[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Aug 29 21:35:19 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
075e2257 by Salvatore Bonaccorso at 2025-08-29T22:33:15+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
 CVE-2025-9673 (A vulnerability was detected in Kakao \ud5e4\uc774\uce74\uce74\uc624 H ...)
-	TODO: check
+	NOT-FOR-US: Kakao App
 CVE-2025-9672 (A security vulnerability has been detected in Rejseplanen App up to 8. ...)
-	TODO: check
+	NOT-FOR-US: Rejseplanen App
 CVE-2025-9671 (A weakness has been identified in UAB Paytend App up to 2.1.9 on Andro ...)
-	TODO: check
+	NOT-FOR-US: UAB Paytend App
 CVE-2025-9670 (A security flaw has been discovered in mixmark-io turndown up to 7.2.1 ...)
 	TODO: check
 CVE-2025-9669 (A vulnerability has been found in Jinher OA 1.0. This issue affects so ...)
-	TODO: check
+	NOT-FOR-US: Jinher OA
 CVE-2025-9667 (A vulnerability was detected in code-projects Simple Grading System 1. ...)
 	NOT-FOR-US: code-projects
 CVE-2025-9666 (A security vulnerability has been detected in code-projects Simple Gra ...)
@@ -23,31 +23,31 @@ CVE-2025-9662 (A vulnerability was determined in code-projects Simple Grading Sy
 CVE-2025-9660 (A vulnerability was found in SourceCodester Bakeshop Online Ordering S ...)
 	NOT-FOR-US: SourceCodester
 CVE-2025-9659 (A vulnerability has been found in O2OA up to 10.0-410. The affected el ...)
-	TODO: check
+	NOT-FOR-US: O2OA
 CVE-2025-9658 (A flaw has been found in O2OA up to 10.0-410. Impacted is an unknown f ...)
-	TODO: check
+	NOT-FOR-US: O2OA
 CVE-2025-9657 (A vulnerability was detected in O2OA up to 10.0-410. This issue affect ...)
-	TODO: check
+	NOT-FOR-US: O2OA
 CVE-2025-9656 (A security vulnerability has been detected in PHPGurukul Directory Man ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-9655 (A weakness has been identified in O2OA up to 10.0-410. This affects an ...)
-	TODO: check
+	NOT-FOR-US: O2OA
 CVE-2025-9654 (A security flaw has been discovered in AiondaDotCom mcp-ssh up to 1.0. ...)
-	TODO: check
+	NOT-FOR-US: AiondaDotCom mcp-ssh
 CVE-2025-9653 (A vulnerability was identified in Portabilis i-Educar up to 2.10. Affe ...)
 	NOT-FOR-US: Portabilis
 CVE-2025-9652 (A vulnerability was determined in Portabilis i-Educar up to 2.10. Affe ...)
 	NOT-FOR-US: Portabilis
 CVE-2025-9651 (A vulnerability was found in shafhasan chatbox up to 156a39cde62f78532 ...)
-	TODO: check
+	NOT-FOR-US: shafhasan chatbox
 CVE-2025-9650 (A vulnerability has been found in yeqifu carRental up to 3fabb7eae93d2 ...)
-	TODO: check
+	NOT-FOR-US: carRental
 CVE-2025-9649 (A security vulnerability has been detected in appneta tcpreplay 4.5.1. ...)
 	TODO: check
 CVE-2025-9647 (A weakness has been identified in mtons mblog up to 3.5.0. This issue  ...)
-	TODO: check
+	NOT-FOR-US: mtons mblog
 CVE-2025-9646 (A security flaw has been discovered in O2OA up to 10.0-410. This vulne ...)
-	TODO: check
+	NOT-FOR-US: O2OA
 CVE-2025-9645 (A vulnerability was identified in itsourcecode Apartment Management Sy ...)
 	NOT-FOR-US: itsourcecode System
 CVE-2025-9644 (A vulnerability was determined in itsourcecode Apartment Management Sy ...)
@@ -59,19 +59,19 @@ CVE-2025-9377 (The authenticated remote command execution (RCE) vulnerability ex
 CVE-2025-9217 (The Slider Revolution plugin for WordPress is vulnerable to Path Trave ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-9071 (Erroneously using an all-zero seed for RSA-OEAP padding instead of the ...)
-	TODO: check
+	NOT-FOR-US: Oberon
 CVE-2025-8150 (The Events Addon for Elementor plugin for WordPress is vulnerable to S ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-7383 (Padding oracle attack vulnerability in Oberon microsystem AG\u2019s Ob ...)
-	TODO: check
+	NOT-FOR-US: Oberon
 CVE-2025-7071 (Padding oracle attack vulnerability in Oberon microsystem AG\u2019s oc ...)
-	TODO: check
+	NOT-FOR-US: Oberon
 CVE-2025-5808 (Improper Input Validation vulnerability in OpenText Self Service Passw ...)
 	NOT-FOR-US: OpenText
 CVE-2025-58158 (Harness Open Source is an end-to-end developer platform with Source Co ...)
 	TODO: check
 CVE-2025-56577 (An issue in Evope Core v.1.1.3.20 allows a local attacker to obtain se ...)
-	TODO: check
+	NOT-FOR-US: Evope Core
 CVE-2025-55763 (Buffer Overflow in the URI parser of CivetWeb 1.14 through 1.16 (lates ...)
 	TODO: check
 CVE-2025-55750 (Gitpod is a developer platform for cloud development environments. In  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/075e2257341183d12a8034ea32b56607e7ae0bc7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/075e2257341183d12a8034ea32b56607e7ae0bc7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250829/ef185c87/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list