[Git][security-tracker-team/security-tracker][master] auto-nfu: Update Cisco rule

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1fa0131e by Moritz Muehlenhoff at 2025-08-15T16:44:49+02:00
auto-nfu: Update Cisco rule

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -575,15 +575,15 @@ CVE-2025-24766 (Improper Control of Filename for Include/Require Statement in PH
 CVE-2025-21110 (Dell Data Lakehouse, versions prior to 1.5.0.0, contains an Execution  ...)
 	NOT-FOR-US: Dell / EMC
 CVE-2025-20306 (A vulnerability in the web-based management interface of Cisco Secure  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20302 (A vulnerability in the web-based management interface of Cisco Secure  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20301 (A vulnerability in the web-based management interface of Cisco Secure  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20268 (A vulnerability in the Geolocation-Based Remote Access (RA) VPN featur ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20265 (A vulnerability in the RADIUS subsystem implementation of Cisco Secure ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20263 (A vulnerability in the web services interface of Cisco Secure Firewall ...)
 	TODO: check
 CVE-2025-20254 (A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module  ...)
@@ -601,27 +601,27 @@ CVE-2025-20243 (A vulnerability in the management and VPN web servers of Cisco S
 CVE-2025-20239 (A vulnerability in the Internet Key Exchange Version 2 (IKEv2) feature ...)
 	TODO: check
 CVE-2025-20238 (A vulnerability in Cisco Secure Firewall Adaptive Security Appliance ( ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20237 (A vulnerability in Cisco Secure Firewall Adaptive Security Appliance ( ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20235 (A vulnerability in the web-based management interface of Cisco Secure  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20225 (A vulnerability in the Internet Key Exchange Version 2 (IKEv2) feature ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20224 (A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20222 (A vulnerability in the RADIUS proxy feature for the IPsec VPN feature  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20220 (A vulnerability in the CLI of Cisco Secure Firewall Management Center  ...)
 	TODO: check
 CVE-2025-20219 (A vulnerability in the implementation of access control rules for loop ...)
 	TODO: check
 CVE-2025-20218 (A vulnerability in the web-based management interface of Cisco Secure  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20217 (A vulnerability in the packet inspection functionality of the Snort 3  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20148 (A vulnerability in the web-based management interface of Cisco Secure  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20136 (A vulnerability in the function that performs IPv4 and IPv6 Network Ad ...)
 	TODO: check
 CVE-2025-20135 (A vulnerability in the DHCP client functionality of Cisco Secure Firew ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -278,6 +278,8 @@
       - product: Cisco Digital Network Architecture Center (DNA Center)
       - product: Cisco Duo
       - product: Cisco Enterprise Chat and Email
+      - product: Cisco Firepower Management Center
+      - product: Cisco Firepower Threat Defense Software
       - product: Cisco IOS XE Catalyst SD-WAN
       - product: Cisco IOS XE Software
       - product: Cisco IOS XR Software



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fa0131ee94fd40f719a4c8c4b94b66c3cdf5b83

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fa0131ee94fd40f719a4c8c4b94b66c3cdf5b83
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250815/0594fa5d/attachment.htm>