diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2021-04-01 11:24:02 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-04-01 11:24:02 +0200 |
| commit | 160589e6e6d688eae52292f66bdc73b75b0bd0d6 (patch) | |
| tree | 4a6e8792faf9a5959632275d4f95d7bb016920b7 /data/CVE/2021.list | |
| parent | 88748b0694348ef55d75a58dab7108248e3f9487 (diff) | |
Process NFUs
Diffstat (limited to 'data/CVE/2021.list')
| -rw-r--r-- | data/CVE/2021.list | 20 |
1 files changed, 10 insertions, 10 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 86d5afa972..93426dc69a 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -1467,7 +1467,7 @@ CVE-2021-29253 CVE-2021-29252 RESERVED CVE-2021-29251 (BTCPay Server before 1.0.7.1 mishandles the policy setting in which us ...) - TODO: check + NOT-FOR-US: BTCPay Server CVE-2021-29250 RESERVED CVE-2021-29249 (BTCPay Server before 1.0.6.0, when the payment button is used, has a p ...) @@ -5671,7 +5671,7 @@ CVE-2021-27351 (The Terminate Session feature in the Telegram application throug CVE-2021-27350 RESERVED CVE-2021-27349 (Advanced Order Export before 3.1.8 for WooCommerce allows XSS, a diffe ...) - TODO: check + NOT-FOR-US: WooCommerce CVE-2021-27348 RESERVED CVE-2021-27347 @@ -6534,7 +6534,7 @@ CVE-2021-26951 (An issue was discovered in the calamine crate before 0.17.0 for CVE-2021-26944 RESERVED CVE-2021-26943 (The UX360CA BIOS through 303 on ASUS laptops allow an attacker (with t ...) - TODO: check + NOT-FOR-US: UX360CA BIOS CVE-2021-26942 RESERVED CVE-2021-26941 @@ -8682,7 +8682,7 @@ CVE-2021-26073 CVE-2021-26072 RESERVED CVE-2021-26071 (The SetFeatureEnabled.jspa resource in Jira Server and Data Center bef ...) - TODO: check + NOT-FOR-US: Atlassian CVE-2021-26070 (Affected versions of Atlassian Jira Server and Data Center allow remot ...) NOT-FOR-US: Atlassian CVE-2021-26069 (Affected versions of Atlassian Jira Server and Data Center allow unaut ...) @@ -16432,7 +16432,7 @@ CVE-2021-22540 CVE-2021-22539 RESERVED CVE-2021-22538 (A privilege escalation vulnerability impacting the Google Exposure Not ...) - TODO: check + NOT-FOR-US: Google Exposure Notification Verification Server CVE-2021-22537 RESERVED CVE-2021-22536 @@ -17579,7 +17579,7 @@ CVE-2021-21985 CVE-2021-21984 RESERVED CVE-2021-21983 (Arbitrary file write vulnerability in vRealize Operations Manager API ...) - TODO: check + NOT-FOR-US: vRealize Operations Manager API (Vmware) CVE-2021-21982 RESERVED CVE-2021-21981 @@ -17595,7 +17595,7 @@ CVE-2021-21977 CVE-2021-21976 (vSphere Replication 8.3.x prior to 8.3.1.2, 8.2.x prior to 8.2.1.1, 8. ...) NOT-FOR-US: vSphere Replication CVE-2021-21975 (Server Side Request Forgery in vRealize Operations Manager API (CVE-20 ...) - TODO: check + NOT-FOR-US: vRealize Operations Manager API (Vmware) CVE-2021-21974 (OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESX ...) NOT-FOR-US: VMware NOTE: Might affect src:openslp-dfsg, but removed years ago @@ -17996,7 +17996,7 @@ CVE-2021-21784 CVE-2021-21783 (A code execution vulnerability exists in the WS-Addressing plugin func ...) TODO: check CVE-2021-21782 (An out-of-bounds write vulnerability exists in the SGI format buffer s ...) - TODO: check + NOT-FOR-US: ImageGear CVE-2021-21781 RESERVED CVE-2021-21780 @@ -18008,13 +18008,13 @@ CVE-2021-21778 CVE-2021-21777 RESERVED CVE-2021-21776 (An out-of-bounds write vulnerability exists in the SGI Format Buffer S ...) - TODO: check + NOT-FOR-US: ImageGear CVE-2021-21775 RESERVED CVE-2021-21774 RESERVED CVE-2021-21773 (An out-of-bounds write vulnerability exists in the TIFF header count-p ...) - TODO: check + NOT-FOR-US: ImageGear CVE-2021-21772 (A use-after-free vulnerability exists in the NMR::COpcPackageReader::r ...) - lib3mf <unfixed> (bug #985092) NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1226 |