[Git][security-tracker-team/security-tracker][master] Process NFUs

Fri, 27 Nov 2020 00:14:12 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
8710af61 by Salvatore Bonaccorso at 2020-11-27T09:13:41+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -349,9 +349,9 @@ CVE-2020-29147
 CVE-2020-29146
        RESERVED
 CVE-2020-29145 (In Ericsson BSCS iX R18 Billing & Rating iX R18, ADMX is a 
web bas ...)
-       TODO: check
+       NOT-FOR-US: Ericsson
 CVE-2020-29144 (In Ericsson BSCS iX R18 Billing & Rating iX R18, MX is a 
web base  ...)
-       TODO: check
+       NOT-FOR-US: Ericsson
 CVE-2020-29143
        RESERVED
 CVE-2020-29142
@@ -365,15 +365,15 @@ CVE-2020-29139
 CVE-2020-29138
        RESERVED
 CVE-2020-29137 (cPanel before 90.0.17 allows self-XSS via the WHM Transfer 
Tool interf ...)
-       TODO: check
+       NOT-FOR-US: cPanel
 CVE-2020-29136 (In cPanel before 90.0.17, 2FA can be bypassed via a 
brute-force approa ...)
-       TODO: check
+       NOT-FOR-US: cPanel
 CVE-2020-29135 (cPanel before 90.0.17 has multiple instances of URL parameter 
injectio ...)
-       TODO: check
+       NOT-FOR-US: cPanel
 CVE-2020-29134
        RESERVED
 CVE-2020-29133 (jsp/upload.jsp in Coremail XT 5.0 allows XSS via an uploaded 
personal  ...)
-       TODO: check
+       NOT-FOR-US: Coremail XT
 CVE-2020-29132
        RESERVED
 CVE-2020-29131
@@ -11211,7 +11211,7 @@ CVE-2020-25739 (An issue was discovered in the gon gem 
before gon-6.4.0 for Ruby
        [buster] - ruby-gon <no-dsa> (Minor issue)
        NOTE: 
https://github.com/gazay/gon/commit/fe3c7b2191a992386dc9edd37de5447a4e809bc7
 CVE-2020-25738 (CyberArk Endpoint Privilege Manager (EPM) 11.1.0.173 allows 
attackers  ...)
-       TODO: check
+       NOT-FOR-US: CyberArk Endpoint Privilege Manager (EPM)
 CVE-2020-25737
        RESERVED
 CVE-2020-25736
@@ -41638,7 +41638,7 @@ CVE-2020-12264
 CVE-2020-12263
        RESERVED
 CVE-2020-12262 (Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and 
TIP300 65.61 ...)
-       TODO: check
+       NOT-FOR-US: Intelbras
 CVE-2020-12261 (Open-AudIT 3.3.0 allows an XSS attack after login. ...)
        NOT-FOR-US: Open-AudIT
 CVE-2020-12260



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8710af61689ddd3b9997b3e7b94ef0f3a5e12a02

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8710af61689ddd3b9997b3e7b94ef0f3a5e12a02
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to