Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8a6aff1d by security tracker role at 2020-03-12T20:10:23+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,299 @@
+CVE-2020-10533
+ RESERVED
+CVE-2020-10532 (The AD Helper component in WatchGuard Fireware before
5.8.5.10317 allo ...)
+ TODO: check
+CVE-2020-10531 (An issue was discovered in International Components for
Unicode (ICU) ...)
+ TODO: check
+CVE-2020-10530
+ RESERVED
+CVE-2020-10529
+ RESERVED
+CVE-2020-10528
+ RESERVED
+CVE-2020-10527
+ RESERVED
+CVE-2020-10526
+ RESERVED
+CVE-2020-10525
+ RESERVED
+CVE-2020-10524
+ RESERVED
+CVE-2020-10523
+ RESERVED
+CVE-2020-10522
+ RESERVED
+CVE-2020-10521
+ RESERVED
+CVE-2020-10520
+ RESERVED
+CVE-2020-10519
+ RESERVED
+CVE-2020-10518
+ RESERVED
+CVE-2020-10517
+ RESERVED
+CVE-2020-10516
+ RESERVED
+CVE-2020-10515
+ RESERVED
+CVE-2020-10514
+ RESERVED
+CVE-2020-10513
+ RESERVED
+CVE-2020-10512
+ RESERVED
+CVE-2020-10511
+ RESERVED
+CVE-2020-10510
+ RESERVED
+CVE-2020-10509
+ RESERVED
+CVE-2020-10508
+ RESERVED
+CVE-2020-10507
+ RESERVED
+CVE-2020-10506
+ RESERVED
+CVE-2020-10505
+ RESERVED
+CVE-2020-10504 (CSRF in admin/edit-comments.php in Chadha PHPKB Standard
Multi-Languag ...)
+ TODO: check
+CVE-2020-10503 (CSRF in admin/manage-comments.php in Chadha PHPKB Standard
Multi-Langu ...)
+ TODO: check
+CVE-2020-10502 (CSRF in admin/manage-comments.php in Chadha PHPKB Standard
Multi-Langu ...)
+ TODO: check
+CVE-2020-10501 (CSRF in admin/manage-departments.php in Chadha PHPKB Standard
Multi-La ...)
+ TODO: check
+CVE-2020-10500 (CSRF in admin/reply-ticket.php in Chadha PHPKB Standard
Multi-Language ...)
+ TODO: check
+CVE-2020-10499 (CSRF in admin/manage-tickets.php in Chadha PHPKB Standard
Multi-Langua ...)
+ TODO: check
+CVE-2020-10498 (CSRF in admin/edit-category.php in Chadha PHPKB Standard
Multi-Languag ...)
+ TODO: check
+CVE-2020-10497 (CSRF in admin/manage-categories.php in Chadha PHPKB Standard
Multi-Lan ...)
+ TODO: check
+CVE-2020-10496 (CSRF in admin/edit-article.php in Chadha PHPKB Standard
Multi-Language ...)
+ TODO: check
+CVE-2020-10495 (CSRF in admin/edit-template.php in Chadha PHPKB Standard
Multi-Languag ...)
+ TODO: check
+CVE-2020-10494 (CSRF in admin/edit-news.php in Chadha PHPKB Standard
Multi-Language 9 ...)
+ TODO: check
+CVE-2020-10493 (CSRF in admin/edit-glossary.php in Chadha PHPKB Standard
Multi-Languag ...)
+ TODO: check
+CVE-2020-10492 (CSRF in admin/manage-templates.php in Chadha PHPKB Standard
Multi-Lang ...)
+ TODO: check
+CVE-2020-10491 (CSRF in admin/manage-departments.php in Chadha PHPKB Standard
Multi-La ...)
+ TODO: check
+CVE-2020-10490 (CSRF in admin/manage-departments.php in Chadha PHPKB Standard
Multi-La ...)
+ TODO: check
+CVE-2020-10489 (CSRF in admin/manage-tickets.php in Chadha PHPKB Standard
Multi-Langua ...)
+ TODO: check
+CVE-2020-10488 (CSRF in admin/manage-news.php in Chadha PHPKB Standard
Multi-Language ...)
+ TODO: check
+CVE-2020-10487 (CSRF in admin/manage-glossary.php in Chadha PHPKB Standard
Multi-Langu ...)
+ TODO: check
+CVE-2020-10486 (CSRF in admin/manage-comments.php in Chadha PHPKB Standard
Multi-Langu ...)
+ TODO: check
+CVE-2020-10485 (CSRF in admin/manage-articles.php in Chadha PHPKB Standard
Multi-Langu ...)
+ TODO: check
+CVE-2020-10484 (CSRF in admin/add-field.php in Chadha PHPKB Standard
Multi-Language 9 ...)
+ TODO: check
+CVE-2020-10483 (CSRF in admin/ajax-hub.php in Chadha PHPKB Standard
Multi-Language 9 a ...)
+ TODO: check
+CVE-2020-10482 (CSRF in admin/add-template.php in Chadha PHPKB Standard
Multi-Language ...)
+ TODO: check
+CVE-2020-10481 (CSRF in admin/add-glossary.php in Chadha PHPKB Standard
Multi-Language ...)
+ TODO: check
+CVE-2020-10480 (CSRF in admin/add-category.php in Chadha PHPKB Standard
Multi-Language ...)
+ TODO: check
+CVE-2020-10479 (CSRF in admin/add-news.php in Chadha PHPKB Standard
Multi-Language 9 a ...)
+ TODO: check
+CVE-2020-10478 (CSRF in admin/manage-settings.php in Chadha PHPKB Standard
Multi-Langu ...)
+ TODO: check
+CVE-2020-10477 (Reflected XSS in admin/manage-news.php in Chadha PHPKB
Standard Multi- ...)
+ TODO: check
+CVE-2020-10476 (Reflected XSS in admin/manage-glossary.php in Chadha PHPKB
Standard Mu ...)
+ TODO: check
+CVE-2020-10475 (Reflected XSS in admin/manage-tickets.php in Chadha PHPKB
Standard Mul ...)
+ TODO: check
+CVE-2020-10474 (Reflected XSS in admin/manage-comments.php in Chadha PHPKB
Standard Mu ...)
+ TODO: check
+CVE-2020-10473 (Reflected XSS in admin/manage-categories.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10472 (Reflected XSS in admin/manage-templates.php in Chadha PHPKB
Standard M ...)
