diff options
author | security tracker role <sectracker@soriano.debian.org> | 2021-02-24 20:10:30 +0000 |
---|---|---|
committer | security tracker role <sectracker@soriano.debian.org> | 2021-02-24 20:10:30 +0000 |
commit | 3eee2d1a00354607b3317458b047c5c8185cd069 (patch) | |
tree | 8de28bf2ab373451fd3afae2087b9a77bfe9ea3b /data/CVE/2020.list | |
parent | 5cf7a4a3e31bf0ed2a078a03ac5b74130194990c (diff) |
automatic update
Diffstat (limited to 'data/CVE/2020.list')
-rw-r--r-- | data/CVE/2020.list | 32 |
1 files changed, 16 insertions, 16 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list index f0bfb60cde..56f958b7ff 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -5228,8 +5228,8 @@ CVE-2020-28601 RESERVED CVE-2020-28600 RESERVED -CVE-2020-28599 - RESERVED +CVE-2020-28599 (A stack-based buffer overflow vulnerability exists in the import_stl.c ...) + TODO: check CVE-2020-28598 RESERVED CVE-2020-28597 @@ -8474,8 +8474,8 @@ CVE-2020-27226 RESERVED CVE-2020-27225 RESERVED -CVE-2020-27224 - RESERVED +CVE-2020-27224 (In Eclipse Theia versions up to and including 1.2.0, the Markdown Prev ...) + TODO: check CVE-2020-27223 RESERVED CVE-2020-27222 (In Eclipse Californium version 2.3.0 to 2.6.0, the certificate based ( ...) @@ -40694,8 +40694,8 @@ CVE-2020-12704 (UliCMS before 2020.2 has PageController stored XSS. ...) NOT-FOR-US: UliCMS CVE-2020-12703 (UliCMS before 2020.2 has XSS during PackageController uninstall. ...) NOT-FOR-US: UliCMS -CVE-2020-12702 - RESERVED +CVE-2020-12702 (Weak encryption in the Quick Pairing mode in the eWeLink mobile applic ...) + TODO: check CVE-2020-12701 RESERVED CVE-2020-12700 (The direct_mail extension through 5.2.3 for TYPO3 allows Information D ...) @@ -42548,10 +42548,10 @@ CVE-2020-11989 (Apache Shiro before 1.5.3, when using Apache Shiro with Spring d NOTE: The original CVE-2020-1957 adressed in 1.5.2 introduced an encoding issue NOTE: which can (security wise) be exploited, resulting in a 1.5.3 release. This NOTE: CVE is closely related to CVE-2020-1957. -CVE-2020-11988 - RESERVED -CVE-2020-11987 - RESERVED +CVE-2020-11988 (Apache XmlGraphics Commons 2.4 is vulnerable to server-side request fo ...) + TODO: check +CVE-2020-11987 (Apache Batik 1.13 is vulnerable to server-side request forgery, caused ...) + TODO: check CVE-2020-11986 (To be able to analyze gradle projects, the build scripts need to be ex ...) - netbeans 12.1-1 [stretch] - netbeans <no-dsa> (Minor issue) @@ -52784,8 +52784,8 @@ CVE-2020-7848 (The EFM ipTIME C200 IP Camera is affected by a Command Injection NOT-FOR-US: EFM ipTIME C200 IP Camera CVE-2020-7847 (The ipTIME NAS product allows an arbitrary file upload vulnerability i ...) TODO: check -CVE-2020-7846 - RESERVED +CVE-2020-7846 (Helpcom before v10.0 contains a file download and execution vulnerabil ...) + TODO: check CVE-2020-7845 (Spamsniper 5.0 ~ 5.2.7 contain a stack-based buffer overflow vulnerabi ...) NOT-FOR-US: Spamsniper CVE-2020-7844 @@ -52804,8 +52804,8 @@ CVE-2020-7838 (A arbitrary code execution vulnerability exists in the way that t NOT-FOR-US: Smilegate STOVE Client CVE-2020-7837 (An issue was discovered in ML Report Program. There is a stack-based b ...) NOT-FOR-US: ML Report Program -CVE-2020-7836 - RESERVED +CVE-2020-7836 (VOICEYE WSActiveBridgeES versions prior to 2.1.0.3 contains a stack-ba ...) + TODO: check CVE-2020-7835 RESERVED CVE-2020-7834 @@ -59809,8 +59809,8 @@ CVE-2020-4933 (IBM Jazz Reporting Service 6.0.6.1, 7.0, 7.0.1, and 7.0.2 is vuln NOT-FOR-US: IBM CVE-2020-4932 RESERVED -CVE-2020-4931 - RESERVED +CVE-2020-4931 (IBM MQ 9.1 LTS, 9.2 LTS, and 9.1 CD AMQP Channels could allow an authe ...) + TODO: check CVE-2020-4930 RESERVED CVE-2020-4929 |