From 506319accd2f24b07448d1c6a4573da01da0f8ff Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Tue, 12 Oct 2021 13:49:44 +0200 Subject: Process some NFUs --- data/CVE/list.2021 | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index c8578d4f7b..70b5a9166a 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -3700,7 +3700,7 @@ CVE-2021-40619 CVE-2021-40618 RESERVED CVE-2021-40617 (An SQL Injection vulnerability exists in openSIS Community Edition ver ...) - TODO: check + NOT-FOR-US: openSIS CVE-2021-40616 RESERVED CVE-2021-40615 @@ -3848,9 +3848,9 @@ CVE-2021-40545 CVE-2021-40544 RESERVED CVE-2021-40543 (Opensis-Classic Version 8.0 is affected by a SQL injection vulnerabili ...) - TODO: check + NOT-FOR-US: openSIS CVE-2021-40542 (Opensis-Classic Version 8.0 is affected by cross-site scripting (XSS). ...) - TODO: check + NOT-FOR-US: openSIS CVE-2021-40541 (PHPFusion 9.03.110 is affected by cross-site scripting (XSS) in the pr ...) NOT-FOR-US: PHP-Fusion CVE-2021-40540 (ulfius_uri_logger in Ulfius HTTP Framework before 2.7.4 omits con_info ...) @@ -4620,7 +4620,7 @@ CVE-2021-40241 CVE-2021-40240 RESERVED CVE-2021-40239 (A Buffer Overflow vulnerability exists in the latest version of Minift ...) - TODO: check + NOT-FOR-US: Miniftpd CVE-2021-40238 (A Cross Site Scriptiong (XSS) vulnerability exists in the admin panel ...) NOT-FOR-US: Webuzo CVE-2021-40237 @@ -11889,7 +11889,7 @@ CVE-2021-37125 CVE-2021-37124 RESERVED CVE-2021-37123 (There is an improper authentication vulnerability in Hero-CT060 before ...) - TODO: check + NOT-FOR-US: Hero-CT060 CVE-2021-37122 RESERVED CVE-2021-37121 @@ -34591,7 +34591,7 @@ CVE-2021-27666 CVE-2021-27665 (An unauthenticated remote user could exploit a potential integer overf ...) TODO: check CVE-2021-27664 (Under certain configurations an unauthenticated remote user could be g ...) - TODO: check + NOT-FOR-US: exacqVision CVE-2021-27663 (A vulnerability in versions 10.1 through 10.5 of Johnson Controls CEM ...) NOT-FOR-US: Johnson Controls CVE-2021-27662 (The KT-1 door controller is susceptible to replay or man-in-the-middle ...) -- cgit v1.2.3