+ TODO: check
+CVE-2020-10471 (Reflected XSS in admin/manage-articles.php in Chadha PHPKB
Standard Mu ...)
+ TODO: check
+CVE-2020-10470 (Reflected XSS in admin/manage-fields.php in Chadha PHPKB
Standard Mult ...)
+ TODO: check
+CVE-2020-10469 (Reflected XSS in admin/manage-departments.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10468 (Reflected XSS in admin/edit-news.php in Chadha PHPKB Standard
Multi-La ...)
+ TODO: check
+CVE-2020-10467 (Reflected XSS in admin/edit-comment.php in Chadha PHPKB
Standard Multi ...)
+ TODO: check
+CVE-2020-10466 (Reflected XSS in admin/edit-glossary.php in Chadha PHPKB
Standard Mult ...)
+ TODO: check
+CVE-2020-10465 (Reflected XSS in admin/edit-category.php in Chadha PHPKB
Standard Mult ...)
+ TODO: check
+CVE-2020-10464 (Reflected XSS in admin/edit-article.php in Chadha PHPKB
Standard Multi ...)
+ TODO: check
+CVE-2020-10463 (Reflected XSS in admin/edit-template.php in Chadha PHPKB
Standard Mult ...)
+ TODO: check
+CVE-2020-10462 (Reflected XSS in admin/edit-field.php in Chadha PHPKB Standard
Multi-L ...)
+ TODO: check
+CVE-2020-10461 (The way comments in article.php (vulnerable function in
include/functi ...)
+ TODO: check
+CVE-2020-10460 (admin/include/operations.php (via admin/email-harvester.php)
in Chadha ...)
+ TODO: check
+CVE-2020-10459 (Path Traversal in admin/assetmanager/assetmanager.php
(vulnerable func ...)
+ TODO: check
+CVE-2020-10458 (Path Traversal in admin/imagepaster/operations.php in Chadha
PHPKB Sta ...)
+ TODO: check
+CVE-2020-10457 (Path Traversal in admin/imagepaster/image-renaming.php in
Chadha PHPKB ...)
+ TODO: check
+CVE-2020-10456 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10455 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10454 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10453 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10452 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10451 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10450 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10449 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10448 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10447 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10446 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10445 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10444 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10443 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10442 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10441 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10440 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10439 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10438 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10437 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10436 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10435 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10434 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10433 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10432 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10431 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10430 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10429 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10428 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10427 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10426 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10425 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10424 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10423 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10422 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10421 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10420 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10419 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10418 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10417 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10416 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10415 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10414 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10413 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10412 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10411 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10410 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10409 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10408 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10407 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10406 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10405 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10404 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10403 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10402 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10401 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10400 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10399 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10398 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10397 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10396 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10395 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10394 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10393 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10392 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10391 (The way URIs are handled in admin/header.php in Chadha PHPKB
Standard ...)
+ TODO: check
+CVE-2020-10390 (OS Command Injection in export.php (vulnerable function called
from in ...)
+ TODO: check
+CVE-2020-10389 (admin/save-settings.php in Chadha PHPKB Standard
Multi-Language 9 allo ...)
+ TODO: check
+CVE-2020-10388 (The way the Referer header in article.php is handled in Chadha
PHPKB S ...)
+ TODO: check
+CVE-2020-10387 (Path Traversal in admin/download.php in Chadha PHPKB Standard
Multi-La ...)
+ TODO: check
+CVE-2020-10386 (admin/imagepaster/image-upload.php in Chadha PHPKB Standard
Multi-Lang ...)
+ TODO: check
CVE-2020-10385 (A stored cross-site scripting (XSS) vulnerability exists in
the WPForm ...)
NOT-FOR-US: WPForms Contact Form plugin for WordPress
CVE-2020-10384
@@ -424,7 +720,7 @@ CVE-2020-10188 (utility.c in telnetd in netkit telnet
through 0.17 allows remote
NOTE:
https://appgateresearch.blogspot.com/2020/02/bravestarr-fedora-31-netkit-telnetd_28.html
TODO: check further details
CVE-2019-20503 (usrsctp before 2019-12-20 has out-of-bounds reads in
sctp_load_address ...)
- {DSA-4639-1}
+ {DSA-4639-1 DLA-2140-1}
- libusrsctp <unfixed> (bug #953270)
- firefox <unfixed>
- firefox-esr 68.6.0esr-1
@@ -604,10 +900,10 @@ CVE-2020-10111 (Citrix Gateway 11.1, 12.0, and 12.1 has
an Inconsistent Interpre
NOT-FOR-US: Citrix
CVE-2020-10110 (Citrix Gateway 11.1, 12.0, and 12.1 allows Information
Exposure Throug ...)
NOT-FOR-US: Citrix
-CVE-2020-10109
- RESERVED
-CVE-2020-10108
- RESERVED
+CVE-2020-10109 (In Twisted Web through 19.10.0, there was an HTTP request
splitting vu ...)
+ TODO: check
+CVE-2020-10108 (In Twisted Web through 19.10.0, there was an HTTP request
splitting vu ...)
+ TODO: check
CVE-2020-10107 (PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to
stored XS ...)
NOT-FOR-US: PHPGurukul Daily Expense Tracker System
CVE-2020-10106 (PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to
SQL injec ...)
@@ -1788,8 +2084,7 @@ CVE-2020-9545 (Pale Moon 28.x before 28.8.4 has a
segmentation fault related to
NOT-FOR-US: Pale Moon
CVE-2020-9544 (An issue was discovered on D-Link DSL-2640B E1 EU_1.01 devices.
The ad ...)
NOT-FOR-US: D-Link
-CVE-2020-9543 [Unprivileged users can retrieve, use and manipulate share
networks]
- RESERVED
+CVE-2020-9543 (OpenStack Manila <7.4.1, >=8.0.0 <8.1.1, and
>=9.0.0 <9 ...)
- manila 1:9.0.0-5 (bug #953581)
[buster] - manila <no-dsa> (Minor issue)
[stretch] - manila <no-dsa> (Minor issue)
@@ -1961,8 +2256,8 @@ CVE-2020-9466 (The Export Users to CSV plugin through
1.4.2 for WordPress allows
NOT-FOR-US: Export Users to CSV plugin for WordPress
CVE-2020-9465 (An issue was discovered in EyesOfNetwork eonweb 5.1 through 5.3
before ...)
