diff options
author | security tracker role <sectracker@soriano.debian.org> | 2021-03-06 08:10:21 +0000 |
---|---|---|
committer | security tracker role <sectracker@soriano.debian.org> | 2021-03-06 08:10:21 +0000 |
commit | ed2614e7db5f18d56563fa7a538f9e515598a14f (patch) | |
tree | 81fb275bd03c644d110d5e9b17836c379611dcb1 /data/CVE/list.2020 | |
parent | f48abf863e71a7aef127b0ea5031d92d6e71408d (diff) |
automatic update
Diffstat (limited to 'data/CVE/list.2020')
-rw-r--r-- | data/CVE/list.2020 | 16 |
1 files changed, 8 insertions, 8 deletions
diff --git a/data/CVE/list.2020 b/data/CVE/list.2020 index 207d1be343..a741328d2f 100644 --- a/data/CVE/list.2020 +++ b/data/CVE/list.2020 @@ -4266,12 +4266,12 @@ CVE-2020-29032 (Upload of Code Without Integrity Check vulnerability in firmware NOT-FOR-US: Secomea GateManager CVE-2020-29031 (An Insecure Direct Object Reference vulnerability exists in the web UI ...) NOT-FOR-US: GateManager -CVE-2020-29030 - RESERVED -CVE-2020-29029 - RESERVED -CVE-2020-29028 - RESERVED +CVE-2020-29030 (Cross-Site Request Forgery (CSRF) vulnerability in web GUI of Secomea ...) + TODO: check +CVE-2020-29029 (Improper Input Validation, Cross-site Scripting (XSS) vulnerability in ...) + TODO: check +CVE-2020-29028 (Cross-site Scripting (XSS) vulnerability in web GUI of Secomea GateMan ...) + TODO: check CVE-2020-29027 (Cross-site Scripting (XSS) vulnerability in GUI of Secomea SiteManager ...) NOT-FOR-US: Secomea CVE-2020-29026 (A directory traversal vulnerability exists in the file upload function ...) @@ -4286,8 +4286,8 @@ CVE-2020-29022 (Failure to Sanitize host header value on output in the GateManag NOT-FOR-US: Secomea CVE-2020-29021 (A vulnerability in web UI input field of GateManager allows authentica ...) NOT-FOR-US: GateManager -CVE-2020-29020 - RESERVED +CVE-2020-29020 (Improper Access Control vulnerability in web service of Secomea SiteMa ...) + TODO: check CVE-2020-29019 (A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through ...) NOT-FOR-US: Fortiguard CVE-2020-29018 (A format string vulnerability in FortiWeb 6.3.0 through 6.3.5 may allo ...) |