[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jul 10 22:26:52 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
71cedf2a by Salvatore Bonaccorso at 2025-07-10T23:26:29+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21,7 +21,7 @@ CVE-2025-7408 (A vulnerability has been found in SourceCodester Zoo Management S
CVE-2025-7407 (A vulnerability, which was classified as critical, was found in Netgea ...)
NOT-FOR-US: Netgear
CVE-2025-7021 (Fullscreen API Spoofing and UI Redressing in the handling of Fullscree ...)
- TODO: check
+ NOT-FOR-US: OpenAI Operator SaaS
CVE-2025-6948 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
TODO: check
CVE-2025-6211 (A vulnerability in the DocugamiReader class of the run-llama/llama_ind ...)
@@ -67,7 +67,7 @@ CVE-2025-53378 (A missing authentication vulnerability in Trend Micro Worry-Free
CVE-2025-53371 (DiscordNotifications is an extension for MediaWiki that sends notifica ...)
TODO: check
CVE-2025-53364 (Parse Server is an open source backend that can be deployed to any inf ...)
- TODO: check
+ NOT-FOR-US: Parse Server
CVE-2025-53020 (Late Release of Memory after Effective Lifetime vulnerability in Apach ...)
TODO: check
CVE-2025-52837 (Trend Micro Password Manager (Consumer) version 5.8.0.1327 and below i ...)
@@ -95,9 +95,9 @@ CVE-2025-49462 (Cross-site scripting in certain Zoom Clients before version 6.4
CVE-2025-47813 (loginok.html in Wing FTP Server before 7.4.4 discloses the full local ...)
TODO: check
CVE-2025-47812 (In Wing FTP Server before 7.4.4. the user and admin web interfaces mis ...)
- TODO: check
+ NOT-FOR-US: Wing FTP Server
CVE-2025-47811 (In Wing FTP Server through 7.4.4, the administrative web interface (li ...)
- TODO: check
+ NOT-FOR-US: Wing FTP Server
CVE-2025-46789 (Classic buffer overflow in certain Zoom Clients for Windows may allow ...)
NOT-FOR-US: Zoom
CVE-2025-46788 (Improper certificate validation in Zoom Workplace for Linux before ver ...)
@@ -105,7 +105,7 @@ CVE-2025-46788 (Improper certificate validation in Zoom Workplace for Linux befo
CVE-2025-45662 (A cross-site scripting (XSS) vulnerability in the component /master/lo ...)
TODO: check
CVE-2025-44251 (Ecovacs Deebot T10 1.7.2 transmits Wi-Fi credentials in cleartext duri ...)
- TODO: check
+ NOT-FOR-US: Ecovacs
CVE-2025-3396 (An issue has been discovered in GitLab EE affecting all versions from ...)
TODO: check
CVE-2025-36090 (IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71cedf2aea23bf7e49c9be881a9027af1d4fbc38
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71cedf2aea23bf7e49c9be881a9027af1d4fbc38
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250710/40786aa7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list