NOT-FOR-US: EyesOfNetwork (EON)
-CVE-2020-9464
- RESERVED
+CVE-2020-9464 (A Denial-of-Service vulnerability exists in BECKHOFF Ethernet
TCP/IP B ...)
+ TODO: check
CVE-2020-9463 (Centreon 19.10 allows remote authenticated users to execute
arbitrary ...)
- centreon-web <itp> (bug #913903)
CVE-2020-9462
@@ -2024,10 +2319,10 @@ CVE-2020-9438
RESERVED
CVE-2020-9437
RESERVED
-CVE-2020-9436
- RESERVED
-CVE-2020-9435
- RESERVED
+CVE-2020-9436 (PHOENIX CONTACT TC ROUTER 3002T-4G through 2.05.3, TC ROUTER
2002T-3G ...)
+ TODO: check
+CVE-2020-9435 (PHOENIX CONTACT TC ROUTER 3002T-4G through 2.05.3, TC ROUTER
2002T-3G ...)
+ TODO: check
CVE-2020-9434 (openssl_x509_check_ip_asc in lua-openssl 0.7.7-1 mishandles
X.509 cert ...)
NOT-FOR-US: lua-openssl (different from lua-luaossl)
CVE-2020-9433 (openssl_x509_check_email in lua-openssl 0.7.7-1 mishandles
X.509 certi ...)
@@ -2111,8 +2406,8 @@ CVE-2020-9410
RESERVED
CVE-2020-9409
RESERVED
-CVE-2020-9408
- RESERVED
+CVE-2020-9408 (The Spotfire library component of TIBCO Software Inc.'s TIBCO
Spotfire ...)
+ TODO: check
CVE-2020-9407 (IBL Online Weather before 4.3.5a allows attackers to obtain
sensitive ...)
NOT-FOR-US: IBL Online Weather
CVE-2020-9406 (IBL Online Weather before 4.3.5a allows unauthenticated eval
injection ...)
@@ -4112,7 +4407,7 @@ CVE-2020-8542
RESERVED
CVE-2020-8541
RESERVED
-CVE-2020-8540 (An XML external entity (XXE) vulnerability iin Zoho
ManageEngine Deskt ...)
+CVE-2020-8540 (An XML external entity (XXE) vulnerability in Zoho ManageEngine
Deskto ...)
NOT-FOR-US: Zoho ManageEngine Desktop Central
CVE-2020-8539
RESERVED
@@ -4359,10 +4654,10 @@ CVE-2020-8438 (Ruckus ZoneFlex R500 104.0.0.0.1347
devices allow an authenticate
NOT-FOR-US: Ruckus devices
CVE-2020-8437 (The bencoding parser in BitTorrent uTorrent through 3.5.5
(build 45505 ...)
NOT-FOR-US: uTorrent
-CVE-2020-8436
- RESERVED
-CVE-2020-8435
- RESERVED
+CVE-2020-8436 (XSS was discovered in the RegistrationMagic plugin 4.6.0.0 for
WordPre ...)
+ TODO: check
+CVE-2020-8435 (An issue was discovered in the RegistrationMagic plugin 4.6.0.0
for Wo ...)
+ TODO: check
CVE-2020-8434
RESERVED
CVE-2020-8433
@@ -5480,8 +5775,8 @@ CVE-2020-7945
RESERVED
CVE-2020-7944
RESERVED
-CVE-2020-7943
- RESERVED
+CVE-2020-7943 (Puppet Server and PuppetDB provide useful performance and
debugging in ...)
+ TODO: check
CVE-2020-7942 (Previously, Puppet operated on a model that a node with a valid
certif ...)
- puppet <unfixed> (unimportant)
NOTE: This CVE assignment is for switching the default setting of
strict_hostname_checking,
@@ -6271,8 +6566,8 @@ CVE-2020-7600
RESERVED
CVE-2020-7599
RESERVED
-CVE-2020-7598
- RESERVED
+CVE-2020-7598 (minimist before 1.2.2 could be tricked into adding or modifying
proper ...)
+ TODO: check
CVE-2020-7597 (codecov-node npm module before 3.6.5 allows remote attackers to
execut ...)
NOT-FOR-US: codecov-node nodejs module
CVE-2020-7596 (Codecov npm module before 3.6.2 allows remote attackers to
execute arb ...)
@@ -6986,10 +7281,10 @@ CVE-2020-7256
RESERVED
CVE-2020-7255
RESERVED
-CVE-2020-7254
- RESERVED
-CVE-2020-7253
- RESERVED
+CVE-2020-7254 (Privilege Escalation vulnerability in the command line
interface in Mc ...)
+ TODO: check
+CVE-2020-7253 (Improper access control vulnerability in masvc.exe in McAfee
Agent (MA ...)
+ TODO: check
CVE-2020-7252 (Unquoted service executable path in DXL Broker in McAfee Data
eXchange ...)
NOT-FOR-US: McAfee
CVE-2020-7251 (Improper access control vulnerability in Configuration Tool in
McAfee ...)
@@ -7929,8 +8224,8 @@ CVE-2020-6860 (libmysofa 0.9.1 has a stack-based buffer
overflow in readDataVar
NOTE:
https://github.com/hoene/libmysofa/commit/c31120a4ddfe3fc705cfdd74da7e884e1866da85
CVE-2020-6859 (Multiple Insecure Direct Object Reference vulnerabilities in
includes/ ...)
NOT-FOR-US: Ultimate Member plugin for WordPress
-CVE-2020-6858
- RESERVED
+CVE-2020-6858 (Hotels Styx through 1.0.0.beta8 allows HTTP response splitting
due to ...)
+ TODO: check
CVE-2020-6857 (CarbonFTP v1.4 uses insecure proprietary password encryption
with a ha ...)
NOT-FOR-US: CarbonFTP
CVE-2020-6856 (An XML External Entity (XEE) vulnerability exists in the JOC
Cockpit c ...)
