From 055a431231bd66eca75aa3c4c41759ffb6176ef0 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Wed, 28 Oct 2020 10:10:10 +0100 Subject: Process some NFUs --- data/CVE/2020.list | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/data/CVE/2020.list b/data/CVE/2020.list index a0bcfc7d17..2f80785061 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -23,7 +23,7 @@ CVE-2020-27958 CVE-2020-27957 (The RandomGameUnit extension for MediaWiki through 1.35 was not proper ...) TODO: check CVE-2020-27956 (An Arbitrary File Upload in the Upload Image component in SourceCodest ...) - TODO: check + NOT-FOR-US: SourceCodester Car Rental Management System CVE-2020-27955 RESERVED CVE-2020-27954 @@ -151,11 +151,11 @@ CVE-2020-27894 CVE-2020-27893 RESERVED CVE-2020-27892 (The Zigbee protocol implementation on Texas Instruments CC2538 devices ...) - TODO: check + NOT-FOR-US: Texas Instruments CC2538 devices CVE-2020-27891 (The Zigbee protocol implementation on Texas Instruments CC2538 devices ...) - TODO: check + NOT-FOR-US: Texas Instruments CC2538 devices CVE-2020-27890 (The Zigbee protocol implementation on Texas Instruments CC2538 devices ...) - TODO: check + NOT-FOR-US: Texas Instruments CC2538 devices CVE-2020-27889 RESERVED CVE-2020-27888 (An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC- ...) @@ -1668,11 +1668,11 @@ CVE-2020-27162 CVE-2020-27161 RESERVED CVE-2020-27160 (Addressed remote code execution vulnerability in AvailableApps.php tha ...) - TODO: check + NOT-FOR-US: Western Digital My Cloud NAS devices CVE-2020-27159 (Addressed remote code execution vulnerability in DsdkProxy.php due to ...) - TODO: check + NOT-FOR-US: Western Digital My Cloud NAS devices CVE-2020-27158 (Addressed remote code execution vulnerability in cgi_api.php that allo ...) - TODO: check + NOT-FOR-US: Western Digital My Cloud NAS devices CVE-2020-27157 (Veritas APTARE versions prior to 10.5 included code that bypassed the ...) NOT-FOR-US: Veritas CVE-2020-27156 (Veritas APTARE versions prior to 10.5 did not perform adequate authori ...) @@ -4615,7 +4615,7 @@ CVE-2020-25767 CVE-2020-25766 (An issue was discovered in MISP before 2.4.132. It can perform an unwa ...) NOT-FOR-US: MISP CVE-2020-25765 (Addressed remote code execution vulnerability in reg_device.php due to ...) - TODO: check + NOT-FOR-US: Western Digital My Cloud Devices CVE-2020-25764 RESERVED CVE-2020-25763 (Seat Reservation System version 1.0 suffers from an Unauthenticated Fi ...) @@ -32600,7 +32600,7 @@ CVE-2020-12831 (** DISPUTED ** An issue was discovered in FRRouting FRR (aka Fre NOTE: https://github.com/FRRouting/frr/pull/6383 NOTE: https://github.com/FRRouting/frr/commit/7734484a378052a513c9e21165c13bf85f78ad48 CVE-2020-12830 (Addressed multiple stack buffer overflow vulnerabilities that could al ...) - TODO: check + NOT-FOR-US: Western Digital My Cloud devices CVE-2020-12829 (In QEMU through 5.0.0, an integer overflow was found in the SM501 disp ...) {DSA-4760-1} - qemu 1:5.0-12 (low; bug #961451) @@ -39867,7 +39867,7 @@ CVE-2020-9984 (An out-of-bounds read was addressed with improved input validatio CVE-2020-9983 (An out-of-bounds write issue was addressed with improved bounds checki ...) NOT-FOR-US: Safari CVE-2020-9982 (This issue was addressed with improved checks to prevent unauthorized ...) - TODO: check + NOT-FOR-US: Apple CVE-2020-9981 RESERVED CVE-2020-9980 (An out-of-bounds write issue was addressed with improved bounds checki ...) -- cgit v1.2.3