[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Apr 17 15:21:34 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2388f193 by Moritz Muehlenhoff at 2025-04-17T16:21:15+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -27,21 +27,21 @@ CVE-2025-3294 (The WP Editor plugin for WordPress is vulnerable to arbitrary fil
 CVE-2025-3113 (A valid, authenticated user with sufficient privileges and who is awar ...)
 	TODO: check
 CVE-2025-32791 (The Backstage Scaffolder plugin houses types and utilities for buildin ...)
-	TODO: check
+	NOT-FOR-US: Backstage plugin
 CVE-2025-32789 (EspoCRM is an Open Source Customer Relationship Management software. P ...)
-	TODO: check
+	NOT-FOR-US: EspoCRM
 CVE-2025-32787 (SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Pro ...)
-	TODO: check
+	NOT-FOR-US: SoftEtherVPN
 CVE-2025-32783 (XWiki Platform is a generic wiki platform. A vulnerability in versions ...)
 	TODO: check
 CVE-2025-31478 (Zulip is an open-source team collaboration tool. Zulip supports a conf ...)
-	TODO: check
+	- zulip-server <itp> (bug #800052)
 CVE-2025-31340 (A improper control of filename for include/require statement in PHP pr ...)
-	TODO: check
+	NOT-FOR-US: Wisdom Master Pro
 CVE-2025-31339 (An unrestricted upload of file with dangerous type vulnerability in th ...)
-	TODO: check
+	NOT-FOR-US: Wisdom Master Pro
 CVE-2025-31338 (A missing authorization vulnerability in the retrieve teacher Informat ...)
-	TODO: check
+	NOT-FOR-US: Wisdom Master Pro
 CVE-2025-2903 (An attacker with knowledge of creating user accounts during VM deploym ...)
 	TODO: check
 CVE-2025-2400



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2388f193adc9eac31e79cce6fd9e2476e38f1851

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2388f193adc9eac31e79cce6fd9e2476e38f1851
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250417/0eedd4d7/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list