@@ -8049,7 +8344,7 @@ CVE-2020-6815
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6815
CVE-2020-6814
RESERVED
- {DSA-4639-1}
+ {DSA-4639-1 DLA-2140-1}
- firefox <unfixed>
- firefox-esr 68.6.0esr-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6814
@@ -8060,14 +8355,14 @@ CVE-2020-6813
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6813
CVE-2020-6812
RESERVED
- {DSA-4639-1}
+ {DSA-4639-1 DLA-2140-1}
- firefox <unfixed>
- firefox-esr 68.6.0esr-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6812
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6812
CVE-2020-6811
RESERVED
- {DSA-4639-1}
+ {DSA-4639-1 DLA-2140-1}
- firefox <unfixed>
- firefox-esr 68.6.0esr-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6811
@@ -8086,21 +8381,21 @@ CVE-2020-6808
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6808
CVE-2020-6807
RESERVED
- {DSA-4639-1}
+ {DSA-4639-1 DLA-2140-1}
- firefox <unfixed>
- firefox-esr 68.6.0esr-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6807
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6807
CVE-2020-6806
RESERVED
- {DSA-4639-1}
+ {DSA-4639-1 DLA-2140-1}
- firefox <unfixed>
- firefox-esr 68.6.0esr-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6806
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6806
CVE-2020-6805
RESERVED
- {DSA-4639-1}
+ {DSA-4639-1 DLA-2140-1}
- firefox <unfixed>
- firefox-esr 68.6.0esr-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6805
@@ -10005,8 +10300,8 @@ CVE-2020-5960
RESERVED
CVE-2020-5959
RESERVED
-CVE-2020-5958
- RESERVED
+CVE-2020-5958 (NVIDIA Windows GPU Display Driver, all versions, contains a
vulnerabil ...)
+ TODO: check
CVE-2020-5957 (NVIDIA Windows GPU Display Driver, all versions, contains a
vulnerabil ...)
NOT-FOR-US: Nvidia driver for Windows
CVE-2019-20358 (Trend Micro Anti-Threat Toolkit (ATTK) versions 1.62.0.1218
and below ...)
@@ -20561,8 +20856,7 @@ CVE-2020-1949
RESERVED
CVE-2020-1948
RESERVED
-CVE-2020-1947
- RESERVED
+CVE-2020-1947 (In Apache ShardingSphere(incubator) 4.0.0-RC3 and 4.0.0, the
ShardingS ...)
NOT-FOR-US: Apache ShardingSphere
CVE-2020-1946
RESERVED
@@ -21406,8 +21700,7 @@ CVE-2020-1740 [secrets readable after ansible-vault
edit]
- ansible <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1802193
NOTE: https://github.com/ansible/ansible/issues/67798
-CVE-2020-1739 [svn module leaks password when specified as a parameter]
- RESERVED
+CVE-2020-1739 (A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior,
and 2.9 ...)
- ansible <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1802178
NOTE: https://github.com/ansible/ansible/issues/67797
@@ -24778,138 +25071,138 @@ CVE-2020-0907
RESERVED
CVE-2020-0906
RESERVED
-CVE-2020-0905
- RESERVED
+CVE-2020-0905 (An remote code execution vulnerability exists in Microsoft
Dynamics Bu ...)
+ TODO: check
CVE-2020-0904
RESERVED
-CVE-2020-0903
- RESERVED
-CVE-2020-0902
- RESERVED
+CVE-2020-0903 (A cross-site-scripting (XSS) vulnerability exists when
Microsoft Excha ...)
+ TODO: check
+CVE-2020-0902 (An elevation of privilege vulnerability exists in Service
Fabric File ...)
+ TODO: check
CVE-2020-0901
RESERVED
CVE-2020-0900
RESERVED
CVE-2020-0899
RESERVED
-CVE-2020-0898
- RESERVED
-CVE-2020-0897
- RESERVED
-CVE-2020-0896
- RESERVED
+CVE-2020-0898 (An elevation of privilege vulnerability exists when the Windows
Graphi ...)
+ TODO: check
+CVE-2020-0897 (An elevation of privilege vulnerability exists when the Windows
Work F ...)
+ TODO: check
+CVE-2020-0896 (An elevation of privilege vulnerability exists when Windows
improperly ...)
+ TODO: check
CVE-2020-0895
RESERVED
-CVE-2020-0894
- RESERVED
-CVE-2020-0893
- RESERVED
-CVE-2020-0892
- RESERVED
-CVE-2020-0891
- RESERVED
+CVE-2020-0894 (A cross-site-scripting (XSS) vulnerability exists when
Microsoft Share ...)
+ TODO: check
+CVE-2020-0893 (A cross-site-scripting (XSS) vulnerability exists when
Microsoft Share ...)
+ TODO: check
+CVE-2020-0892 (A remote code execution vulnerability exists in Microsoft Word
softwar ...)
+ TODO: check
+CVE-2020-0891 (This vulnerability is caused when SharePoint Server does not
properly ...)
+ TODO: check
CVE-2020-0890
RESERVED
CVE-2020-0889
RESERVED
CVE-2020-0888
RESERVED
-CVE-2020-0887
- RESERVED
+CVE-2020-0887 (An elevation of privilege vulnerability exists in Windows when
the Win ...)
+ TODO: check
CVE-2020-0886
RESERVED
-CVE-2020-0885
- RESERVED
-CVE-2020-0884
- RESERVED
-CVE-2020-0883
- RESERVED
-CVE-2020-0882
- RESERVED
-CVE-2020-0881
- RESERVED
-CVE-2020-0880
- RESERVED
-CVE-2020-0879
- RESERVED
+CVE-2020-0885 (An information disclosure vulnerability exists when the Windows
GDI co ...)
+ TODO: check
+CVE-2020-0884 (A spoofing vulnerability exists in Microsoft Visual Studio as
it inclu ...)
+ TODO: check
+CVE-2020-0883 (A remote code execution vulnerability exists in the way that
the Windo ...)
+ TODO: check
+CVE-2020-0882 (An information disclosure vulnerability exists when the Windows
GDI co ...)
+ TODO: check
+CVE-2020-0881 (A remote code execution vulnerability exists in the way that
the Windo ...)
+ TODO: check
+CVE-2020-0880 (An information disclosure vulnerability exists when the Windows
GDI co ...)
+ TODO: check
+CVE-2020-0879 (An information disclosure vulnerability exists in the way that
the Win ...)
+ TODO: check
CVE-2020-0878
RESERVED
-CVE-2020-0877
- RESERVED
-CVE-2020-0876
- RESERVED
+CVE-2020-0877 (An elevation of privilege vulnerability exists in Windows when
the Win ...)
+ TODO: check
+CVE-2020-0876 (An information disclosure vulnerability exists when the win32k
compone ...)
