[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Dec 23 20:47:28 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7c3477fc by Salvatore Bonaccorso at 2025-12-23T21:46:56+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -339,17 +339,17 @@ CVE-2025-62107 (Cross-Site Request Forgery (CSRF) vulnerability in PluginOps Fea
CVE-2025-62094 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-61740 (Authentication issue that does not verify the source of a packet which ...)
- TODO: check
+ NOT-FOR-US: Johnson Controls
CVE-2025-61739 (Due to Nonce reuse, attackers can perform reply attack or decrypt capt ...)
- TODO: check
+ NOT-FOR-US: Johnson Controls
CVE-2025-61738 (Under certain circumstances, attacker can capture the network key, rea ...)
- TODO: check
+ NOT-FOR-US: Johnson Controls
CVE-2025-54890 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
NOT-FOR-US: Centreon
CVE-2025-26787 (An error in the SignServer container startup logic was found in Keyfac ...)
NOT-FOR-US: Keyfactor SignServer
CVE-2025-26379 (Use of a weak pseudo-random number generator, which may allow an attac ...)
- TODO: check
+ NOT-FOR-US: Johnson Controls
CVE-2025-15033 (A vulnerability in WooCommerce 8.1 to 10.4.2 can allow logged-in custo ...)
NOT-FOR-US: WordPress plugin
CVE-2025-14273 (Mattermost versions 11.1.x <= 11.1.0, 11.0.x <= 11.0.5, 10.12.x <= 10. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c3477fc87083b6c247ec9e9006f28376092b4ab
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c3477fc87083b6c247ec9e9006f28376092b4ab
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251223/78b602fa/attachment.htm>
More information about the debian-security-tracker-commits
mailing list