[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jul 14 22:22:03 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b09e6131 by Salvatore Bonaccorso at 2025-07-14T23:21:46+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -75,7 +75,7 @@ CVE-2025-7519 (A flaw was found in polkit. When processing an XML policy with 32
 CVE-2025-53689 (Blind XXE Vulnerabilities in jackrabbit-spi-commons and jackrabbit-cor ...)
 	TODO: check
 CVE-2025-53639 (MeterSphere is an open source continuous testing platform. Prior to ve ...)
-	TODO: check
+	NOT-FOR-US: MeterSphere
 CVE-2025-53623 (The Job Iteration API is an an extension for ActiveJob that make jobs  ...)
 	TODO: check
 CVE-2025-53101 (ImageMagick is free and open-source software used for editing and mani ...)
@@ -89,27 +89,27 @@ CVE-2025-53014 (ImageMagick is free and open-source software used for editing an
 CVE-2025-52363 (Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded root password h ...)
 	NOT-FOR-US: Tenda
 CVE-2025-51660 (SemCms v5.0 was discovered to contain a SQL injection vulnerability vi ...)
-	TODO: check
+	NOT-FOR-US: SemCms
 CVE-2025-51659 (SemCms v5.0 was discovered to contain a SQL injection vulnerability vi ...)
-	TODO: check
+	NOT-FOR-US: SemCms
 CVE-2025-51658 (SemCms v5.0 was discovered to contain a SQL injection vulnerability vi ...)
-	TODO: check
+	NOT-FOR-US: SemCms
 CVE-2025-51657 (SemCms v5.0 was discovered to contain a SQL injection vulnerability vi ...)
-	TODO: check
+	NOT-FOR-US: SemCms
 CVE-2025-51656 (SemCms v5.0 was discovered to contain a SQL injection vulnerability vi ...)
-	TODO: check
+	NOT-FOR-US: SemCms
 CVE-2025-51655 (SemCms v5.0 was discovered to contain a SQL injection vulnerability vi ...)
-	TODO: check
+	NOT-FOR-US: SemCms
 CVE-2025-51654 (SemCms v5.0 was discovered to contain a SQL injection vulnerability vi ...)
-	TODO: check
+	NOT-FOR-US: SemCms
 CVE-2025-51653 (SemCms v5.0 was discovered to contain a SQL injection vulnerability vi ...)
-	TODO: check
+	NOT-FOR-US: SemCms
 CVE-2025-51652 (SemCms v5.0 was discovered to contain a SQL injection vulnerability vi ...)
-	TODO: check
+	NOT-FOR-US: SemCms
 CVE-2025-51651 (An authenticated arbitrary file download vulnerability in the componen ...)
-	TODO: check
+	NOT-FOR-US: Mccms
 CVE-2025-51650 (An arbitrary file upload vulnerability in the component /controller/Pi ...)
-	TODO: check
+	NOT-FOR-US: FoxCMS
 CVE-2025-50756 (Wavlink WN535K3 20191010 was found to contain a command injection vuln ...)
 	NOT-FOR-US: Wavlink
 CVE-2025-27582 (The Secure Password extension in One Identity Password Manager before  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b09e6131809aff3a2f8f3350b16889ff835ebd0a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b09e6131809aff3a2f8f3350b16889ff835ebd0a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250714/61f54d33/attachment.htm>

More information about the debian-security-tracker-commits mailing list