summaryrefslogtreecommitdiffstats
path: root/data/CVE/2021.list
diff options
context:
space:
mode:
authorSalvatore Bonaccorso <carnil@debian.org>2022-02-19 22:03:37 +0100
committerSalvatore Bonaccorso <carnil@debian.org>2022-02-19 22:03:37 +0100
commita06f4fb9a73657fb173ae8889ab719773f35fac4 (patch)
tree09c6125cc884f08f114bb0c17e88df9b919977a1 /data/CVE/2021.list
parent277a3870ca6906ced9041beea601f53d13f879b1 (diff)
Process NFUs
Diffstat (limited to 'data/CVE/2021.list')
-rw-r--r--data/CVE/2021.list20
1 files changed, 10 insertions, 10 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index f9841e872b..1e7c9f25ad 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -731,7 +731,7 @@ CVE-2021-46374
CVE-2021-46373
RESERVED
CVE-2021-46372 (Scoold 1.47.2 is a Q&amp;A/knowledge base platform written in Java. Wh ...)
- TODO: check
+ NOT-FOR-US: Scoold
CVE-2021-46371 (antd-admin 5.5.0 is affected by an incorrect access control vulnerabil ...)
NOT-FOR-US: antd-admin
CVE-2021-46370
@@ -1406,7 +1406,7 @@ CVE-2021-46112
CVE-2021-46111
RESERVED
CVE-2021-46110 (Online Shopping Portal v3.1 was discovered to contain multiple time-ba ...)
- TODO: check
+ NOT-FOR-US: Online Shopping Portal
CVE-2021-46109 (Invalid input sanitizing leads to reflected Cross Site Scripting (XSS) ...)
NOT-FOR-US: ASUS
CVE-2021-46108 (D-Link DSL-2730E CT-20131125 devices allow XSS via the username parame ...)
@@ -1466,7 +1466,7 @@ CVE-2021-46084 (uscat, as of 2021-12-28, is vulnerable to Cross Site Scripting (
CVE-2021-46083 (uscat, as of 2021-12-28, is vulnerable to Cross Site Scripting (XSS) v ...)
NOT-FOR-US: uscat
CVE-2021-46082 (Moxa TN-5900 v3.1 series routers, MGate 5109 v2.2 series protocol gate ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2021-46081
RESERVED
CVE-2021-46080 (A Cross Site Request Forgery (CSRF) vulnerability exists in Vehicle Se ...)
@@ -1504,9 +1504,9 @@ CVE-2021-46065 (A Cross-site scripting (XSS) vulnerability in Secondary Email Fi
CVE-2021-46064
RESERVED
CVE-2021-46063 (MCMS v5.2.5 was discovered to contain a Server Side Template Injection ...)
- TODO: check
+ NOT-FOR-US: MCMS
CVE-2021-46062 (MCMS v5.2.5 was discovered to contain an arbitrary file deletion vulne ...)
- TODO: check
+ NOT-FOR-US: MCMS
CVE-2021-46061 (An SQL Injection vulnerability exists in Sourcecodester Computer and M ...)
NOT-FOR-US: Sourcecodester
CVE-2021-46060
@@ -6317,7 +6317,7 @@ CVE-2021-44304
CVE-2021-44303
RESERVED
CVE-2021-44302 (BaiCloud-cms v2.5.7 was discovered to contain multiple SQL injection v ...)
- TODO: check
+ NOT-FOR-US: BaiCloud-cms
CVE-2021-44301
RESERVED
CVE-2021-44300
@@ -14944,9 +14944,9 @@ CVE-2021-40843 (Proofpoint Insider Threat Management Server contains an unsafe d
CVE-2021-40842 (Proofpoint Insider Threat Management Server contains a SQL injection v ...)
NOT-FOR-US: Proofpoint
CVE-2021-40841 (A Path Traversal vulnerability for a log file in LiveConfig 2.12.2 all ...)
- TODO: check
+ NOT-FOR-US: LiveConfig
CVE-2021-40840 (A Stored XSS issue exists in the admin/users user administration form ...)
- TODO: check
+ NOT-FOR-US: LiveConfig
CVE-2021-40839 (The rencode package through 1.0.6 for Python allows an infinite loop i ...)
- python-rencode 1.0.6-2
[bullseye] - python-rencode <no-dsa> (Minor issue)
@@ -42403,9 +42403,9 @@ CVE-2021-29657 (arch/x86/kvm/svm/nested.c in the Linux kernel before 5.11.12 has
NOTE: https://git.kernel.org/linus/a58d9166a756a0f4a6618e4f593232593d6df134
NOTE: https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html
CVE-2021-29656 (Pexip Infinity Connect before 1.8.0 mishandles TLS certificate validat ...)
- TODO: check
+ NOT-FOR-US: Pexip Infinity Connect
CVE-2021-29655 (Pexip Infinity Connect before 1.8.0 omits certain provisioning authent ...)
- TODO: check
+ NOT-FOR-US: Pexip Infinity Connect
CVE-2021-29654 (AjaxSearchPro before 4.20.8 allows Deserialization of Untrusted Data ( ...)
NOT-FOR-US: AjaxSearchPro
CVE-2021-29653 (HashiCorp Vault and Vault Enterprise 1.5.1 and newer, under certain ci ...)

© 2014-2024 Faster IT GmbH | imprint | privacy policy