+ TODO: check
CVE-2020-0875
RESERVED
-CVE-2020-0874
- RESERVED
+CVE-2020-0874 (An information disclosure vulnerability exists in the way that
the Win ...)
+ TODO: check
CVE-2020-0873
RESERVED
-CVE-2020-0872
- RESERVED
-CVE-2020-0871
- RESERVED
+CVE-2020-0872 (A remote code execution vulnerability exists in Application
Inspector ...)
+ TODO: check
+CVE-2020-0871 (An information disclosure vulnerability exists when Windows
Network Co ...)
+ TODO: check
CVE-2020-0870
RESERVED
-CVE-2020-0869
- RESERVED
-CVE-2020-0868
- RESERVED
-CVE-2020-0867
- RESERVED
-CVE-2020-0866
- RESERVED
-CVE-2020-0865
- RESERVED
-CVE-2020-0864
- RESERVED
-CVE-2020-0863
- RESERVED
+CVE-2020-0869 (A memory corruption vulnerability exists when Windows Media
Foundation ...)
+ TODO: check
+CVE-2020-0868 (An elevation of privilege vulnerability exists when the Windows
Update ...)
+ TODO: check
+CVE-2020-0867 (An elevation of privilege vulnerability exists when the Windows
Update ...)
+ TODO: check
+CVE-2020-0866 (An elevation of privilege vulnerability exists when the Windows
Work F ...)
+ TODO: check
+CVE-2020-0865 (An elevation of privilege vulnerability exists when the Windows
Work F ...)
+ TODO: check
+CVE-2020-0864 (An elevation of privilege vulnerability exists when the Windows
Work F ...)
+ TODO: check
+CVE-2020-0863 (An information vulnerability exists when Windows Connected User
Experi ...)
+ TODO: check
CVE-2020-0862
RESERVED
-CVE-2020-0861
- RESERVED
-CVE-2020-0860
- RESERVED
-CVE-2020-0859
- RESERVED
-CVE-2020-0858
- RESERVED
-CVE-2020-0857
- RESERVED
+CVE-2020-0861 (An information disclosure vulnerability exists when the Windows
Networ ...)
+ TODO: check
+CVE-2020-0860 (An elevation of privilege vulnerability exists when the Windows
Active ...)
+ TODO: check
+CVE-2020-0859 (An information vulnerability exists when Windows Modules
Installer Ser ...)
+ TODO: check
+CVE-2020-0858 (An elevation of privilege vulnerability exists when the
&quot;Publ ...)
+ TODO: check
+CVE-2020-0857 (An elevation of privilege vulnerability exists in the way that
the Win ...)
+ TODO: check
CVE-2020-0856
RESERVED
-CVE-2020-0855
- RESERVED
-CVE-2020-0854
- RESERVED
-CVE-2020-0853
- RESERVED
-CVE-2020-0852
- RESERVED
-CVE-2020-0851
- RESERVED
-CVE-2020-0850
- RESERVED
-CVE-2020-0849
- RESERVED
-CVE-2020-0848
- RESERVED
-CVE-2020-0847
- RESERVED
+CVE-2020-0855 (A remote code execution vulnerability exists in Microsoft Word
softwar ...)
+ TODO: check
+CVE-2020-0854 (An elevation of privilege vulnerability exists when Windows
Mobile Dev ...)
+ TODO: check
+CVE-2020-0853 (An information disclosure vulnerability exists in Windows when
the Win ...)
+ TODO: check
+CVE-2020-0852 (A remote code execution vulnerability exists in Microsoft Word
softwar ...)
+ TODO: check
+CVE-2020-0851 (A remote code execution vulnerability exists in Microsoft Word
softwar ...)
+ TODO: check
+CVE-2020-0850 (A remote code execution vulnerability exists in Microsoft Word
softwar ...)
+ TODO: check
+CVE-2020-0849 (An elevation of privilege vulnerability exists when Windows
improperly ...)
+ TODO: check
+CVE-2020-0848 (A remote code execution vulnerability exists in the way that
the Chakr ...)
+ TODO: check
+CVE-2020-0847 (A remote code execution vulnerability exists in the way that
the VBScr ...)
+ TODO: check
CVE-2020-0846
RESERVED
-CVE-2020-0845
- RESERVED
-CVE-2020-0844
- RESERVED
-CVE-2020-0843
- RESERVED
-CVE-2020-0842
- RESERVED
-CVE-2020-0841
- RESERVED
-CVE-2020-0840
- RESERVED
+CVE-2020-0845 (An elevation of privilege vulnerability exists in the way that
the Win ...)
+ TODO: check
+CVE-2020-0844 (An elevation of privilege vulnerability exists when Connected
User Exp ...)
+ TODO: check
+CVE-2020-0843 (An elevation of privilege vulnerability exists in Windows
Installer be ...)
+ TODO: check
+CVE-2020-0842 (An elevation of privilege vulnerability exists in Windows
Installer be ...)
+ TODO: check
+CVE-2020-0841 (An elevation of privilege vulnerability exists when Windows
improperly ...)
+ TODO: check
+CVE-2020-0840 (An elevation of privilege vulnerability exists when Windows
improperly ...)
+ TODO: check
CVE-2020-0839
RESERVED
CVE-2020-0838
@@ -24920,160 +25213,160 @@ CVE-2020-0836
RESERVED
CVE-2020-0835
RESERVED
-CVE-2020-0834
- RESERVED
-CVE-2020-0833
- RESERVED
-CVE-2020-0832
- RESERVED
-CVE-2020-0831
- RESERVED
-CVE-2020-0830
- RESERVED
-CVE-2020-0829
- RESERVED
-CVE-2020-0828
- RESERVED
-CVE-2020-0827
- RESERVED
-CVE-2020-0826
- RESERVED
-CVE-2020-0825
- RESERVED
-CVE-2020-0824
- RESERVED
-CVE-2020-0823
- RESERVED
-CVE-2020-0822
- RESERVED
+CVE-2020-0834 (An elevation of privilege vulnerability exists when Windows
improperly ...)
+ TODO: check
+CVE-2020-0833 (A remote code execution vulnerability exists in the way that
the scrip ...)
+ TODO: check
+CVE-2020-0832 (A remote code execution vulnerability exists in the way that
the scrip ...)
