Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
782007f4 by Salvatore Bonaccorso at 2021-07-07T22:37:46+02:00
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -18,7 +18,7 @@ CVE-2021-36214
CVE-2021-36213
RESERVED
CVE-2021-36212 (app/View/SharingGroups/view.ctp in MISP before 2.4.146 allows
stored X ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2021-3637
RESERVED
NOT-FOR-US: Keycloak
@@ -1775,7 +1775,7 @@ CVE-2021-35453
CVE-2021-35452
RESERVED
CVE-2021-35451 (In Teradici PCoIP Management Console-Enterprise 20.07.0, an
unauthenti ...)
- TODO: check
+ NOT-FOR-US: Teradici PCoIP Management Console-Enterprise
CVE-2021-35450
RESERVED
CVE-2021-35449
@@ -3567,21 +3567,21 @@ CVE-2021-34629
CVE-2021-34628
RESERVED
CVE-2021-34627 (A vulnerability in the getSelectedMimeTypesByRole function of
the WP U ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-34626 (A vulnerability in the deleteCustomType function of the WP
Upload Rest ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-34625 (A vulnerability in the saveCustomType function of the WP
Upload Restri ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-34624 (A vulnerability in the file uploader component found in the
~/src/Clas ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-34623 (A vulnerability in the image uploader component found in the
~/src/Cla ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-34622 (A vulnerability in the user profile update component found in
the ~/sr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-34621 (A vulnerability in the user registration component found in
the ~/src/ ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-34620 (The WP Fluent Forms plugin < 3.6.67 for WordPress is
vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-34619
RESERVED
CVE-2021-34618
@@ -6744,19 +6744,19 @@ CVE-2021-33223
CVE-2021-33222
RESERVED
CVE-2021-33221 (An issue was discovered in CommScope Ruckus IoT Controller
1.7.1.0 and ...)
- TODO: check
+ NOT-FOR-US: CommScope Ruckus IoT Controller
CVE-2021-33220 (An issue was discovered in CommScope Ruckus IoT Controller
1.7.1.0 and ...)
- TODO: check
+ NOT-FOR-US: CommScope Ruckus IoT Controller
CVE-2021-33219 (An issue was discovered in CommScope Ruckus IoT Controller
1.7.1.0 and ...)
- TODO: check
+ NOT-FOR-US: CommScope Ruckus IoT Controller
CVE-2021-33218 (An issue was discovered in CommScope Ruckus IoT Controller
1.7.1.0 and ...)
- TODO: check
+ NOT-FOR-US: CommScope Ruckus IoT Controller
CVE-2021-33217 (An issue was discovered in CommScope Ruckus IoT Controller
1.7.1.0 and ...)
- TODO: check
+ NOT-FOR-US: CommScope Ruckus IoT Controller
CVE-2021-33216 (An issue was discovered in CommScope Ruckus IoT Controller
1.7.1.0 and ...)
- TODO: check
+ NOT-FOR-US: CommScope Ruckus IoT Controller
CVE-2021-33215 (An issue was discovered in CommScope Ruckus IoT Controller
1.7.1.0 and ...)
- TODO: check
+ NOT-FOR-US: CommScope Ruckus IoT Controller
CVE-2021-33214
RESERVED
CVE-2021-33213
@@ -8371,71 +8371,71 @@ CVE-2021-32540 (Add announcement function in the 101EIP
system does not filter s
CVE-2021-32539 (Add event in calendar function in the 101EIP system does not
filter sp ...)
NOT-FOR-US: 101EIP system
CVE-2021-32538 (ARTWARE CMS parameter of image upload function does not filter
the typ ...)
- TODO: check
+ NOT-FOR-US: ARTWARE CMS
CVE-2021-32537 (Realtek HAD contains a driver crashed vulnerability which
allows local ...)
TODO: check
CVE-2021-32536 (The login page in the MCUsystem does not filter with special
character ...)
NOT-FOR-US: MCUsystem
CVE-2021-32535 (The vulnerability of hard-coded default credentials in QSAN
SANOS allo ...)
- TODO: check
+ NOT-FOR-US: QSAN SANOS
CVE-2021-32534 (QSAN SANOS factory reset function does not filter special
parameters. ...)
- TODO: check
+ NOT-FOR-US: QSAN SANOS
CVE-2021-32533 (The QSAN SANOS setting page does not filter special
parameters. Remote ...)
- TODO: check
+ NOT-FOR-US: QSAN SANOS
CVE-2021-32532 (Path traversal vulnerability in back-end analysis function in
QSAN XEV ...)
- TODO: check
+ NOT-FOR-US: QSAN XEVO
CVE-2021-32531 (OS command injection vulnerability in Init function in QSAN
XEVO allow ...)
- TODO: check
+ NOT-FOR-US: QSAN XEVO
CVE-2021-32530 (OS command injection vulnerability in Array function in QSAN
XEVO allo ...)
- TODO: check
+ NOT-FOR-US: QSAN XEVO
CVE-2021-32529 (Command injection vulnerability in QSAN XEVO, SANOS allows
remote unau ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32528 (Observable behavioral discrepancy vulnerability in QSAN
Storage Manage ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32527 (Path traversal vulnerability in QSAN Storage Manager allows
remote una ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32526 (Incorrect permission assignment for critical resource
vulnerability in ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32525 (The same hard-coded password in QSAN Storage Manager's in the
firmware ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32524 (Command injection vulnerability in QSAN Storage Manager allows
remote ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32523 (Improper authorization vulnerability in QSAN Storage Manager
allows re ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32522 (Improper restriction of excessive authentication attempts
vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32521 (Use of MAC address as an authenticated password in QSAN
Storage Manage ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32520 (Use of hard-coded cryptographic key vulnerability in QSAN
Storage Mana ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32519 (Use of password hash with insufficient computational effort
vulnerabil ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32518 (A vulnerability in share_link in QSAN Storage Manager allows
remote at ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32517 (Improper access control vulnerability in share_link in QSAN
Storage Ma ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32516 (Path traversal vulnerability in share_link in QSAN Storage
Manager all ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32515 (Directory listing vulnerability in share_link in QSAN Storage
Manager ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32514 (Improper access control vulnerability in FirmwareUpgrade in
QSAN Stora ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32513 (QsanTorture in QSAN Storage Manager does not filter special
parameters ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32512 (QuickInstall in QSAN Storage Manager does not filter special
parameter ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32511 (QSAN Storage Manager through directory listing vulnerability
in ViewBr ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32510 (QSAN Storage Manager through directory listing vulnerability
in antivi ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32509 (Absolute Path Traversal vulnerability in FileviewDoc in QSAN
Storage M ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32508 (Absolute Path Traversal vulnerability in FileStreaming in QSAN
Storage ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32507 (Absolute Path Traversal vulnerability in FileDownload in QSAN
Storage ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32506 (Absolute Path Traversal vulnerability in GetImage in QSAN
Storage Mana ...)
- TODO: check
+ NOT-FOR-US: QSAN
CVE-2021-32505
RESERVED
CVE-2021-32504
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/782007f43c05d6b38c6b7ea7e1dbedbab280ed35
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/782007f43c05d6b38c6b7ea7e1dbedbab280ed35
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
