diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2020-08-07 14:22:51 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-08-07 14:22:51 +0200 |
| commit | c53b5a99c0b522d3c528171ef764f6e0a3556d14 (patch) | |
| tree | a6117d09662aa0aecf61041b9eb1f179ff81e60d /data | |
| parent | b93b0f51b6be96f7233d397068c49d385ba545b9 (diff) | |
Process some NFUs
Diffstat (limited to 'data')
| -rw-r--r-- | data/CVE/2017.list | 2 | ||||
| -rw-r--r-- | data/CVE/2019.list | 2 | ||||
| -rw-r--r-- | data/CVE/2020.list | 8 |
3 files changed, 6 insertions, 6 deletions
diff --git a/data/CVE/2017.list b/data/CVE/2017.list index 7bfd4554c7..8fbcd7f47e 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -2037,7 +2037,7 @@ CVE-2017-18114 CVE-2017-18113 RESERVED CVE-2017-18112 (Affected versions of Atlassian Fisheye allow remote attackers to view ...) - TODO: check + NOT-FOR-US: Atlassian CVE-2017-18111 (The OAuthHelper in Atlassian Application Links before version 5.0.10, ...) NOT-FOR-US: Atlassian Application Links CVE-2017-18110 (The administration backup restore resource in Atlassian Crowd before v ...) diff --git a/data/CVE/2019.list b/data/CVE/2019.list index 7213a7f0e6..951570ab7f 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -6042,7 +6042,7 @@ CVE-2019-18620 CVE-2019-18619 (Incorrect parameter validation in the synaTee component of Synaptics W ...) TODO: check CVE-2019-18618 (Incorrect access control in the firmware of Synaptics VFS75xx family f ...) - TODO: check + NOT-FOR-US: firmware of Synaptics VFS75xx family fingerprint sensors CVE-2019-18617 RESERVED CVE-2019-18616 diff --git a/data/CVE/2020.list b/data/CVE/2020.list index dc513da28c..26b71d1eb8 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -7958,7 +7958,7 @@ CVE-2020-13795 (An issue was discovered in Navigate CMS through 2.8.7. It allows CVE-2020-13794 RESERVED CVE-2020-13793 (Unsafe storage of AD credentials in Ivanti DSM netinst 5.1 due to a st ...) - TODO: check + NOT-FOR-US: Ivanti CVE-2020-13792 (PlayTube 1.8 allows disclosure of user details via ajax.php?type=../ad ...) NOT-FOR-US: PlayTube CVE-2020-13965 (An issue was discovered in Roundcube Webmail before 1.3.12 and 1.4.x b ...) @@ -23206,7 +23206,7 @@ CVE-2020-7363 CVE-2020-7362 RESERVED CVE-2020-7361 (The EasyCorp ZenTao Pro application suffers from an OS command injecti ...) - TODO: check + NOT-FOR-US: EasyCorp ZenTao Pro application CVE-2020-7360 RESERVED CVE-2020-7359 @@ -23214,9 +23214,9 @@ CVE-2020-7359 CVE-2020-7358 RESERVED CVE-2020-7357 (Cayin CMS suffers from an authenticated OS semi-blind command injectio ...) - TODO: check + NOT-FOR-US: Cayin CMS CVE-2020-7356 (CAYIN xPost suffers from an unauthenticated SQL Injection vulnerabilit ...) - TODO: check + NOT-FOR-US: CAYIN xPost CVE-2020-7355 (Cross-site Scripting (XSS) vulnerability in the 'notes' field of a dis ...) NOT-FOR-US: Metasploit Pro CVE-2020-7354 (Cross-site Scripting (XSS) vulnerability in the 'host' field of a disc ...) |