+ TODO: check
+CVE-2020-0831 (A remote code execution vulnerability exists in the way that
the Chakr ...)
+ TODO: check
+CVE-2020-0830 (A remote code execution vulnerability exists in the way the
scripting ...)
+ TODO: check
+CVE-2020-0829 (A remote code execution vulnerability exists in the way that
the Chakr ...)
+ TODO: check
+CVE-2020-0828 (A remote code execution vulnerability exists in the way that
the Chakr ...)
+ TODO: check
+CVE-2020-0827 (A remote code execution vulnerability exists in the way that
the Chakr ...)
+ TODO: check
+CVE-2020-0826 (A remote code execution vulnerability exists in the way that
the Chakr ...)
+ TODO: check
+CVE-2020-0825 (A remote code execution vulnerability exists in the way that
the Chakr ...)
+ TODO: check
+CVE-2020-0824 (A remote code execution vulnerability exists when Internet
Explorer im ...)
+ TODO: check
+CVE-2020-0823 (A remote code execution vulnerability exists in the way that
the Chakr ...)
+ TODO: check
+CVE-2020-0822 (An elevation of privilege vulnerability exists when the Windows
Langua ...)
+ TODO: check
CVE-2020-0821
RESERVED
-CVE-2020-0820
- RESERVED
-CVE-2020-0819
- RESERVED
+CVE-2020-0820 (An information disclosure vulnerability exists when Media
Foundation i ...)
+ TODO: check
+CVE-2020-0819 (An elevation of privilege vulnerability exists when the Windows
Device ...)
+ TODO: check
CVE-2020-0818
RESERVED
CVE-2020-0817
RESERVED
-CVE-2020-0816
- RESERVED
-CVE-2020-0815
- RESERVED
-CVE-2020-0814
- RESERVED
-CVE-2020-0813
- RESERVED
-CVE-2020-0812
- RESERVED
-CVE-2020-0811
- RESERVED
-CVE-2020-0810
- RESERVED
-CVE-2020-0809
- RESERVED
-CVE-2020-0808
- RESERVED
-CVE-2020-0807
- RESERVED
-CVE-2020-0806
- RESERVED
+CVE-2020-0816 (A remote code execution vulnerability exists when Microsoft
Edge impro ...)
+ TODO: check
+CVE-2020-0815 (An elevation of privilege vulnerability exists when Azure
DevOps Serve ...)
+ TODO: check
+CVE-2020-0814 (An elevation of privilege vulnerability exists in Windows
Installer be ...)
+ TODO: check
+CVE-2020-0813 (An information disclosure vulnerability exists when Chakra
improperly ...)
+ TODO: check
+CVE-2020-0812 (A remote code execution vulnerability exists in the way that
the Chakr ...)
+ TODO: check
+CVE-2020-0811 (A remote code execution vulnerability exists in the way that
the Chakr ...)
+ TODO: check
+CVE-2020-0810 (An elevation of privilege vulnerability exists when the
Diagnostics Hu ...)
+ TODO: check
+CVE-2020-0809 (A memory corruption vulnerability exists when Windows Media
Foundation ...)
+ TODO: check
+CVE-2020-0808 (An elevation of privilege vulnerability exists in the way the
Provisio ...)
+ TODO: check
+CVE-2020-0807 (A memory corruption vulnerability exists when Windows Media
Foundation ...)
+ TODO: check
+CVE-2020-0806 (An elevation of privilege vulnerability exists in Windows Error
Report ...)
+ TODO: check
CVE-2020-0805
RESERVED
-CVE-2020-0804
- RESERVED
-CVE-2020-0803
- RESERVED
-CVE-2020-0802
- RESERVED
-CVE-2020-0801
- RESERVED
-CVE-2020-0800
- RESERVED
-CVE-2020-0799
- RESERVED
-CVE-2020-0798
- RESERVED
-CVE-2020-0797
- RESERVED
-CVE-2020-0796
- RESERVED
-CVE-2020-0795
- RESERVED
+CVE-2020-0804 (An elevation of privilege vulnerability exists in the way that
the Win ...)
+ TODO: check
+CVE-2020-0803 (An elevation of privilege vulnerability exists in the way that
the Win ...)
+ TODO: check
+CVE-2020-0802 (An elevation of privilege vulnerability exists in the way that
the Win ...)
+ TODO: check
+CVE-2020-0801 (A memory corruption vulnerability exists when Windows Media
Foundation ...)
+ TODO: check
+CVE-2020-0800 (An elevation of privilege vulnerability exists when the Windows
Work F ...)
+ TODO: check
+CVE-2020-0799 (An elevation of privilege vulnerability exists in Microsoft
Windows wh ...)
+ TODO: check
+CVE-2020-0798 (An elevation of privilege vulnerability exists in the Windows
Installe ...)
+ TODO: check
+CVE-2020-0797 (An elevation of privilege vulnerability exists when the Windows
Work F ...)
+ TODO: check
+CVE-2020-0796 (A remote code execution vulnerability exists in the way that
the Micro ...)
+ TODO: check
+CVE-2020-0795 (This vulnerability is caused when SharePoint Server does not
properly ...)
+ TODO: check
CVE-2020-0794
RESERVED
-CVE-2020-0793
- RESERVED
+CVE-2020-0793 (An elevation of privilege vulnerability exists when the
Diagnostics Hu ...)
+ TODO: check
CVE-2020-0792 (An elevation of privilege vulnerability exists when the Windows
Graphi ...)
NOT-FOR-US: Microsoft
-CVE-2020-0791
- RESERVED
+CVE-2020-0791 (An elevation of privilege vulnerability exists when the Windows
Graphi ...)
+ TODO: check
CVE-2020-0790
RESERVED
-CVE-2020-0789
- RESERVED
-CVE-2020-0788
- RESERVED
-CVE-2020-0787
- RESERVED
-CVE-2020-0786
- RESERVED
-CVE-2020-0785
- RESERVED
+CVE-2020-0789 (A denial of service vulnerability exists when the Visual Studio
Extens ...)
+ TODO: check
+CVE-2020-0788 (An elevation of privilege vulnerability exists in Windows when
the Win ...)
+ TODO: check
+CVE-2020-0787 (An elevation of privilege vulnerability exists when the Windows
Backgr ...)
+ TODO: check
+CVE-2020-0786 (A denial of service vulnerability exists when the Windows Tile
Object ...)
