diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-19 21:09:35 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-19 21:11:40 +0100 |
| commit | 2f2857051adc1edfd98fe8458469a7ae9cf91104 (patch) | |
| tree | 3eb8800c46040ae928f4df409516b710776491c6 | |
| parent | 5ef62cb4c22e802eed27b0dd3f1a20ac9820ce68 (diff) | |
Process NFUs
| -rw-r--r-- | data/CVE/2021.list | 8 | ||||
| -rw-r--r-- | data/CVE/2022.list | 14 |
2 files changed, 11 insertions, 11 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 34f4f56ee4..1d3c528595 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -1799,7 +1799,7 @@ CVE-2021-4173 (vim is vulnerable to Use After Free ...) CVE-2021-4172 RESERVED CVE-2021-4171 (calibre-web is vulnerable to Business Logic Errors ...) - TODO: check + NOT-FOR-US: calibre-web CVE-2021-45679 (Certain NETGEAR devices are affected by privilege escalation. This aff ...) NOT-FOR-US: Netgear CVE-2021-45678 (NETGEAR RAX200 devices before 1.0.5.132 are affected by insecure code. ...) @@ -2238,7 +2238,7 @@ CVE-2021-4166 (vim is vulnerable to Out-of-bounds Read ...) CVE-2021-4165 RESERVED CVE-2021-4164 (calibre-web is vulnerable to Cross-Site Request Forgery (CSRF) ...) - TODO: check + NOT-FOR-US: calibre-web CVE-2021-4163 RESERVED CVE-2021-4162 (archivy is vulnerable to Cross-Site Request Forgery (CSRF) ...) @@ -3936,13 +3936,13 @@ CVE-2021-44841 CVE-2021-44840 (An issue was discovered in Delta RM 1.2. Using an privileged account, ...) NOT-FOR-US: Delta RM CVE-2021-44839 (An issue was discovered in Delta RM 1.2. It is possible to request a n ...) - TODO: check + NOT-FOR-US: Delta RM CVE-2021-44838 (An issue was discovered in Delta RM 1.2. Using the /risque/risque/ajax ...) NOT-FOR-US: Delta RM CVE-2021-44837 (An issue was discovered in Delta RM 1.2. It is possible for an unprivi ...) TODO: check CVE-2021-44836 (An issue was discovered in Delta RM 1.2. The /risque/risque/workflow/r ...) - TODO: check + NOT-FOR-US: Delta RM CVE-2021-44835 RESERVED CVE-2021-44834 diff --git a/data/CVE/2022.list b/data/CVE/2022.list index 8a2270e93b..e300f24034 100644 --- a/data/CVE/2022.list +++ b/data/CVE/2022.list @@ -65,7 +65,7 @@ CVE-2022-0277 CVE-2022-23436 RESERVED CVE-2022-23435 (decoding.c in android-gif-drawable before 1.2.24 does not limit the ma ...) - TODO: check + NOT-FOR-US: android-gif-drawable CVE-2022-23434 RESERVED CVE-2022-23433 @@ -337,7 +337,7 @@ CVE-2022-23309 CVE-2022-23308 RESERVED CVE-2022-0266 (Authorization Bypass Through User-Controlled Key in Packagist remdex/l ...) - TODO: check + NOT-FOR-US: livehelperchat CVE-2022-0265 RESERVED CVE-2022-23307 (CVE-2020-9493 identified a deserialization issue that was present in A ...) @@ -355,7 +355,7 @@ CVE-2022-0262 (Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore CVE-2022-0261 (Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. ...) TODO: check CVE-2022-0260 (Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimco ...) - TODO: check + NOT-FOR-US: pimcore CVE-2022-0259 RESERVED CVE-2022-0258 (pimcore is vulnerable to Improper Neutralization of Special Elements u ...) @@ -1015,7 +1015,7 @@ CVE-2022-23085 CVE-2022-23084 RESERVED CVE-2022-23083 (NetMaster 12.2 Network Management for TCP/IP and NetMaster File Transf ...) - TODO: check + NOT-FOR-US: NetMaster CVE-2022-23082 RESERVED CVE-2022-23081 @@ -2050,7 +2050,7 @@ CVE-2022-22693 CVE-2022-22692 RESERVED CVE-2022-22691 (The password reset component deployed within Umbraco uses the hostname ...) - TODO: check + NOT-FOR-US: Umbraco CMS CVE-2022-22690 (Within the Umbraco CMS, a configuration element named "UmbracoApplicat ...) NOT-FOR-US: Umbraco CMS CVE-2022-22689 @@ -3443,7 +3443,7 @@ CVE-2022-22171 (An Improper Check for Unusual or Exceptional Conditions vulnerab CVE-2022-22170 (A Missing Release of Resource after Effective Lifetime vulnerability i ...) NOT-FOR-US: Juniper CVE-2022-22169 (An Improper Initialization vulnerability in the routing protocol daemo ...) - TODO: check + NOT-FOR-US: Juniper CVE-2022-22168 (An Improper Validation of Specified Type of Input vulnerability in the ...) NOT-FOR-US: Juniper CVE-2022-22167 (A traffic classification vulnerability in Juniper Networks Junos OS on ...) @@ -3475,7 +3475,7 @@ CVE-2022-22155 (An Uncontrolled Resource Consumption vulnerability in the handli CVE-2022-22154 (In a Junos Fusion scenario an External Control of Critical State Data ...) NOT-FOR-US: Juniper CVE-2022-22153 (An Insufficient Algorithmic Complexity combined with an Allocation of ...) - TODO: check + NOT-FOR-US: Juniper CVE-2022-22152 (A Protection Mechanism Failure vulnerability in the REST API of Junipe ...) NOT-FOR-US: Juniper CVE-2022-21800 |