diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-11 10:54:20 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-11 10:54:42 +0200 |
| commit | b877ba972258bdb58933c706e4d384196dc6a960 (patch) | |
| tree | 1cd39a2b44aeb05f0b79acfbb5b2b2c224b4f6bb | |
| parent | 068d6c582d2bfbcad43811a66e8094237544391b (diff) | |
Process some more NFUs
| -rw-r--r-- | data/CVE/list | 60 |
1 files changed, 30 insertions, 30 deletions
diff --git a/data/CVE/list b/data/CVE/list index 969990c6c1..40c817a26f 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -12626,7 +12626,7 @@ CVE-2021-3652 [CRYPT password hash with asterisk allows any bind attempt to succ NOTE: https://github.com/389ds/389-ds-base/commit/aeb90eb0c41fc48541d983f323c627b2e6c328c7 (master) NOTE: https://github.com/389ds/389-ds-base/commit/c1926dfc6591b55c4d33f9944de4d7ebe077e964 (1.4.4.x) CVE-2021-36767 (In Digi RealPort through 4.8.488.0, authentication relies on a challen ...) - TODO: check + NOT-FOR-US: Digi RealPort CVE-2021-36766 (Concrete5 through 8.5.5 deserializes Untrusted Data. The vulnerable co ...) NOT-FOR-US: Concrete5 CVE-2021-36765 (In CODESYS EtherNetIP before 4.1.0.0, specific EtherNet/IP requests ma ...) @@ -14523,11 +14523,11 @@ CVE-2021-35981 (Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.00 CVE-2021-35980 RESERVED CVE-2021-35979 (An issue was discovered in Digi RealPort through 4.8.488.0. The 'encry ...) - TODO: check + NOT-FOR-US: Digi RealPort CVE-2021-35978 RESERVED CVE-2021-35977 (An issue was discovered in Digi RealPort for Windows through 4.8.488.0 ...) - TODO: check + NOT-FOR-US: Digi RealPort CVE-2021-35976 (The feature to preview a website in Plesk Obsidian 18.0.0 through 18.0 ...) NOT-FOR-US: Plesk Obsidian CVE-2021-35975 @@ -19968,7 +19968,7 @@ CVE-2021-33605 (Improper check in CheckboxGroup in com.vaadin:vaadin-checkbox-fl CVE-2021-33604 (URL encoding error in development mode handler in com.vaadin:flow-serv ...) NOT-FOR-US: com.vaadin:flow-server CVE-2021-33603 (A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atl ...) - TODO: check + NOT-FOR-US: F-Secure CVE-2021-33602 (A vulnerability affecting the F-Secure Antivirus engine was discovered ...) NOT-FOR-US: F-Secure CVE-2021-33601 (A vulnerability was discovered in the web user interface of F-Secure I ...) @@ -34048,7 +34048,7 @@ CVE-2021-28131 (Impala sessions use a 16 byte secret to verify that the session CVE-2021-28130 (Dr.Web Firewall 12.5.2.4160 on Windows incorrectly restricts applicati ...) NOT-FOR-US: Dr.Web Firewall CVE-2021-28129 (While working on Apache OpenOffice 4.1.8 a developer discovered that t ...) - TODO: check + NOT-FOR-US: Apache OpenOffice CVE-2021-28128 (In Strapi through 3.6.0, the admin panel allows the changing of one's ...) NOT-FOR-US: Strapi CVE-2021-28127 (An issue was discovered in Stormshield SNS through 4.2.1. A brute-forc ...) @@ -39343,7 +39343,7 @@ CVE-2021-25968 CVE-2021-25967 RESERVED CVE-2021-25966 (In “Orchard core CMS” application, versions 1.0.0-beta1-33 ...) - TODO: check + NOT-FOR-US: Orchard CMS CVE-2021-25965 RESERVED CVE-2021-25964 (In “Calibre-web” application, v0.6.0 to v0.6.12, are vulne ...) @@ -40650,55 +40650,55 @@ CVE-2021-25493 (Lack of boundary checking of a buffer in libSPenBase library of CVE-2021-25492 (Lack of boundary checking of a buffer in libSPenBase library of Samsun ...) NOT-FOR-US: Samsung CVE-2021-25491 (A vulnerability in mfc driver prior to SMR Oct-2021 Release 1 allows m ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25490 (A keyblob downgrade attack in keymaster prior to SMR Oct-2021 Release ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25489 (Assuming radio permission is gained, missing input validation in modem ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25488 (Lack of boundary checking of a buffer in recv_data() of modem interfac ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25487 (Lack of boundary checking of a buffer in set_skb_priv() of modem inter ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25486 (Exposure of information vulnerability in ipcdump prior to SMR Oct-2021 ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25485 (Path traversal vulnerability in FactoryAirCommnadManger prior to SMR O ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25484 (Improper authentication in InputManagerService prior to SMR Oct-2021 R ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25483 (Lack of boundary checking of a buffer in livfivextractor library prior ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25482 (SQL injection vulnerabilities in CMFA framework prior to SMR Oct-2021 ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25481 (An improper error handling in Exynos CP booting driver prior to SMR Oc ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25480 (A lack of replay attack protection in GUTI REALLOCATION COMMAND messag ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25479 (A possible heap-based buffer overflow vulnerability in Exynos CP Chips ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25478 (A possible stack-based buffer overflow vulnerability in Exynos CP Chip ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25477 (An improper error handling in Mediatek RRC Protocol stack prior to SMR ...) NOT-FOR-US: Mediatek CVE-2021-25476 (An information disclosure vulnerability in Widevine TA log prior to SM ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25475 (A possible heap-based buffer overflow vulnerability in DSP kernel driv ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25474 (Assuming a shell privilege is gained, an improper exception handling f ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25473 (Assuming a shell privilege is gained, an improper exception handling f ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25472 (An improper access control vulnerability in BluetoothSettingsProvider ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25471 (A lack of replay attack protection in Security Mode Command process pr ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25470 (An improper caller check logic of SMC call in TEEGRIS secure OS prior ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25469 (A possible stack-based buffer overflow vulnerability in Widevine trust ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25468 (A possible guessing and confirming a byte memory vulnerability in Wide ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25467 (Assuming system privilege is gained, possible buffer overflow vulnerab ...) - TODO: check + NOT-FOR-US: Samsung CVE-2021-25466 (Improper scheme check vulnerability in Samsung Internet prior to versi ...) NOT-FOR-US: Samsung CVE-2021-25465 (An improper scheme check vulnerability in Samsung Themes prior to vers ...) |