Process NFUs

author: Salvatore Bonaccorso <carnil@debian.org> 2021-11-02 09:13:52 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-11-02 09:13:52 +0100
commit: 44e500731a8cf146d7afabb223e930ab14c58b4c (patch)
tree: 743d732a44acf6dfda2a75b6ed3e3272025bc583
parent: e2af71d5062a4d948530ffa069e4bf64effa2dfe (diff)
1 files changed, 12 insertions, 12 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index 44c9430650..03fb46d5c6 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -297,7 +297,7 @@ CVE-2021-43060
 CVE-2021-43059
 	RESERVED
 CVE-2021-43058 (An open redirect vulnerability exists in Replicated Classic versions p ...)
-	TODO: check
+	NOT-FOR-US: Replicated
 CVE-2021-3914
 	RESERVED
 CVE-2021-43057 (An issue was discovered in the Linux kernel before 5.14.8. A use-after ...)
@@ -4202,7 +4202,7 @@ CVE-2021-41312
 CVE-2021-41311
 	RESERVED
 CVE-2021-41310 (Affected versions of Atlassian Jira Server and Data Center allow anony ...)
-	TODO: check
+	NOT-FOR-US: Atlassian
 CVE-2021-41309
 	RESERVED
 CVE-2021-41308 (Affected versions of Atlassian Jira Server and Data Center allow authe ...)
@@ -4480,7 +4480,7 @@ CVE-2021-41189 (DSpace is an open source turnkey repository application. In vers
 CVE-2021-41188 (Shopware is open source e-commerce software. Versions prior to 5.7.6 c ...)
 	NOT-FOR-US: Shopware
 CVE-2021-41187 (DHIS 2 is an information system for data capture, management, validati ...)
-	TODO: check
+	NOT-FOR-US: DHIS
 CVE-2021-41186 (Fluentd collects events from various data sources and writes them to f ...)
 	- fluentd <itp> (bug #926692)
 CVE-2021-41185 (Mycodo is an environmental monitoring and regulation system. An exploi ...)
@@ -8758,7 +8758,7 @@ CVE-2021-39348 (The LearnPress WordPress plugin is vulnerable to Stored Cross-Si
 CVE-2021-39347 (The Stripe for WooCommerce WordPress plugin is missing a capability ch ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-39346 (The Google Maps Easy WordPress plugin is vulnerable to Stored Cross-Si ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-39345 (The HAL WordPress plugin is vulnerable to Stored Cross-Site Scripting  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-39344 (The KJM Admin Notices WordPress plugin is vulnerable to Stored Cross-S ...)
@@ -8768,9 +8768,9 @@ CVE-2021-39343 (The MPL-Publisher WordPress plugin is vulnerable to Stored Cross
 CVE-2021-39342 (The Credova_Financial WordPress plugin discloses a site's associated C ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-39341 (The OptinMonster WordPress plugin is vulnerable to sensitive informati ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-39340 (The Notification WordPress plugin is vulnerable to Stored Cross-Site S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-39339 (The Telefication WordPress plugin is vulnerable to Open Proxy and Serv ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-39338 (The MyBB Cross-Poster WordPress plugin is vulnerable to Stored Cross-S ...)
@@ -8784,7 +8784,7 @@ CVE-2021-39335 (The WpGenius Job Listing WordPress plugin is vulnerable to Store
 CVE-2021-39334 (The Job Board Vanila WordPress plugin is vulnerable to Stored Cross-Si ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-39333 (The Hashthemes Demo Importer Plugin &lt;= 1.1.1 for WordPress containe ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-39332 (The Business Manager WordPress plugin is vulnerable to Stored Cross-Si ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-39331
@@ -11198,7 +11198,7 @@ CVE-2021-38358 (The MoolaMojo WordPress plugin is vulnerable to Reflected Cross-
 CVE-2021-38357 (The SMS OVH WordPress plugin is vulnerable to Reflected Cross-Site Scr ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-38356 (The NextScripts: Social Networks Auto-Poster &lt;= 4.3.20 WordPress pl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-38355 (The Bug Library WordPress plugin is vulnerable to Reflected Cross-Site ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-38354 (The GNU-Mailman Integration WordPress plugin is vulnerable to Reflecte ...)
@@ -22136,7 +22136,7 @@ CVE-2021-33595 (A address bar spoofing vulnerability was discovered in Safe Brow
 CVE-2021-33594 (An address bar spoofing vulnerability was discovered in Safe Browser f ...)
 	NOT-FOR-US: Safe Browser for Android
 CVE-2021-33593 (Whale browser for iOS before 1.14.0 has an inconsistent user interface ...)
-	TODO: check
+	NOT-FOR-US: Whale browser for iOS
 CVE-2021-33592 (NAVER Toolbar before 4.0.30.323 allows remote attackers to execute arb ...)
 	NOT-FOR-US: NAVER Toolbar
 CVE-2021-33591 (An exposed remote debugging port in Naver Comic Viewer prior to 1.0.15 ...)
@@ -26544,9 +26544,9 @@ CVE-2021-31851
 CVE-2021-31850
 	RESERVED
 CVE-2021-31849 (SQL injection vulnerability in McAfee Data Loss Prevention (DLP) ePO e ...)
-	TODO: check
+	NOT-FOR-US: McAfee
 CVE-2021-31848 (Cross site scripting (XSS) vulnerability in McAfee Data Loss Preventio ...)
-	TODO: check
+	NOT-FOR-US: McAfee
 CVE-2021-31847 (Improper access control vulnerability in the repair process for McAfee ...)
 	NOT-FOR-US: McAfee
 CVE-2021-31846
@@ -54859,7 +54859,7 @@ CVE-2021-20138
 CVE-2021-20137
 	RESERVED
 CVE-2021-20136 (ManageEngine Log360 Builds &lt; 5235 are affected by an improper acces ...)
-	TODO: check
+	NOT-FOR-US: ManageEngine
 CVE-2021-20135
 	RESERVED
 CVE-2021-20134
author	Salvatore Bonaccorso <carnil@debian.org>	2021-11-02 09:13:52 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-11-02 09:13:52 +0100
commit	44e500731a8cf146d7afabb223e930ab14c58b4c (patch)
tree	743d732a44acf6dfda2a75b6ed3e3272025bc583
parent	e2af71d5062a4d948530ffa069e4bf64effa2dfe (diff)