From 8710af61689ddd3b9997b3e7b94ef0f3a5e12a02 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Fri, 27 Nov 2020 09:13:41 +0100 Subject: Process NFUs --- data/CVE/list | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/data/CVE/list b/data/CVE/list index 8adf6f9dc7..dd10cb4ee3 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -349,9 +349,9 @@ CVE-2020-29147 CVE-2020-29146 RESERVED CVE-2020-29145 (In Ericsson BSCS iX R18 Billing & Rating iX R18, ADMX is a web bas ...) - TODO: check + NOT-FOR-US: Ericsson CVE-2020-29144 (In Ericsson BSCS iX R18 Billing & Rating iX R18, MX is a web base ...) - TODO: check + NOT-FOR-US: Ericsson CVE-2020-29143 RESERVED CVE-2020-29142 @@ -365,15 +365,15 @@ CVE-2020-29139 CVE-2020-29138 RESERVED CVE-2020-29137 (cPanel before 90.0.17 allows self-XSS via the WHM Transfer Tool interf ...) - TODO: check + NOT-FOR-US: cPanel CVE-2020-29136 (In cPanel before 90.0.17, 2FA can be bypassed via a brute-force approa ...) - TODO: check + NOT-FOR-US: cPanel CVE-2020-29135 (cPanel before 90.0.17 has multiple instances of URL parameter injectio ...) - TODO: check + NOT-FOR-US: cPanel CVE-2020-29134 RESERVED CVE-2020-29133 (jsp/upload.jsp in Coremail XT 5.0 allows XSS via an uploaded personal ...) - TODO: check + NOT-FOR-US: Coremail XT CVE-2020-29132 RESERVED CVE-2020-29131 @@ -11211,7 +11211,7 @@ CVE-2020-25739 (An issue was discovered in the gon gem before gon-6.4.0 for Ruby [buster] - ruby-gon (Minor issue) NOTE: https://github.com/gazay/gon/commit/fe3c7b2191a992386dc9edd37de5447a4e809bc7 CVE-2020-25738 (CyberArk Endpoint Privilege Manager (EPM) 11.1.0.173 allows attackers ...) - TODO: check + NOT-FOR-US: CyberArk Endpoint Privilege Manager (EPM) CVE-2020-25737 RESERVED CVE-2020-25736 @@ -41638,7 +41638,7 @@ CVE-2020-12264 CVE-2020-12263 RESERVED CVE-2020-12262 (Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61 ...) - TODO: check + NOT-FOR-US: Intelbras CVE-2020-12261 (Open-AudIT 3.3.0 allows an XSS attack after login. ...) NOT-FOR-US: Open-AudIT CVE-2020-12260 -- cgit v1.2.3