[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Mon Apr 28 09:12:50 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3a4402aa by security tracker role at 2025-04-28T08:12:43+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
 CVE-2025-4007 (A vulnerability classified as critical was found in Tenda W12 and i24  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2025-4006 (A vulnerability classified as critical has been found in youyiio Beyon ...)
 	TODO: check
 CVE-2025-4005 (A vulnerability was found in PHPGurukul COVID19 Testing Management Sys ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-4004 (A vulnerability was found in PHPGurukul COVID19 Testing Management Sys ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-4003 (A vulnerability was found in RefindPlusRepo RefindPlus 0.14.2.AB. It h ...)
 	TODO: check
 CVE-2025-4002 (A vulnerability was found in RefindPlusRepo RefindPlus 0.14.2.AB and c ...)
@@ -21,7 +21,7 @@ CVE-2025-46689 (Ververica Platform 2.14.0 contain an Reflected XSS vulnerability
 CVE-2025-3999 (A vulnerability, which was classified as problematic, has been found i ...)
 	TODO: check
 CVE-2025-3998 (A vulnerability classified as critical was found in CodeAstro Membersh ...)
-	TODO: check
+	NOT-FOR-US: CodeAstro
 CVE-2025-3997 (A vulnerability classified as problematic has been found in dazhouda l ...)
 	TODO: check
 CVE-2025-3996 (A vulnerability was found in TOTOLINK N150RT 3.4.0-B20190525. It has b ...)
@@ -59,11 +59,11 @@ CVE-2025-26692 (Quick Agent V3 and Quick Agent V2 contain an issue with improper
 CVE-2025-22235 (EndpointRequest.to()creates a matcher for null/**if the actuator endpo ...)
 	TODO: check
 CVE-2025-0627 (The WordPress Tag, Category, and Taxonomy Manager  WordPress plugin be ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-9771 (The WP-Recall  WordPress plugin before 16.26.12 does not sanitise and  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13688 (The Admin and Site Enhancements (ASE) WordPress plugin before 7.6.10 u ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-46688 (quickjs-ng through 0.9.0 has an incorrect size calculation in JS_ReadB ...)
 	- quickjs <unfixed> (bug #1104255)
 	NOTE: https://github.com/quickjs-ng/quickjs/issues/1018



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a4402aa5a9704b1d78608de6671bb1608d92633

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a4402aa5a9704b1d78608de6671bb1608d92633
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250428/7bd3cfff/attachment.htm>
