From 613626e4cd98a5ad5f124fcd55d723d7f9684b2e Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Wed, 1 Dec 2021 21:31:12 +0100 Subject: Process some NFUs --- data/CVE/list.2021 | 36 ++++++++++++++++++------------------ 1 file changed, 18 insertions(+), 18 deletions(-) diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 633e183aae..7541c43ad9 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -61,9 +61,9 @@ CVE-2021-44482 CVE-2021-44481 RESERVED CVE-2021-44480 (Wokka Lokka Q50 devices through 2021-11-30 allow remote attackers (who ...) - TODO: check + NOT-FOR-US: Wokka Lokka Q50 devices CVE-2021-44479 (NXP Kinetis K82 devices have a buffer over-read via a crafted wlength ...) - TODO: check + NOT-FOR-US: NXP Kinetis K82 devices CVE-2021-44478 RESERVED CVE-2021-4038 @@ -467,13 +467,13 @@ CVE-2021-44282 CVE-2021-44281 RESERVED CVE-2021-44280 (attendance management system 1.0 is affected by a SQL injection vulner ...) - TODO: check + NOT-FOR-US: attendance management system CVE-2021-44279 (Librenms 21.11.0 is affected by is affected by a Cross Site Scripting ...) - TODO: check + NOT-FOR-US: LibreNMS CVE-2021-44278 RESERVED CVE-2021-44277 (Librenms 21.11.0 is affected by is affected by a Cross Site Scripting ...) - TODO: check + NOT-FOR-US: LibreNMS CVE-2021-44276 RESERVED CVE-2021-44275 @@ -669,9 +669,9 @@ CVE-2021-44208 CVE-2021-44207 RESERVED CVE-2021-4018 (snipe-it is vulnerable to Improper Neutralization of Input During Web ...) - TODO: check + NOT-FOR-US: snipe-it CVE-2021-4017 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...) - TODO: check + NOT-FOR-US: showdoc CVE-2021-44206 RESERVED CVE-2021-44205 @@ -697,7 +697,7 @@ CVE-2021-44196 CVE-2021-4016 RESERVED CVE-2021-4015 (firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF) ...) - TODO: check + NOT-FOR-US: firefly-iii CVE-2021-4014 RESERVED CVE-2021-4013 @@ -981,11 +981,11 @@ CVE-2021-3996 CVE-2021-3995 RESERVED CVE-2021-3994 (django-helpdesk is vulnerable to Improper Neutralization of Input Duri ...) - TODO: check + NOT-FOR-US: django-helpdesk CVE-2021-3993 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...) - TODO: check + NOT-FOR-US: showdoc CVE-2021-3992 (kimai2 is vulnerable to Improper Access Control ...) - TODO: check + NOT-FOR-US: kimai2 CVE-2021-44078 RESERVED CVE-2021-44077 (Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP ...) @@ -993,9 +993,9 @@ CVE-2021-44077 (Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plu CVE-2021-3991 RESERVED CVE-2021-3990 (showdoc is vulnerable to Use of Cryptographically Weak Pseudo-Random N ...) - TODO: check + NOT-FOR-US: showdoc CVE-2021-3989 (showdoc is vulnerable to URL Redirection to Untrusted Site ...) - TODO: check + NOT-FOR-US: showdoc CVE-2021-3988 RESERVED CVE-2021-3987 @@ -1075,11 +1075,11 @@ CVE-2021-44042 CVE-2021-44041 RESERVED CVE-2021-3985 (kimai2 is vulnerable to Improper Neutralization of Input During Web Pa ...) - TODO: check + NOT-FOR-US: kimai2 CVE-2021-3984 (vim is vulnerable to Heap-based Buffer Overflow ...) TODO: check CVE-2021-3983 (kimai2 is vulnerable to Improper Neutralization of Input During Web Pa ...) - TODO: check + NOT-FOR-US: kimai2 CVE-2021-44040 RESERVED CVE-2021-44039 @@ -1867,13 +1867,13 @@ CVE-2021-43692 (youtube-php-mirroring (last update Jun 9, 2017) is affected by a CVE-2021-43691 (tripexpress v1.1 is affected by a path manipulation vulnerability in f ...) NOT-FOR-US: tripexpress CVE-2021-43690 (YurunProxy v0.01 is affected by a Cross Site Scripting (XSS) vulnerabi ...) - TODO: check + NOT-FOR-US: YurunProxy CVE-2021-43689 (manage (last update Oct 24, 2017) is affected by is affected by a Cros ...) TODO: check CVE-2021-43688 RESERVED CVE-2021-43687 (chamilo-lms v1.11.14 is affected by a Cross Site Scripting (XSS) vulne ...) - TODO: check + NOT-FOR-US: Chamilo-lms CVE-2021-43686 RESERVED CVE-2021-43685 (libretime hv3.0.0-alpha.10 is affected by a path manipulation vulnerab ...) @@ -2474,7 +2474,7 @@ CVE-2021-43453 CVE-2021-43452 RESERVED CVE-2021-43451 (SQL Injection vulnerability exists in PHPGURUKUL Employee Record Manag ...) - TODO: check + NOT-FOR-US: PHPGURUKUL CVE-2021-43450 RESERVED CVE-2021-43449 -- cgit v1.2.3