversal vulnerability in cgi-bin/jc.cgi in QNAP QTS be ...) NOT-FOR-US: QNAP QTS CVE-2013-7173 (Belkin n750 routers have a buffer overflow. ...) - TODO: check + NOT-FOR-US: Belkin CVE-2013-7172 (Slackware 13.1, 13.37, 14.0 and 14.1 contain world-writable permission ...) - libiodbc2 <not-affected> (RPATH issue slackware specific) CVE-2013-7171 (Slackware 14.0 and 14.1, and Slackware LLVM 3.0-i486-2 and 3.3-i486-2, ...) @@ -1659,7 +1659,7 @@ CVE-2013-6929 (SQL injection vulnerability in Cybozu Garoon 3.7 SP2 and earlier CVE-2013-6928 RESERVED CVE-2013-6927 (Internet TRiLOGI Server (unknown versions) could allow a local user to ...) - TODO: check + NOT-FOR-US: Internet TRiLOGI Server CVE-2013-6926 (The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 all ...) NOT-FOR-US: Siemens CVE-2013-6925 (The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 all ...) @@ -2198,7 +2198,7 @@ CVE-2013-6683 (The IPv6 implementation in Cisco NX-OS does not properly handle n CVE-2013-6682 (The phone-proxy implementation in Cisco Adaptive Security Appliance (A ...) NOT-FOR-US: Cisco Adaptive Security Appliance CVE-2013-6681 (Tube Map Live Underground for Android before 3.0.22 has an Information ...) - TODO: check + NOT-FOR-US: Tube Map Live Underground for Android CVE-2013-6680 REJECTED CVE-2013-6679 @@ -3246,11 +3246,11 @@ CVE-2013-6367 (The apic_get_tmcct function in arch/x86/kvm/lapic.c in the KVM su CVE-2013-6363 RESERVED CVE-2013-6362 (Xerox ColorCube and WorkCenter devices in 2013 had hardcoded FTP and s ...) - TODO: check + NOT-FOR-US: Xerox CVE-2013-6361 RESERVED CVE-2013-6360 (TRENDnet TS-S402 has a backdoor to enable TELNET. ...) - TODO: check + NOT-FOR-US: TRENDnet CVE-2013-6359 (Munin::Master::Node in Munin before 2.0.18 allows remote attackers to ...) {DSA-2815-1 DLA-20-1} - munin 2.0.18-1 @@ -3413,7 +3413,7 @@ CVE-2013-6297 CVE-2013-6296 RESERVED CVE-2013-6295 (PrestaShop 1.5.5 vulnerable to privilege escalation via a Salesman acc ...) - TODO: check + NOT-FOR-US: PrestaShop CVE-2013-6294 RESERVED CVE-2013-6293 @@ -3449,7 +3449,7 @@ CVE-2013-6279 CVE-2013-6278 RESERVED CVE-2013-6277 (QNAP VioCard 300 has hardcoded RSA private keys. ...) - TODO: check + NOT-FOR-US: QNAP CVE-2013-6276 RESERVED CVE-2013-6274 @@ -4823,7 +4823,7 @@ CVE-2013-5691 (The (1) IPv6 and (2) ATM ioctl request handlers in the kernel in CVE-2013-5690 (Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange Ap ...) NOT-FOR-US: Open-Xchange CVE-2013-5687 (RiskNet Acquirer before hotfix 6.0 b7+ADHOC-443 ApplicationServiceBean ...) - TODO: check + NOT-FOR-US: RiskNet Acquirer CVE-2013-5686 RESERVED CVE-2013-5685 @@ -6868,9 +6868,9 @@ CVE-2013-4794 CVE-2013-4793 (The update function in umbraco.webservices/templates/templateService.c ...) NOT-FOR-US: Umbraco CVE-2013-4792 (PrestaShop before 1.4.11 allows logout CSRF. ...) - TODO: check + NOT-FOR-US: PrestaShop CVE-2013-4791 (PrestaShop before 1.4.11 allows Logistician, translators and other low ...) - TODO: