From bff0166fbac9b0a3b4e8e78c47ee5f1b78fa72b8 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Fri, 2 Apr 2021 10:53:31 +0200 Subject: Process some NFUs --- data/CVE/2020.list | 2 +- data/CVE/2021.list | 20 ++++++++++---------- 2 files changed, 11 insertions(+), 11 deletions(-) diff --git a/data/CVE/2020.list b/data/CVE/2020.list index e8b182a0d1..5670865feb 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -14953,7 +14953,7 @@ CVE-2020-24552 (Atop Technology industrial 3G/4G gateway contains Command Inject CVE-2020-24551 (IProom MMC+ Server login page does not validate specific parameters pr ...) NOT-FOR-US: IProom MMC+ Server CVE-2020-24550 (An Open Redirect vulnerability in EpiServer Find before 13.2.7 allows ...) - TODO: check + NOT-FOR-US: EpiServer Find CVE-2020-24549 (openMAINT before 1.1-2.4.2 allows remote authenticated users to run ar ...) NOT-FOR-US: openMAINT CVE-2020-24548 (Ericom Access Server 9.2.0 (for AccessNow and Ericom Blaze) allows SSR ...) diff --git a/data/CVE/2021.list b/data/CVE/2021.list index a4bec1e9ed..89b86760da 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -6,7 +6,7 @@ CVE-2021-30004 (In wpa_supplicant and hostapd 2.9, forging attacks may occur bec - wpa NOTE: https://w1.fi/cgit/hostap/commit/?id=a0541334a6394f8237a4393b7372693cd7e96f15 CVE-2021-30003 (An issue was discovered on Nokia G-120W-F 3FE46606AGAB91 devices. Ther ...) - TODO: check + NOT-FOR-US: Nokia G-120W-F 3FE46606AGAB91 devices CVE-2021-30001 RESERVED CVE-2021-30000 @@ -2194,9 +2194,9 @@ CVE-2021-28974 CVE-2021-28973 RESERVED CVE-2021-28970 (eMPS 9.0.1.923211 on the Central Management of FireEye EX 3500 devices ...) - TODO: check + NOT-FOR-US: Central Management of FireEye EX 3500 devices CVE-2021-28969 (eMPS 9.0.1.923211 on FireEye EX 3500 devices allows remote authenticat ...) - TODO: check + NOT-FOR-US: Central Management of FireEye EX 3500 devices CVE-2021-28968 (An issue was discovered in PunBB before 1.4.6. An XSS vulnerability in ...) NOT-FOR-US: PunBB CVE-2021-28967 (The unofficial MATLAB extension before 2.0.1 for Visual Studio Code al ...) @@ -4263,7 +4263,7 @@ CVE-2021-28049 CVE-2021-28048 RESERVED CVE-2021-28047 (Cross-Site Scripting (XSS) in Administrative Reports in Devolutions Re ...) - TODO: check + NOT-FOR-US: Devolutions Remote Desktop Manager CVE-2021-28046 RESERVED CVE-2021-28045 @@ -13654,15 +13654,15 @@ CVE-2021-23926 (The XML parsers used by XMLBeans up to version 2.6.0 did not set - xmlbeans 3.0.2-1 NOTE: https://issues.apache.org/jira/browse/XMLBEANS-517 CVE-2021-23925 (An issue was discovered in Devolutions Server before 2020.3. There is ...) - TODO: check + NOT-FOR-US: Devolutions Server CVE-2021-23924 (An issue was discovered in Devolutions Server before 2020.3. There is ...) - TODO: check + NOT-FOR-US: Devolutions Server CVE-2021-23923 (An issue was discovered in Devolutions Server before 2020.3. There is ...) - TODO: check + NOT-FOR-US: Devolutions Server CVE-2021-23922 (An issue was discovered in Devolutions Remote Desktop Manager before 2 ...) - TODO: check + NOT-FOR-US: Devolutions Remote Desktop Manager CVE-2021-23921 (An issue was discovered in Devolutions Server before 2020.3. There is ...) - TODO: check + NOT-FOR-US: Devolutions Server CVE-2021-3134 (Mubu 2.2.1 allows local users to gain privileges to execute commands, ...) NOT-FOR-US: Mubu CVE-2021-3133 (The Elementor Contact Form DB plugin before 1.6 for WordPress allows C ...) @@ -18873,7 +18873,7 @@ CVE-2021-21422 CVE-2021-21421 (node-etsy-client is a NodeJs Etsy ReST API Client. Applications that a ...) TODO: check CVE-2021-21420 (vscode-stripe is an extension for Visual Studio Code. A vulnerability ...) - TODO: check + NOT-FOR-US: vscode-stripe Visual Studio Code extension CVE-2021-21419 RESERVED CVE-2021-21418 (ps_emailsubscription is a newsletter subscription module for the Prest ...) -- cgit v1.2.3