[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jul 15 21:14:22 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bec15847 by security tracker role at 2025-07-15T20:14:15+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,25 +1,25 @@
CVE-2025-7667 (The Restrict File Access plugin for WordPress is vulnerable to Cross-S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-7657 (Use after free in WebRTC in Google Chrome prior to 138.0.7204.157 allo ...)
TODO: check
CVE-2025-7656 (Integer overflow in V8 in Google Chrome prior to 138.0.7204.157 allowe ...)
TODO: check
CVE-2025-7042 (Use After Free vulnerability exists in the IPT file reading procedure ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-6974 (Use of Uninitialized Variable vulnerability exists in the JT file read ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-6973 (Use After Free vulnerability exists in the JT file reading procedure i ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-6972 (Use After Free vulnerability exists in the CATPRODUCT file reading pro ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-6971 (Use After Free vulnerability exists in the CATPRODUCT file reading pro ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-6965 (There exists a vulnerability in SQLite versions before 3.50.2 where th ...)
TODO: check
CVE-2025-6558 (Insufficient validation of untrusted input in ANGLE and GPU in Google ...)
TODO: check
CVE-2025-53959 (In JetBrains YouTrack before 2025.2.86069, 2024.3.85077, 2025.1.8619 ...)
- TODO: check
+ NOT-FOR-US: JetBrains
CVE-2025-53903 (The Scratch Channel is a news website that is under development as of ...)
TODO: check
CVE-2025-53895 (ZITADEL is an open source identity management system. Starting in vers ...)
@@ -61,11 +61,11 @@ CVE-2025-52377 (Command injection vulnerability in Nexxt Solutions NCM-X1800 Mes
CVE-2025-52376 (An authentication bypass vulnerability in the /web/um_open_telnet.cgi ...)
TODO: check
CVE-2025-52082 (In Netgear XR300 V1.0.3.38_10.3.30, a stack-based buffer overflow exis ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2025-52081 (In Netgear XR300 V1.0.3.38_10.3.30, a stack-based buffer overflow vuln ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2025-52080 (In Netgear XR300 V1.0.3.38_10.3.30, a stack-based buffer overflow vuln ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2025-50819 (Directory traversal vulnerability in beiyuouo arxiv-daily thru 2025-05 ...)
TODO: check
CVE-2025-50108 (Vulnerability in the Oracle Hyperion Financial Reporting product of Or ...)
@@ -105,7 +105,7 @@ CVE-2025-50092 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
CVE-2025-50091 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
TODO: check
CVE-2025-50090 (Vulnerability in the Oracle Applications Framework product of Oracle E ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50089 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
TODO: check
CVE-2025-50088 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
@@ -139,17 +139,17 @@ CVE-2025-50073 (Vulnerability in the Oracle WebLogic Server product of Oracle Fu
CVE-2025-50072 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
TODO: check
CVE-2025-50071 (Vulnerability in the Oracle Applications Framework product of Oracle E ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50070 (Vulnerability in the JDBC component of Oracle Database Server. Suppor ...)
TODO: check
CVE-2025-50069 (Vulnerability in the Java VM component of Oracle Database Server. Sup ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50068 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50067 (Vulnerability in Oracle Application Express (component: Strategic Plan ...)
TODO: check
CVE-2025-50066 (Vulnerability in the Oracle Database Materialized View component of Or ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50065 (Vulnerability in the Oracle GraalVM for JDK product of Oracle Java SE ...)
TODO: check
CVE-2025-50064 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
@@ -161,11 +161,11 @@ CVE-2025-50062 (Vulnerability in the PeopleSoft Enterprise HCM Global Payroll Co
CVE-2025-50061 (Vulnerability in the Primavera P6 Enterprise Project Portfolio Managem ...)
TODO: check
CVE-2025-50060 (Vulnerability in the Oracle BI Publisher product of Oracle Analytics ( ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50059 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
TODO: check
CVE-2025-4369 (The Companion Auto Update plugin for WordPress is vulnerable to Stored ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-49830 (Conjur provides secrets management and application identity for infras ...)
TODO: check
CVE-2025-49829 (Conjur provides secrets management and application identity for infras ...)
@@ -213,11 +213,11 @@ CVE-2025-34103 (An unauthenticated command injection vulnerability exists in WeP
CVE-2025-34068 (An unauthenticated remote command execution vulnerability exists in Sa ...)
TODO: check
CVE-2025-33097 (IBM QRadar SIEM 7.5 - 7.5.0 UP12 IF02 is vulnerable to stored cross-si ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-30762 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
TODO: check
CVE-2025-30760 (Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30759 (Vulnerability in the Oracle Business Intelligence Enterprise Edition p ...)
TODO: check
CVE-2025-30758 (Vulnerability in the Siebel CRM End User product of Oracle Siebel CRM ...)
@@ -231,17 +231,17 @@ CVE-2025-30753 (Vulnerability in the Oracle WebLogic Server product of Oracle Fu
CVE-2025-30752 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK product of ...)
TODO: check
CVE-2025-30751 (Vulnerability in the Oracle Database component of Oracle Database Serv ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30750 (Vulnerability in the Unified Audit component of Oracle Database Server ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30749 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
TODO: check
CVE-2025-30748 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30747 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30746 (Vulnerability in the Oracle iStore product of Oracle E-Business Suite ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30745 (Vulnerability in the Oracle MES for Process Manufacturing product of O ...)
TODO: check
CVE-2025-30744 (Vulnerability in the Oracle Mobile Field Service product of Oracle E-B ...)
@@ -249,15 +249,15 @@ CVE-2025-30744 (Vulnerability in the Oracle Mobile Field Service product of Orac
CVE-2025-30743 (Vulnerability in the Oracle Lease and Finance Management product of Or ...)
TODO: check
CVE-2025-30739 (Vulnerability in the Oracle CRM Technical Foundation product of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30483 (Dell ECS versions prior to 3.8.1.5/ ObjectScale version 4.0.0.0 contai ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-26186 (SQL Injection vulnerability in openSIS v.9.1 allows a remote attacker ...)
TODO: check
CVE-2025-24477 (A heap-based buffer overflow in Fortinet FortiOS versions 7.6.0 throug ...)
- TODO: check
+ NOT-FOR-US: Fortinet
CVE-2025-0831 (Out-Of-Bounds Read vulnerability exists in the JT file reading procedu ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2024-42650 (NanoMQ 0.17.5 was discovered to contain a segmentation fault via the c ...)
TODO: check
CVE-2025-7672 (The improper default setting in JiranSoft CrossEditor4 on Windows, Lin ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bec158476188c797f51390efd9f7f21d58836e98
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bec158476188c797f51390efd9f7f21d58836e98
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250715/c25fc004/attachment.htm>
More information about the debian-security-tracker-commits
mailing list