[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jul 1 21:14:16 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9f406fb6 by security tracker role at 2025-07-01T20:14:00+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,23 +1,23 @@
 CVE-2025-6963 (A vulnerability has been found in Campcodes Employee Management System ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-6962 (A vulnerability, which was classified as critical, was found in Campco ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-6961 (A vulnerability, which was classified as critical, has been found in C ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-6960 (A vulnerability classified as critical was found in Campcodes Employee ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-6959 (A vulnerability classified as critical has been found in Campcodes Emp ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-6958 (A vulnerability was found in Campcodes Employee Management System 1.0. ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-6957 (A vulnerability was found in Campcodes Employee Management System 1.0. ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-6956 (A vulnerability was found in Campcodes Employee Management System 1.0. ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-6955 (A vulnerability was found in Campcodes Employee Management System 1.0  ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-6954 (A vulnerability has been found in Campcodes Employee Management System ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-6953 (A vulnerability, which was classified as critical, was found in TOTOLI ...)
 	TODO: check
 CVE-2025-6952 (A vulnerability, which was classified as problematic, has been found i ...)
@@ -25,13 +25,13 @@ CVE-2025-6952 (A vulnerability, which was classified as problematic, has been fo
 CVE-2025-6951 (A vulnerability classified as problematic was found in SAFECAM X300 up ...)
 	TODO: check
 CVE-2025-6756 (The Ultra Addons for Contact Form 7 plugin for WordPress is vulnerable ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6600 (An exposure of sensitive information vulnerability was identified in G ...)
-	TODO: check
+	NOT-FOR-US: Github Enterprise Server
 CVE-2025-6224 (Certificate generation in juju/utils using the cert.NewLeaf function c ...)
 	TODO: check
 CVE-2025-5314 (The Dear Flipbook \u2013 PDF Flipbook, 3D Flipbook, PDF embed, PDF vie ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-5072 (Resource leak vulnerability in ASR180x\u3001ASR190x in con_mgrallows R ...)
 	TODO: check
 CVE-2025-53107 (@cyanheads/git-mcp-server is an MCP server designed to interact with G ...)
@@ -47,7 +47,7 @@ CVE-2025-53099 (Sentry is a developer-first error tracking and performance monit
 CVE-2025-52294 (Insufficient validation of the screen lock mechanism in Trust Wallet v ...)
 	TODO: check
 CVE-2025-50641 (Tenda AC6 15.03.05.16_multi is vulnerable to Buffer Overflow in the ad ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2025-50405 (Intelbras RX1500 Router v2.2.17 and before is vulnerable to Incorrect  ...)
 	TODO: check
 CVE-2025-50404 (Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Ov ...)
@@ -71,11 +71,11 @@ CVE-2025-49481 (Improper Resource Shutdown or Release vulnerability in ASR180x \
 CVE-2025-49480 (Out-of-bounds access in ASR180x \u3001ASR190x  in lte-telephony,  This ...)
 	TODO: check
 CVE-2025-49029 (Improper Control of Generation of Code ('Code Injection') vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-48379 (Pillow is a Python imaging library. In versions 11.2.0 to before 11.3. ...)
 	TODO: check
 CVE-2025-46259 (Missing Authorization vulnerability in POSIMYTH Innovation The Plus Ad ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-45872 (zrlog v3.1.5 was discovered to contain a Server-Side Request Forgery ( ...)
 	TODO: check
 CVE-2025-45083 (Incorrect access control in Ullu (Android version v2.9.929 and IOS ver ...)
@@ -91,13 +91,13 @@ CVE-2025-41656 (An unauthenticated remote attacker can run arbitrary commands on
 CVE-2025-41648 (An unauthenticated remote attacker can bypass the login to the web app ...)
 	TODO: check
 CVE-2025-37099 (A remote code execution vulnerability exists in HPE Insight Remote Sup ...)
-	TODO: check
+	NOT-FOR-US: HPE
 CVE-2025-37098 (A path traversal vulnerability exists in HPE Insight Remote Support (I ...)
-	TODO: check
+	NOT-FOR-US: HPE
 CVE-2025-37097 (A vulnerability in HPE Insight Remote Support (IRS) prior to v7.15.0.6 ...)
-	TODO: check
+	NOT-FOR-US: HPE
 CVE-2025-36582 (Dell NetWorker, versions 19.12.0.1 and prior, contains a Selection of  ...)
-	TODO: check
+	NOT-FOR-US: Dell / EMC
 CVE-2025-34081 (The Contec Co.,Ltd. CONPROSYS HMI System (CHS) exposes a PHP phpinfo() ...)
 	TODO: check
 CVE-2025-34080 (The Contec Co.,Ltd. CONPROSYS HMI System (CHS) is vulnerable to Cross- ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f406fb61bc05a2fcb6363c6c1c89cc566f1af58

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f406fb61bc05a2fcb6363c6c1c89cc566f1af58
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250701/2ce410c3/attachment.htm>

More information about the debian-security-tracker-commits mailing list