automatic update

1 files changed, 81 insertions, 52 deletions

diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index 483b6572c8..379c2bd07c 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -1,3 +1,37 @@
+CVE-2020-11616
+	RESERVED
+CVE-2020-11615
+	RESERVED
+CVE-2020-11614
+	RESERVED
+CVE-2020-11613
+	RESERVED
+CVE-2020-11612 (The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memo ...)
+	TODO: check
+CVE-2020-11611 (An issue was discovered in xdLocalStorage through 2.0.5. The buildMess ...)
+	TODO: check
+CVE-2020-11610 (An issue was discovered in xdLocalStorage through 2.0.5. The postData( ...)
+	TODO: check
+CVE-2020-11609 (An issue was discovered in the stv06xx subsystem in the Linux kernel b ...)
+	TODO: check
+CVE-2020-11608 (An issue was discovered in the Linux kernel before 5.6.1. drivers/medi ...)
+	TODO: check
+CVE-2020-11607
+	RESERVED
+CVE-2020-11606
+	RESERVED
+CVE-2020-11605
+	RESERVED
+CVE-2020-11604
+	RESERVED
+CVE-2020-11603
+	RESERVED
+CVE-2020-11602
+	RESERVED
+CVE-2020-11601
+	RESERVED
+CVE-2020-11600
+	RESERVED
 CVE-2020-11599 (An issue was discovered in CIPPlanner CIPAce 6.80 Build 2016031401. Ge ...)
 	NOT-FOR-US: CIPPlanner
 CVE-2020-11598 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. Upl ...)
@@ -75,10 +109,10 @@ CVE-2020-11563
 	RESERVED
 CVE-2020-11562
 	RESERVED
-CVE-2020-11561
-	RESERVED
-CVE-2020-11560
-	RESERVED
+CVE-2020-11561 (In NCH Express Invoice 7.25, an authenticated low-privilege user can e ...)
+	TODO: check
+CVE-2020-11560 (NCH Express Invoice 7.25 allows local users to discover the cleartext  ...)
+	TODO: check
 CVE-2020-11559
 	RESERVED
 CVE-2020-11558 (An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by ...)
@@ -168,24 +202,24 @@ CVE-2020-11518 (Zoho ManageEngine ADSelfService Plus before 5815 allows unauthen
 	NOT-FOR-US: Zoho
 CVE-2020-11517
 	RESERVED
-CVE-2020-11516
-	RESERVED
-CVE-2020-11515
-	RESERVED
-CVE-2020-11514
-	RESERVED
+CVE-2020-11516 (Stored XSS in the Contact Form 7 Datepicker plugin through 2.6.0 for W ...)
+	TODO: check
+CVE-2020-11515 (The Rank Math plugin through 1.0.40.2 for WordPress allows unauthentic ...)
+	TODO: check
+CVE-2020-11514 (The Rank Math plugin through 1.0.40.2 for WordPress allows unauthentic ...)
+	TODO: check
 CVE-2020-11513
 	RESERVED
-CVE-2020-11512
-	RESERVED
+CVE-2020-11512 (Stored XSS in the IMPress for IDX Broker WordPress plugin before 2.6.2 ...)
+	TODO: check
 CVE-2020-11511
 	RESERVED
 CVE-2020-11510
 	RESERVED
-CVE-2020-11509
-	RESERVED
-CVE-2020-11508
-	RESERVED
+CVE-2020-11509 (An XSS vulnerability in the WP Lead Plus X plugin through 0.98 for Wor ...)
+	TODO: check
+CVE-2020-11508 (An XSS vulnerability in the WP Lead Plus X plugin through 0.98 for Wor ...)
+	TODO: check
 CVE-2020-11507 (An Untrusted Search Path vulnerability in Malwarebytes AdwCleaner 8.0. ...)
 	NOT-FOR-US: Malwarebytes AdwCleaner
 CVE-2020-11506
@@ -4454,8 +4488,8 @@ CVE-2020-9516
 	RESERVED
 CVE-2020-9515
 	RESERVED
-CVE-2020-9514
-	RESERVED
+CVE-2020-9514 (An issue was discovered in the IMPress for IDX Broker plugin before 2. ...)
+	TODO: check
 CVE-2020-9513
 	RESERVED
 CVE-2020-9512
@@ -4999,8 +5033,8 @@ CVE-2020-9288
 	RESERVED
 CVE-2020-9287 (An Unsafe Search Path vulnerability in FortiClient EMS online installe ...)
 	NOT-FOR-US: Fortiguard
-CVE-2020-9286
-	RESERVED
+CVE-2020-9286 (An improper authorization vulnerability in FortiADC may allow a remote ...)
+	TODO: check
 CVE-2020-9285
 	RESERVED
 CVE-2020-9284
@@ -7563,8 +7597,8 @@ CVE-2020-8098
 	RESERVED
 CVE-2020-8097
 	RESERVED
-CVE-2020-8096
-	RESERVED
+CVE-2020-8096 (Untrusted Search Path vulnerability in Bitdefender High-Level Antimalw ...)
+	TODO: check
 CVE-2020-8095 (A vulnerability in the improper handling of junctions before deletion  ...)
 	NOT-FOR-US: Bitdefender Total Security
 CVE-2020-8094
@@ -8563,18 +8597,18 @@ CVE-2020-7620 (pomelo-monitor through 0.3.7 is vulnerable to Command Injection.I
 	NOT-FOR-US: Node pomelo-monitor
 CVE-2020-7619 (get-git-data through 1.3.1 is vulnerable to Command Injection. It is p ...)
