From 9d910b5bf63fcd6b517c6c9354ae13ee857d0321 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Fri, 14 Feb 2020 21:26:53 +0100 Subject: Process NFUs --- data/CVE/list.2012 | 2 +- data/CVE/list.2018 | 4 ++-- data/CVE/list.2019 | 12 ++++++------ data/CVE/list.2020 | 26 +++++++++++++------------- 4 files changed, 22 insertions(+), 22 deletions(-) diff --git a/data/CVE/list.2012 b/data/CVE/list.2012 index 6161af4c75..a3554bb45f 100644 --- a/data/CVE/list.2012 +++ b/data/CVE/list.2012 @@ -1,7 +1,7 @@ CVE-2012-6721 (Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) ...) TODO: check CVE-2012-6720 (Multiple cross-site scripting (XSS) vulnerabilities in SocialEngine be ...) - TODO: check + NOT-FOR-US: SocialEngine CVE-2012-6719 (The sharebar plugin before 1.2.2 for WordPress has SQL injection. ...) NOT-FOR-US: sharebar plugin for WordPress CVE-2012-6718 (The sharebar plugin before 1.2.2 for WordPress has XSS, a different is ...) diff --git a/data/CVE/list.2018 b/data/CVE/list.2018 index b3f2005fe5..32bbf499c4 100644 --- a/data/CVE/list.2018 +++ b/data/CVE/list.2018 @@ -1,9 +1,9 @@ CVE-2018-21034 RESERVED CVE-2018-21033 (A vulnerability in Hitachi Command Suite prior to 8.6.2-00, Hitachi Au ...) - TODO: check + NOT-FOR-US: Hitachi CVE-2018-21032 (A vulnerability in Hitachi Command Suite prior to 8.7.1-00 and Hitachi ...) - TODO: check + NOT-FOR-US: Hitachi CVE-2018-21031 (Tautulli versions 2.1.38 and below allows remote attackers to bypass i ...) NOT-FOR-US: Plex Media Server CVE-2018-21030 (Jupyter Notebook before 5.5.0 does not use a CSP header to treat serve ...) diff --git a/data/CVE/list.2019 b/data/CVE/list.2019 index 9dfb529829..65773095dc 100644 --- a/data/CVE/list.2019 +++ b/data/CVE/list.2019 @@ -1,5 +1,5 @@ CVE-2019-20455 (Gateways/Gateway.php in Heartland & Global Payments PHP SDK before ...) - TODO: check + NOT-FOR-US: Heartland & Global Payments PHP SDK CVE-2019-20454 (An out-of-bounds read was discovered in PCRE before 10.34 when the pat ...) TODO: check CVE-2019-20453 @@ -1035,9 +1035,9 @@ CVE-2019-20048 (An issue was discovered on Alcatel-Lucent OmniVista 8770 devices CVE-2019-20047 (An issue was discovered on Alcatel-Lucent OmniVista 4760 devices, and ...) NOT-FOR-US: Alcatel-Lucent OmniVista 4760 devices CVE-2019-20046 (The Synergy Systems & Solutions PLC & RTU system has a vulnera ...) - TODO: check + NOT-FOR-US: Synergy Systems & Solutions PLC & RTU system CVE-2019-20045 (The Synergy Systems & Solutions PLC & RTU system has a vulnera ...) - TODO: check + NOT-FOR-US: Synergy Systems & Solutions PLC & RTU system CVE-2019-20044 RESERVED CVE-2019-20040 @@ -1853,9 +1853,9 @@ CVE-2019-19760 CVE-2019-19759 RESERVED CVE-2019-19758 (A vulnerability in the web interface of Lenovo EZ Media & Backup C ...) - TODO: check + NOT-FOR-US: Lenovo CVE-2019-19757 (An internal product security audit of Lenovo XClarity Administrator (L ...) - TODO: check + NOT-FOR-US: Lenovo CVE-2019-19756 RESERVED CVE-2019-19755 @@ -4093,7 +4093,7 @@ CVE-2019-18917 CVE-2019-18916 RESERVED CVE-2019-18915 (A potential security vulnerability has been identified with certain ve ...) - TODO: check + NOT-FOR-US: HP System Event Utility CVE-2019-18914 RESERVED CVE-2019-18913 (A potential security vulnerability with pre-boot DMA may allow unautho ...) diff --git a/data/CVE/list.2020 b/data/CVE/list.2020 index 8b3cd8a75f..fb86d3bcbd 100644 --- a/data/CVE/list.2020 +++ b/data/CVE/list.2020 @@ -309,11 +309,11 @@ CVE-2020-8845 (This vulnerability allows remote atackers to execute arbitrary co CVE-2020-8844 (This vulnerability allows remote attackers to execute arbitrary code o ...) NOT-FOR-US: Foxit Reader CVE-2020-8843 (An issue was discovered in Istio 1.3 through 1.3.6. Under certain circ ...) - TODO: check + NOT-FOR-US: itsio CVE-2020-8842 RESERVED CVE-2020-8841 (An issue was discovered in TestLink 1.9.19. The relation_type paramete ...) - TODO: check + NOT-FOR-US: TestLink CVE-2020-8840 (FasterXML jackson-databind 2.0.0 through 2.9.10.2 lacks certain xbean- ...) - jackson-databind NOTE: https://github.com/FasterXML/jackson-databind/issues/2620 @@ -369,7 +369,7 @@ CVE-2020-8817 CVE-2020-8816 RESERVED CVE-2020-8815 (Improper connection handling in the base connection handler in IKTeam ...) - TODO: check + NOT-FOR-US: BearFTP CVE-2020-8814 RESERVED CVE-2020-8813 @@ -785,9 +785,9 @@ CVE-2020-8614 (An issue was discovered on Askey AP4000W TDC_V1.01.003 devices. A CVE-2020-8613 RESERVED CVE-2020-8612 (In Progress MOVEit Transfer 2019.1 before 2019.1.4 and 2019.2 before 2 ...) - TODO: check + NOT-FOR-US: Progress MOVEit Transfer CVE-2020-8611 (In Progress MOVEit Transfer 2019.1 before 2019.1.4 and 2019.2 before 2 ...) - TODO: check + NOT-FOR-US: Progress MOVEit Transfer CVE-2020-8610 RESERVED CVE-2020-8609 @@ -3611,7 +3611,7 @@ CVE-2020-7253 CVE-2020-7252 RESERVED CVE-2020-7251 (Improper access control vulnerability in Configuration Tool in McAfee ...) - TODO: check + NOT-FOR-US: McAfee CVE-2020-7250 RESERVED CVE-2020-7249 (SMC D3G0804W 3.5.2.5-LAT_GA devices allow XSS via the SSID field on th ...) @@ -6193,19 +6193,19 @@ CVE-2020-6071 CVE-2020-6070 RESERVED CVE-2020-6069 (An exploitable out-of-bounds write vulnerability exists in the igcore1 ...) - TODO: check + NOT-FOR-US: Accusoft ImageGear CVE-2020-6068 RESERVED CVE-2020-6067 (An exploitable out-of-bounds write vulnerability exists in the igcore1 ...) - TODO: check + NOT-FOR-US: Accusoft ImageGear CVE-2020-6066 (An exploitable out-of-bounds write vulnerability exists in the igcore1 ...) - TODO: check + NOT-FOR-US: Accusoft ImageGear CVE-2020-6065 (An exploitable out-of-bounds write vulnerability exists in the bmp_par ...) - TODO: check + NOT-FOR-US: Accusoft ImageGear CVE-2020-6064 (An exploitable out-of-bounds write vulnerability exists in the uncompr ...) - TODO: check + NOT-FOR-US: Accusoft ImageGear CVE-2020-6063 (An exploitable out-of-bounds write vulnerability exists in the uncompr ...) - TODO: check + NOT-FOR-US: Accusoft ImageGear CVE-2020-6062 RESERVED CVE-2020-6061 @@ -7267,7 +7267,7 @@ CVE-2020-5534 CVE-2020-5533 RESERVED CVE-2020-5532 (ilbo App (ilbo App for Android prior to version 1.1.8 and ilbo App for ...) - TODO: check + NOT-FOR-US: ilbo App CVE-2020-5531 RESERVED CVE-2020-5530 -- cgit v1.2.3