diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2021-11-13 21:20:05 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-11-13 21:20:05 +0100 |
| commit | e0efefab6cf55c0535cfdfa43ae56c45593c7fdc (patch) | |
| tree | 29cc899550af5c3e2020f77b13bf0f1bf4078b1b | |
| parent | 64a34d4bdfe7fd073c33c0a190d36328c823507b (diff) | |
Process some NFUs
| -rw-r--r-- | data/CVE/list.2020 | 2 | ||||
| -rw-r--r-- | data/CVE/list.2021 | 16 |
2 files changed, 9 insertions, 9 deletions
diff --git a/data/CVE/list.2020 b/data/CVE/list.2020 index 20e3c614c8..14f4d62669 100644 --- a/data/CVE/list.2020 +++ b/data/CVE/list.2020 @@ -23247,7 +23247,7 @@ CVE-2020-21143 CVE-2020-21142 (Cross Site Scripting (XSS) vulnerabilty in IPFire 2.23 via the IPfire ...) NOT-FOR-US: IPFire CVE-2020-21141 (iCMS v7.0.15 was discovered to contain a Cross-Site Request Forgery (C ...) - TODO: check + NOT-FOR-US: iCMS CVE-2020-21140 RESERVED CVE-2020-21139 (EC Cloud E-Commerce System v1.3 was discovered to contain a Cross-Site ...) diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 00da21e099..4cd6f504dc 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -255,7 +255,7 @@ CVE-2021-43522 CVE-2021-3939 RESERVED CVE-2021-3938 (snipe-it is vulnerable to Improper Neutralization of Input During Web ...) - TODO: check + NOT-FOR-US: snipe-it CVE-2021-3937 RESERVED CVE-2021-3936 @@ -522,7 +522,7 @@ CVE-2021-43402 CVE-2021-43401 RESERVED CVE-2021-3931 (snipe-it is vulnerable to Cross-Site Request Forgery (CSRF) ...) - TODO: check + NOT-FOR-US: snipe-it CVE-2021-3930 [off-by-one error in mode_sense_page() in hw/scsi/scsi-disk.c] RESERVED - qemu <unfixed> @@ -975,7 +975,7 @@ CVE-2021-43205 CVE-2021-43204 RESERVED CVE-2021-3921 (firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF) ...) - TODO: check + NOT-FOR-US: firefly-iii CVE-2021-3920 RESERVED CVE-2021-3919 @@ -1241,7 +1241,7 @@ CVE-2021-43082 (Buffer Copy without Checking Size of Input ('Classic Buffer Over NOTE: CVE description is wrong, this doesn't affect 8.1, only 9.x/master: NOTE: Introduced with https://github.com/apache/trafficserver/commit/5e2385b666b4176be0f64fbadfbfae42094db396 (9.1.0-rc0) CVE-2021-3915 (bookstack is vulnerable to Unrestricted Upload of File with Dangerous ...) - TODO: check + NOT-FOR-US: bookstack CVE-2021-43081 RESERVED CVE-2021-43080 @@ -4534,7 +4534,7 @@ CVE-2021-41655 CVE-2021-41654 RESERVED CVE-2021-41653 (The PING function on the TP-Link TL-WR840N EU v5 router with firmware ...) - TODO: check + NOT-FOR-US: TP-Link CVE-2021-41652 RESERVED CVE-2021-41651 (A blind SQL injection vulnerability exists in the Raymart DG / Ahmed H ...) @@ -7158,9 +7158,9 @@ CVE-2021-40526 (Incorrect calculation of buffer size vulnerability in Peleton TT CVE-2021-40525 RESERVED CVE-2021-3776 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...) - TODO: check + NOT-FOR-US: showdoc CVE-2021-3775 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...) - TODO: check + NOT-FOR-US: showdoc CVE-2021-3774 (Meross Smart Wi-Fi 2 Way Wall Switch (MSS550X), on its 3.1.3 version a ...) NOT-FOR-US: Meross Smart Wi-Fi 2 Way Wall Switch CVE-2021-3773 @@ -12979,7 +12979,7 @@ CVE-2021-3685 CVE-2021-3684 RESERVED CVE-2021-3683 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...) - TODO: check + NOT-FOR-US: showdoc CVE-2021-38113 (In addBouquet in js/bqe.js in OpenWebif (aka e2openplugin-OpenWebif) t ...) NOT-FOR-US: OpenWebif (aka e2openplugin-OpenWebif) CVE-2021-38112 (In the Amazon AWS WorkSpaces client 3.0.10 through 3.1.8 on Windows, a ...) |