 	NOT-FOR-US: get-git-data node module
-CVE-2020-7618
-	RESERVED
+CVE-2020-7618 (sds through 3.2.0 is vulnerable to Prototype Pollution.The library cou ...)
+	TODO: check
 CVE-2020-7617 (ini-parser through 0.0.2 is vulnerable to Prototype Pollution.The libr ...)
 	NOT-FOR-US: Node ini-parser
-CVE-2020-7616
-	RESERVED
-CVE-2020-7615
-	RESERVED
-CVE-2020-7614
-	RESERVED
-CVE-2020-7613
-	RESERVED
+CVE-2020-7616 (express-mock-middleware through 0.0.6 is vulnerable to Prototype Pollu ...)
+	TODO: check
+CVE-2020-7615 (fsa through 0.5.1 is vulnerable to Command Injection. The first argume ...)
+	TODO: check
+CVE-2020-7614 (npm-programmatic through 0.0.12 is vulnerable to Command Injection.The ...)
+	TODO: check
+CVE-2020-7613 (clamscan through 1.2.0 is vulnerable to Command Injection. It is possi ...)
+	TODO: check
 CVE-2020-7612
 	RESERVED
 CVE-2020-7611 (All versions of io.micronaut:micronaut-http-client before 1.2.11 and a ...)
@@ -10010,8 +10044,8 @@ CVE-2020-6976 (Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and pr
 	NOT-FOR-US: Delta Industrial Automation CNCSoft ScreenEditor
 CVE-2020-6975 (Digi International ConnectPort LTS 32 MEI, Firmware Version 1.4.3 (820 ...)
 	NOT-FOR-US: Digi International ConnectPort LTS 32 MEI
-CVE-2020-6974
-	RESERVED
+CVE-2020-6974 (Honeywell Notifier Web Server (NWS) Version 3.50 is vulnerable to a pa ...)
+	TODO: check
 CVE-2020-6973 (Digi International ConnectPort LTS 32 MEI, Firmware Version 1.4.3 (820 ...)
 	NOT-FOR-US: Digi International ConnectPort LTS 32 MEI
 CVE-2020-6972 (In Notifier Web Server (NWS) Version 3.50 and earlier, the Honeywell F ...)
@@ -10797,8 +10831,8 @@ CVE-2020-6649
 	RESERVED
 CVE-2020-6648
 	RESERVED
-CVE-2020-6647
-	RESERVED
+CVE-2020-6647 (An improper neutralization of input vulnerability in the dashboard of  ...)
+	TODO: check
 CVE-2020-6646 (An improper neutralization of input vulnerability in FortiWeb allows a ...)
 	NOT-FOR-US: Fortiguard
 CVE-2020-6645
@@ -11896,8 +11930,8 @@ CVE-2020-6173 (TUF (aka The Update Framework) 0.7.2 through 0.12.1 allows Uncont
 	- python-tuf <itp> (bug #934151)
 CVE-2020-6172
 	RESERVED
-CVE-2020-6171
-	RESERVED
+CVE-2020-6171 (A cross-site scripting (XSS) vulnerability in the index page of the CL ...)
+	TODO: check
 CVE-2020-6170 (An authentication bypass vulnerability on Genexis Platinum-4410 v2.1 P ...)
 	NOT-FOR-US: Genexis
 CVE-2020-6169
@@ -12794,8 +12828,8 @@ CVE-2020-5736
 	RESERVED
 CVE-2020-5735
 	RESERVED
-CVE-2020-5734
-	RESERVED
+CVE-2020-5734 (Classic buffer overflow in SolarWinds Dameware allows a remote, unauth ...)
+	TODO: check
 CVE-2020-5733
 	RESERVED
 CVE-2020-5732
@@ -13698,8 +13732,8 @@ CVE-2020-5304
 	RESERVED
 CVE-2020-5303
 	RESERVED
-CVE-2020-5302
-	RESERVED
+CVE-2020-5302 (MH-WikiBot (an IRC Bot for interacting with the Miraheze API), had a b ...)
+	TODO: check
 CVE-2020-5301
 	RESERVED
 CVE-2020-5300 (In Hydra (an OAuth2 Server and OpenID Certified&#8482; OpenID Connect  ...)
@@ -20160,20 +20194,15 @@ CVE-2020-2178
 	RESERVED
 CVE-2020-2177
 	RESERVED
-CVE-2020-2176
-	RESERVED
+CVE-2020-2176 (Multiple form validation endpoints in Jenkins useMango Runner Plugin 1 ...)
 	NOT-FOR-US: Jenkins plugin
-CVE-2020-2175
-	RESERVED
+CVE-2020-2175 (Jenkins FitNesse Plugin 1.31 and earlier does not correctly escape rep ...)
 	NOT-FOR-US: Jenkins plugin
-CVE-2020-2174
-	RESERVED
+CVE-2020-2174 (Jenkins AWSEB Deployment Plugin 0.3.19 and earlier does not escape var ...)
 	NOT-FOR-US: Jenkins plugin
-CVE-2020-2173
-	RESERVED
+CVE-2020-2173 (Jenkins Gatling Plugin 1.2.7 and earlier prevents Content-Security-Pol ...)
 	NOT-FOR-US: Jenkins plugin
-CVE-2020-2172
-	RESERVED
+CVE-2020-2172 (Jenkins Code Coverage API Plugin 1.1.4 and earlier does not configure  ...)
 	NOT-FOR-US: Jenkins plugin
 CVE-2020-2171 (Jenkins RapidDeploy Plugin 4.2 and earlier does not configure its XML  ...)
 	NOT-FOR-US: Jenkins plugin