check + NOT-FOR-US: PrestaShop CVE-2013-4790 (Open-Xchange AppSuite before 7.0.2 rev14, 7.2.0 before rev11, 7.2.1 be ...) NOT-FOR-US: Open-Xchange CVE-2013-4789 (SQL injection vulnerability in modules/rss/rss.php in Cotonti before 0 ...) @@ -9445,7 +9445,7 @@ CVE-2013-3944 (Stack-based buffer overflow in the MrSID plugin (MrSID.dll) befor CVE-2013-3943 (Cross-site scripting (XSS) vulnerability in DotNetNuke (DNN) before 6. ...) NOT-FOR-US: DotNetNukeDot CVE-2013-3942 (Potplayer prior to 1.5.39659: DLL Loading Arbitrary Code Execution Vul ...) - TODO: check + NOT-FOR-US: Potplayer CVE-2013-3941 (Xjp2.dll in XnView before 2.13 allows remote attackers to execute arbi ...) NOT-FOR-US: XnView CVE-2013-3940 (Integer overflow in the Graphics Device Interface (GDI) in Microsoft W ...) @@ -10836,7 +10836,7 @@ CVE-2013-3325 (Adobe Flash Player before 10.3.183.86 and 11.x before 11.7.700.20 CVE-2013-3324 (Adobe Flash Player before 10.3.183.86 and 11.x before 11.7.700.202 on ...) NOT-FOR-US: Adobe Flash Player CVE-2013-3323 (A Privilege Escalation Vulnerability exists in IBM Maximo Asset Manage ...) - TODO: check + NOT-FOR-US: IBM CVE-2013-3322 (NetApp OnCommand System Manager 2.1 and earlier allows remote attacker ...) NOT-FOR-US: NetApp OnCommand System Manager CVE-2013-3321 (NetApp OnCommand System Manager 2.1 and earlier allows remote attacker ...) @@ -12406,7 +12406,7 @@ CVE-2013-2681 (Cisco Linksys E4200 1.0.05 Build 7 devices contain a Security Byp CVE-2013-2680 (Cisco Linksys E4200 1.0.05 Build 7 devices store passwords in cleartex ...) NOT-FOR-US: Cisco CVE-2013-2679 (Multiple cross-site scripting (XSS) vulnerabilities in Cisco Linksys E ...) - TODO: check + NOT-FOR-US: Cisco CVE-2013-2678 (Cisco Linksys E4200 1.0.05 Build 7 routers contain a Local File Includ ...) NOT-FOR-US: Cisco CVE-2013-2677 @@ -16444,7 +16444,7 @@ CVE-2013-1412 (DataLife Engine (DLE) 9.7 allows remote attackers to execute arbi CVE-2013-1411 RESERVED CVE-2013-1410 (Perforce P4web 2011.1 and 2012.1 has multiple XSS vulnerabilities ...) - TODO: check + NOT-FOR-US: Perforce CVE-2013-1409 (Cross-site scripting (XSS) vulnerability in the CommentLuv plugin befo ...) NOT-FOR-US: CommentLuv plugin for Wordpress CVE-2013-1408 (Multiple SQL injection vulnerabilities in the Wysija Newsletters plugi ...) @@ -16462,9 +16462,9 @@ CVE-2013-1403 CVE-2013-1402 (DigiLIBE 3.4 and possibly other versions sends a redirect but does not ...) NOT-FOR-US: DigiLIBE CVE-2013-1401 (Multiple security bypass vulnerabilities in the editAnswer, deleteAnsw ...) - TODO: check + NOT-FOR-US: WordPress Poll Plugin for WordPress CVE-2013-1400 (Multiple SQL injection vulnerabilities in CWPPoll.js in WordPress Poll ...) - TODO: check + NOT-FOR-US: WordPress Poll Plugin for WordPress CVE-2013-0243 (haskell-tls-extra before 0.6.1 has Basic Constraints attribute vulnera ...) - haskell-tls-extra 0.4.6.1-1 (bug #698545) CVE-2013-1399 (Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) ...) |