+ TODO: check
+CVE-2020-0785 (An elevation of privilege vulnerability exists when the Windows
User P ...)
+ TODO: check
CVE-2020-0784
RESERVED
-CVE-2020-0783
- RESERVED
+CVE-2020-0783 (An elevation of privilege vulnerability exists when the Windows
Univer ...)
+ TODO: check
CVE-2020-0782
RESERVED
-CVE-2020-0781
- RESERVED
-CVE-2020-0780
- RESERVED
-CVE-2020-0779
- RESERVED
-CVE-2020-0778
- RESERVED
-CVE-2020-0777
- RESERVED
-CVE-2020-0776
- RESERVED
-CVE-2020-0775
- RESERVED
-CVE-2020-0774
- RESERVED
-CVE-2020-0773
- RESERVED
-CVE-2020-0772
- RESERVED
-CVE-2020-0771
- RESERVED
-CVE-2020-0770
- RESERVED
-CVE-2020-0769
- RESERVED
-CVE-2020-0768
- RESERVED
+CVE-2020-0781 (An elevation of privilege vulnerability exists when the Windows
Univer ...)
+ TODO: check
+CVE-2020-0780 (An elevation of privilege vulnerability exists in the way that
the Win ...)
+ TODO: check
+CVE-2020-0779 (An elevation of privilege vulnerability exists in the Windows
Installe ...)
+ TODO: check
+CVE-2020-0778 (An elevation of privilege vulnerability exists in the way that
the Win ...)
+ TODO: check
+CVE-2020-0777 (An elevation of privilege vulnerability exists when the Windows
Work F ...)
+ TODO: check
+CVE-2020-0776 (An elevation of privilege vulnerability exists when the Windows
AppX D ...)
+ TODO: check
+CVE-2020-0775 (An information disclosure vulnerability exists when Windows
Error Repo ...)
+ TODO: check
+CVE-2020-0774 (An information disclosure vulnerability exists when the Windows
GDI co ...)
+ TODO: check
+CVE-2020-0773 (An elevation of privilege vulnerability exists when the Windows
Active ...)
+ TODO: check
+CVE-2020-0772 (An elevation of privilege vulnerability exists when Windows
Error Repo ...)
+ TODO: check
+CVE-2020-0771 (An elevation of privilege vulnerability exists when the Windows
CSC Se ...)
+ TODO: check
+CVE-2020-0770 (An elevation of privilege vulnerability exists when the Windows
Active ...)
+ TODO: check
+CVE-2020-0769 (An elevation of privilege vulnerability exists when the Windows
CSC Se ...)
+ TODO: check
+CVE-2020-0768 (A remote code execution vulnerability exists in the way the
scripting ...)
+ TODO: check
CVE-2020-0767 (A remote code execution vulnerability exists in the way that
the Chakr ...)
NOT-FOR-US: Microsoft
CVE-2020-0766
RESERVED
-CVE-2020-0765
- RESERVED
+CVE-2020-0765 (An information disclosure vulnerability exists in the Remote
Desktop C ...)
+ TODO: check
CVE-2020-0764
RESERVED
-CVE-2020-0763
- RESERVED
-CVE-2020-0762
- RESERVED
+CVE-2020-0763 (An elevation of privilege vulnerability exists when Windows
Defender S ...)
+ TODO: check
+CVE-2020-0762 (An elevation of privilege vulnerability exists when Windows
Defender S ...)
+ TODO: check
CVE-2020-0761
RESERVED
CVE-2020-0760
RESERVED
CVE-2020-0759 (A remote code execution vulnerability exists in Microsoft Excel
softwa ...)
NOT-FOR-US: Microsoft
-CVE-2020-0758
- RESERVED
+CVE-2020-0758 (An elevation of privilege vulnerability exists when Azure
DevOps Serve ...)
+ TODO: check
CVE-2020-0757 (An elevation of privilege vulnerability exists when Windows
improperly ...)
NOT-FOR-US: Microsoft
CVE-2020-0756 (An information disclosure vulnerability exists in the
Cryptography Nex ...)
@@ -25188,8 +25481,8 @@ CVE-2020-0702 (A security feature bypass vulnerability
exists in Surface Hub whe
NOT-FOR-US: Microsoft
CVE-2020-0701 (An elevation of privilege vulnerability exists in the way that
the Win ...)
NOT-FOR-US: Microsoft
-CVE-2020-0700
- RESERVED
+CVE-2020-0700 (A Cross-site Scripting (XSS) vulnerability exists when Azure
DevOps Se ...)
+ TODO: check
CVE-2020-0699
RESERVED
CVE-2020-0698 (An information disclosure vulnerability exists when the
Telephony Serv ...)
@@ -25208,8 +25501,8 @@ CVE-2020-0692 (An elevation of privilege vulnerability
exists in Microsoft Excha
NOT-FOR-US: Microsoft
CVE-2020-0691 (An elevation of privilege vulnerability exists in Windows when
the Win ...)
NOT-FOR-US: Microsoft
-CVE-2020-0690
- RESERVED
+CVE-2020-0690 (An elevation of privilege vulnerability exists when DirectX
improperly ...)
+ TODO: check
CVE-2020-0689 (A security feature bypass vulnerability exists in secure boot,
aka 'Mi ...)
NOT-FOR-US: Microsoft
CVE-2020-0688 (A remote code execution vulnerability exists in Microsoft
Exchange sof ...)
@@ -25220,8 +25513,8 @@ CVE-2020-0686 (An elevation of privilege vulnerability
exists in the Windows Ins
NOT-FOR-US: Microsoft
CVE-2020-0685 (An elevation of privilege vulnerability exists when Windows
improperly ...)
NOT-FOR-US: Microsoft
-CVE-2020-0684
- RESERVED
+CVE-2020-0684 (A remote code execution vulnerability exists in Microsoft
Windows that ...)
+ TODO: check
CVE-2020-0683 (An elevation of privilege vulnerability exists in the Windows
Installe ...)
NOT-FOR-US: Microsoft
CVE-2020-0682 (An elevation of privilege vulnerability exists in the way that
the Win ...)
@@ -25298,8 +25591,8 @@ CVE-2020-0647 (A spoofing vulnerability exists when
Office Online does not valid
NOT-FOR-US: Microsoft
CVE-2020-0646 (A remote code execution vulnerability exists when the Microsoft
.NET F ...)
