From 94c8a39bdb210b86b07fb531968ade0dc55a24a6 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Tue, 28 Jan 2020 21:25:05 +0100 Subject: Process some IBM specific CVEs as NFU --- data/CVE/list.2019 | 26 +++++++++++++------------- data/CVE/list.2020 | 2 +- 2 files changed, 14 insertions(+), 14 deletions(-) diff --git a/data/CVE/list.2019 b/data/CVE/list.2019 index 6c62a4aa5d..41266fc201 100644 --- a/data/CVE/list.2019 +++ b/data/CVE/list.2019 @@ -40959,7 +40959,7 @@ CVE-2019-4709 CVE-2019-4708 RESERVED CVE-2019-4707 (IBM Security Access Manager Appliance 9.0.7.0 is vulnerable to an XML ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4706 RESERVED CVE-2019-4705 @@ -41015,7 +41015,7 @@ CVE-2019-4681 CVE-2019-4680 RESERVED CVE-2019-4679 (IBM Content Navigator 3.0CD could allow an authenticated user to gain ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4678 RESERVED CVE-2019-4677 @@ -41095,23 +41095,23 @@ CVE-2019-4641 CVE-2019-4640 RESERVED CVE-2019-4639 (IBM Security Secret Server 10.7 uses weaker than expected cryptographi ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4638 (IBM Security Secret Server 10.7 does not set the secure attribute on a ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4637 (IBM Security Secret Server 10.7 uses incomplete blacklisting for input ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4636 (IBM Security Secret Server 10.7 could disclose sensitive information t ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4635 (IBM Security Secret Server 10.7 could allow a privileged user to perfo ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4634 RESERVED CVE-2019-4633 (IBM Security Secret Server 10.7 could allow an attacker to obtain sens ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4632 (IBM Security Secret Server 10.7 is vulnerable to cross-site scripting. ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4631 (IBM Security Secret Server 10.7 could allow a remote attacker to condu ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4630 RESERVED CVE-2019-4629 @@ -41133,7 +41133,7 @@ CVE-2019-4622 CVE-2019-4621 (IBM DataPower Gateway 7.6.0.0-7 throug 6.0.14 and 2018.4.1.0 through 2 ...) NOT-FOR-US: IBM CVE-2019-4620 (IBM MQ Appliance 8.0 and 9.0 LTS could allow a local attacker to bypas ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4619 RESERVED CVE-2019-4618 @@ -41145,7 +41145,7 @@ CVE-2019-4616 CVE-2019-4615 RESERVED CVE-2019-4614 (IBM MQ and IBM MQ Appliance 8.0 and 9.0 LTS client connecting to a Que ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4613 RESERVED CVE-2019-4612 (IBM Planning Analytics 2.0 is vulnerable to malicious file upload in t ...) @@ -41237,7 +41237,7 @@ CVE-2019-4570 (IBM Tivoli Netcool Impact 7.1.0 through 7.1.0.16 generates an err CVE-2019-4569 (IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.16 is vulnerable to cr ...) NOT-FOR-US: IBM CVE-2019-4568 (IBM MQ and IBM MQ Appliance 8.0 and 9.0 LTS could allow a remote attac ...) - TODO: check + NOT-FOR-US: IBM CVE-2019-4567 RESERVED CVE-2019-4566 (IBM Security Key Lifecycle Manager 3.0 and 3.0.1 stores user credentia ...) diff --git a/data/CVE/list.2020 b/data/CVE/list.2020 index 107b92119e..08187acb1b 100644 --- a/data/CVE/list.2020 +++ b/data/CVE/list.2020 @@ -8368,7 +8368,7 @@ CVE-2020-4209 CVE-2020-4208 RESERVED CVE-2020-4207 (IBM Watson IoT Message Gateway 2.0.0.x, 5.0.0.0, 5.0.0.1, and 5.0.0.2 ...) - TODO: check + NOT-FOR-US: IBM CVE-2020-4206 RESERVED CVE-2020-4205 -- cgit v1.2.3