[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Aug 27 21:13:57 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
da8066d0 by security tracker role at 2025-08-27T20:13:48+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,65 +1,65 @@
CVE-2025-9533 (A vulnerability has been found in TOTOLINK T10 4.1.8cu.5241_B20210927. ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2025-9532 (A flaw has been found in Portabilis i-Educar up to 2.10. This impacts ...)
- TODO: check
+ NOT-FOR-US: Portabilis
CVE-2025-9531 (A vulnerability was detected in Portabilis i-Educar up to 2.10. This a ...)
- TODO: check
+ NOT-FOR-US: Portabilis
CVE-2025-9529 (A weakness has been identified in Campcodes Payroll Management System ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-9528 (A vulnerability was determined in Linksys E1700 1.0.0.4.003. This vuln ...)
- TODO: check
+ NOT-FOR-US: Linksys
CVE-2025-9527 (A vulnerability was found in Linksys E1700 1.0.0.4.003. This affects t ...)
- TODO: check
+ NOT-FOR-US: Linksys
CVE-2025-9526 (A vulnerability has been found in Linksys E1700 1.0.0.4.003. Affected ...)
- TODO: check
+ NOT-FOR-US: Linksys
CVE-2025-9525 (A flaw has been found in Linksys E1700 1.0.0.4.003. Affected by this v ...)
- TODO: check
+ NOT-FOR-US: Linksys
CVE-2025-9523 (A vulnerability was detected in Tenda AC1206 15.03.06.23. Affected is ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-5187 (A vulnerability exists in the NodeRestriction admission controller in ...)
TODO: check
CVE-2025-5101 (An issue has been discovered in GitLab CE/EE affecting all versions be ...)
TODO: check
CVE-2025-58218 (Deserialization of Untrusted Data vulnerability in enituretechnology S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58217 (Cross-Site Request Forgery (CSRF) vulnerability in GeroNikolov Instant ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58216 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58213 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58212 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58211 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58209 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58208 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58205 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58204 (URL Redirection to Untrusted Site ('Open Redirect') vulnerability in E ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58203 (Server-Side Request Forgery (SSRF) vulnerability in solacewp Solace Ex ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58202 (Cross-Site Request Forgery (CSRF) vulnerability in Plugins and Snippet ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58201 (Missing Authorization vulnerability in AfterShip & Automizely AfterShi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58198 (Missing Authorization vulnerability in Xpro Xpro Theme Builder allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58197 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58196 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58195 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58194 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58193 (Missing Authorization vulnerability in Uncanny Owl Uncanny Automator a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58192 (Missing Authorization vulnerability in Xylus Themes WP Bulk Delete all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-57821 (Basecamp's Google Sign-In adds Google sign-in to Rails applications. P ...)
TODO: check
CVE-2025-56694 (Client-side password validation (CWE-602) in lumasoft fotoShare Cloud ...)
@@ -67,9 +67,9 @@ CVE-2025-56694 (Client-side password validation (CWE-602) in lumasoft fotoShare
CVE-2025-55618 (In Hyundai Navigation App STD5W.EUR.HMC.230516.afa908d, an attacker ca ...)
TODO: check
CVE-2025-55582 (D-Link DCS-825L firmware v1.08.01 contains a vulnerability in the watc ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2025-55495 (Tenda AC6 V15.03.06.23_multi was discovered to contain a buffer overfl ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-55422 (In FoxCMS 1.2.6, there is a reflected Cross Site Scripting (XSS) vulne ...)
TODO: check
CVE-2025-54598 (The Bevy Event service through 2025-07-22, as used for eBay Seller Eve ...)
@@ -103,13 +103,13 @@ CVE-2025-50428 (In RaspAP raspap-webgui 3.3.2 and earlier, a command injection v
CVE-2025-4225 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
TODO: check
CVE-2025-43882 (Dell ThinOS 10, versions prior to 2508_10.0127, contains an Unverified ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-43730 (Dell ThinOS 10, versions prior to 2508_10.0127, contains an Improper N ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-43729 (Dell ThinOS 10, versions prior to 2508_10.0127, contains an Incorrect ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-43728 (Dell ThinOS 10, versions prior to 2508_10.0127, contain a Protection M ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-3601 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
TODO: check
CVE-2025-34161 (Coolify versions prior to v4.0.0-beta.420.7 are vulnerable to a remote ...)
@@ -175,9 +175,9 @@ CVE-2025-20292 (A vulnerability in the CLI of Cisco NX-OS Software could allow a
CVE-2025-20290 (A vulnerability in the logging feature of Cisco NX-OS Software for Cis ...)
TODO: check
CVE-2025-20262 (A vulnerability in the Protocol Independent Multicast Version 6 (PIM6) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2025-20241 (A vulnerability in the Intermediate System-to-Intermediate System (IS- ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-37777 (O2OA v9.0.3 was discovered to contain a remote code execution (RCE) vu ...)
TODO: check
CVE-2025-58050 (The PCRE2 library is a set of C functions that implement regular expre ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/da8066d0126f78bf3a7cc5d3a02bad3105bff7d4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/da8066d0126f78bf3a7cc5d3a02bad3105bff7d4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250827/05081be6/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list