NOT-FOR-US: Microsoft
-CVE-2020-0645
- RESERVED
+CVE-2020-0645 (A tampering vulnerability exists when Microsoft IIS Server
improperly ...)
+ TODO: check
CVE-2020-0644 (An elevation of privilege vulnerability exists when Microsoft
Windows ...)
NOT-FOR-US: Microsoft
CVE-2020-0643 (An information disclosure vulnerability exists in the way that
the Win ...)
@@ -26098,20 +26391,20 @@ CVE-2020-0509
RESERVED
CVE-2020-0508
RESERVED
-CVE-2020-0507
- RESERVED
-CVE-2020-0506
- RESERVED
-CVE-2020-0505
- RESERVED
-CVE-2020-0504
- RESERVED
-CVE-2020-0503
- RESERVED
-CVE-2020-0502
- RESERVED
-CVE-2020-0501
- RESERVED
+CVE-2020-0507 (Unquoted service path in Intel(R) Graphics Drivers before
versions 15. ...)
+ TODO: check
+CVE-2020-0506 (Improper initialization in Intel(R) Graphics Drivers before
versions 1 ...)
+ TODO: check
+CVE-2020-0505 (Improper conditions check in Intel(R) Graphics Drivers before
versions ...)
+ TODO: check
+CVE-2020-0504 (Buffer overflow in Intel(R) Graphics Drivers before versions
15.40.44. ...)
+ TODO: check
+CVE-2020-0503 (Improper access control in Intel(R) Graphics Drivers before
version 26 ...)
+ TODO: check
+CVE-2020-0502 (Improper access control in Intel(R) Graphics Drivers before
version 26 ...)
+ TODO: check
+CVE-2020-0501 (Buffer overflow in Intel(R) Graphics Drivers before version
26.20.100. ...)
+ TODO: check
CVE-2019-18570
RESERVED
CVE-2019-18569
@@ -38393,10 +38686,10 @@ CVE-2019-14628
RESERVED
CVE-2019-14627
RESERVED
-CVE-2019-14626
- RESERVED
-CVE-2019-14625
- RESERVED
+CVE-2019-14626 (Improper access control in PCIe function for the Intel®
FPGA Prog ...)
+ TODO: check
+CVE-2019-14625 (Improper access control in on-card storage for the Intel®
FPGA Pr ...)
+ TODO: check
CVE-2019-14624
RESERVED
CVE-2019-14623
@@ -50651,8 +50944,8 @@ CVE-2019-10810
RESERVED
CVE-2019-10809
RESERVED
-CVE-2019-10808
- RESERVED
+CVE-2019-10808 (utilitify prior to 1.0.3 allows modification of object
properties. The ...)
+ TODO: check
CVE-2019-10807 (Blamer versions prior to 1.0.1 allows execution of arbitrary
commands. ...)
TODO: check
CVE-2019-10806 (vega-util prior to 1.13.1 allows manipulation of object
prototype. The ...)
@@ -65458,8 +65751,8 @@ CVE-2019-5650
REJECTED
CVE-2019-5649
RESERVED
-CVE-2019-5648
- RESERVED
+CVE-2019-5648 (Authenticated, administrative access to a Barracuda Load
Balancer ADC ...)
+ TODO: check
CVE-2019-5647 (The Chrome Plugin for Rapid7 AppSpider can incorrectly keep
browser se ...)
NOT-FOR-US: Chrome Plugin for Rapid7 AppSpider
CVE-2019-5646
@@ -66508,34 +66801,34 @@ CVE-2019-5184
RESERVED
CVE-2019-5183 (An exploitable type confusion vulnerability exists in AMD
ATIDXX64.DLL ...)
NOT-FOR-US: AMD ATIDXX64.DLL driver
-CVE-2019-5182
- RESERVED
-CVE-2019-5181
- RESERVED
-CVE-2019-5180
- RESERVED
-CVE-2019-5179
- RESERVED
-CVE-2019-5178
- RESERVED
-CVE-2019-5177
- RESERVED
-CVE-2019-5176
- RESERVED
-CVE-2019-5175
- RESERVED
-CVE-2019-5174
- RESERVED
-CVE-2019-5173
- RESERVED
-CVE-2019-5172
- RESERVED
-CVE-2019-5171
- RESERVED
-CVE-2019-5170
- RESERVED
-CVE-2019-5169
- RESERVED
+CVE-2019-5182 (An exploitable stack buffer overflow vulnerability
vulnerability exist ...)
+ TODO: check
+CVE-2019-5181 (An exploitable stack buffer overflow vulnerability
vulnerability exist ...)
+ TODO: check
+CVE-2019-5180 (An exploitable stack buffer overflow vulnerability
vulnerability exist ...)
+ TODO: check
+CVE-2019-5179 (An exploitable stack buffer overflow vulnerability
vulnerability exist ...)
+ TODO: check
+CVE-2019-5178 (An exploitable stack buffer overflow vulnerability
vulnerability exist ...)
+ TODO: check
+CVE-2019-5177 (An exploitable stack buffer overflow vulnerability
vulnerability exist ...)
+ TODO: check
+CVE-2019-5176 (An exploitable stack buffer overflow vulnerability
vulnerability exist ...)
+ TODO: check
+CVE-2019-5175 (An exploitable command injection vulnerability exists in the
iocheckd ...)
+ TODO: check
+CVE-2019-5174 (An exploitable command injection vulnerability exists in the
iocheckd ...)
+ TODO: check
+CVE-2019-5173 (An exploitable command injection vulnerability exists in the
iocheckd ...)
+ TODO: check
+CVE-2019-5172 (An exploitable command injection vulnerability exists in the
iocheckd ...)
+ TODO: check
+CVE-2019-5171 (An exploitable command injection vulnerability exists in the
iocheckd ...)
+ TODO: check
+CVE-2019-5170 (An exploitable command injection vulnerability exists in the
iocheckd ...)
+ TODO: check
+CVE-2019-5169 (An exploitable command injection vulnerability exists in the
iocheckd ...)
+ TODO: check
CVE-2019-5168 (An exploitable command injection vulnerability exists in the
iocheckd ...)
TODO: check
CVE-2019-5167 (An exploitable command injection vulnerability exists in the
iocheckd ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8a6aff1d262c64d3fe1b3a9c8db2e6a40f86ce9f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8a6aff1d262c64d3fe1b3a9c8db2e6a40f86ce9f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
