[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f6f1ea3e by Salvatore Bonaccorso at 2025-07-11T10:44:25+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -49,7 +49,7 @@ CVE-2025-5392 (The GB Forms DB plugin for WordPress is vulnerable to Remote Code
 CVE-2025-5241 (Overly Restrictive Account Lockout Mechanism vulnerability in Mitsubis ...)
 	NOT-FOR-US: Mitsubishi
 CVE-2025-5028 (Installation file of ESET security products on Windows   allow an atta ...)
-	TODO: check
+	NOT-FOR-US: ESET
 CVE-2025-53864 (Connect2id Nimbus JOSE + JWT before 10.0.2 allows a remote attacker to ...)
 	TODO: check
 CVE-2025-53852
@@ -65,39 +65,39 @@ CVE-2025-53848
 CVE-2025-53637 (Meshtastic is an open source mesh networking solution. The main_matrix ...)
 	TODO: check
 CVE-2025-53519 (A vulnerability exists in Advantech iView versions prior to 5.7.05 bui ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-53515 (A vulnerability exists in Advantech iView that allows for SQL injectio ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-53509 (A vulnerability exists in Advantech iView that allows for argument  in ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-53475 (A vulnerability exists in Advantech iView that could allow for SQL  in ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-53471 (Emerson ValveLink products  receive input or data, but it do not valid ...)
-	TODO: check
+	NOT-FOR-US: Emerson
 CVE-2025-53397 (A vulnerability exists in Advantech iView versions prior to 5.7.05 bui ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-52579 (Emerson ValveLink Products store sensitive information in cleartext in ...)
-	TODO: check
+	NOT-FOR-US: Emerson
 CVE-2025-52577 (A vulnerability exists in Advantech iView that could allow SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-52459 (A vulnerability exists in Advantech iView that allows for argument  in ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-50109 (Emerson ValveLink Products store sensitive information in cleartext wi ...)
-	TODO: check
+	NOT-FOR-US: Emerson
 CVE-2025-4662 (Brocade SANnav before SANnav 2.4.0a logs plaintext passphrases in the  ...)
 	NOT-FOR-US: Brocade
 CVE-2025-4593 (The WP Register Profile With Shortcode plugin for WordPress is vulnera ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-48891 (A vulnerability exists in Advantech iView that could allow for SQL  in ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-48496 (Emerson ValveLink products  use a fixed or controlled search path to f ...)
-	TODO: check
+	NOT-FOR-US: Emerson
 CVE-2025-46704 (A vulnerability exists in Advantech iView in  NetworkServlet.processIm ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-46358 (Emerson ValveLink products  do not use or incorrectly uses a protectio ...)
-	TODO: check
+	NOT-FOR-US: Emerson
 CVE-2025-41442 (A vulnerability exists in Advantech iView versions prior to 5.7.05 bui ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-3947 (The Honeywell Experion PKS contains an Integer Underflow   vulnerabili ...)
 	NOT-FOR-US: Honeywell
 CVE-2025-3946 (The Honeywell Experion PKS   and OneWireless WDM  contains a Deploymen ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f6f1ea3e6ff50903486f894b9a9f6e91204597e7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f6f1ea3e6ff50903486f894b9a9f6e91204597e7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250711/3a63f95f/attachment-0001.htm>