[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jul 21 21:14:37 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a0134b93 by security tracker role at 2025-07-21T20:14:28+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,37 +9,37 @@ CVE-2025-7935 (A vulnerability, which was classified as critical, was found in f
 CVE-2025-7934 (A vulnerability, which was classified as critical, has been found in f ...)
 	TODO: check
 CVE-2025-7933 (A vulnerability classified as critical was found in Campcodes Sales an ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-7932 (A vulnerability classified as critical has been found in D-Link DIR\u2 ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2025-7931 (A vulnerability was found in code-projects Church Donation System 1.0. ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-7930 (A vulnerability was found in code-projects Church Donation System 1.0. ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-7929 (A vulnerability was found in code-projects Church Donation System 1.0. ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-7928 (A vulnerability was found in code-projects Church Donation System 1.0  ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-7927 (A vulnerability has been found in PHPGurukul Online Banquet Booking Sy ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-7926 (A vulnerability, which was classified as problematic, was found in PHP ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-7925 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-7924 (A vulnerability classified as problematic was found in PHPGurukul Onli ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-7717 (Missing Authorization vulnerability in Drupal File Download allows For ...)
-	TODO: check
+	NOT-FOR-US: Drupal core and addons
 CVE-2025-7716 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
-	TODO: check
+	NOT-FOR-US: Drupal core and addons
 CVE-2025-7715 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
-	TODO: check
+	NOT-FOR-US: Drupal core and addons
 CVE-2025-7624 (An SQL injection vulnerability in the legacy (transparent) SMTP proxy  ...)
 	TODO: check
 CVE-2025-7393 (Improper Restriction of Excessive Authentication Attempts vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Drupal core and addons
 CVE-2025-7392 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
-	TODO: check
+	NOT-FOR-US: Drupal core and addons
 CVE-2025-7382 (A command injection vulnerability in WebAdmin of Sophos Firewall versi ...)
 	TODO: check
 CVE-2025-7325 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
@@ -309,25 +309,25 @@ CVE-2025-46117 (An issue was discovered in CommScope Ruckus Unleashed prior to 2
 CVE-2025-46116 (An issue was discovered in CommScope Ruckus Unleashed prior to 200.15. ...)
 	TODO: check
 CVE-2025-44658 (In Netgear RAX30 V1.0.10.94, a PHP-FPM misconfiguration vulnerability  ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2025-44657 (In Linksys EA6350 V2.1.2, the chroot_local_user option is enabled in t ...)
-	TODO: check
+	NOT-FOR-US: Linksys
 CVE-2025-44655 (In TOTOLink A7100RU V7.4, A950RG V5.9, and T10 V5.9, the chroot_local_ ...)
 	TODO: check
 CVE-2025-44654 (In Linksys E2500 3.0.04.002, the chroot_local_user option is enabled i ...)
-	TODO: check
+	NOT-FOR-US: Linksys
 CVE-2025-44653 (In H3C GR2200 MiniGR1A0V100R016, the USERLIMIT_GLOBAL option is set to ...)
 	TODO: check
 CVE-2025-44652 (In Netgear RAX30 V1.0.10.94_3, the USERLIMIT_GLOBAL option is set to 0 ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2025-44651 (In TRENDnet TPL-430AP FW1.0, the USERLIMIT_GLOBAL option is set to 0 i ...)
-	TODO: check
+	NOT-FOR-US: TRENDnet
 CVE-2025-44650 (In Netgear R7000 V1.3.1.64_10.1.36 and EAX80 V1.0.1.70_1.0.2, the USER ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2025-44649 (In the configuration file of racoon in the TRENDnet TEW-WLC100P 2.03b0 ...)
-	TODO: check
+	NOT-FOR-US: TRENDnet
 CVE-2025-44647 (In TRENDnet TEW-WLC100P 2.03b03, the i_dont_care_about_security_and_us ...)
-	TODO: check
+	NOT-FOR-US: TRENDnet
 CVE-2025-43977 (The com.skt.prod.dialer application through 12.5.0 for Android enables ...)
 	TODO: check
 CVE-2025-43976 (The com.enflick.android.tn2ndLine application through 24.17.1.0 for An ...)
@@ -361,19 +361,19 @@ CVE-2025-36846 (An issue was discovered in Eveo URVE Web Manager 27.02.2025. The
 CVE-2025-36845 (An issue was discovered in Eveo URVE Web Manager 27.02.2025. The endpo ...)
 	TODO: check
 CVE-2025-36603 (Dell AppSync, version(s) 4.6.0.0, contains an Improper Restriction of  ...)
-	TODO: check
+	NOT-FOR-US: Dell / EMC
 CVE-2025-36107 (IBM Cognos Analytics Mobile (iOS) 1.1.0 through 1.1.22 could allow mal ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36106 (IBM Cognos Analytics Mobile (iOS) 1.1.0 through 1.1.22 could allow mal ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36062 (IBM Cognos Analytics Mobile (iOS) 1.1.0 through 1.1.22   could be vuln ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36057 (IBM Cognos Analytics Mobile (iOS) 1.1.0 through 1.1.22   is vulnerable ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-32744 (Dell AppSync, version(s) 4.6.0.0, contains an Unrestricted Upload of F ...)
-	TODO: check
+	NOT-FOR-US: Dell / EMC
 CVE-2025-30477 (Dell PowerScale OneFS, versions prior to 9.11.0.0, contains a use of a ...)
-	TODO: check
+	NOT-FOR-US: Dell / EMC
 CVE-2025-30192 (An attacker spoofing answers to ECS enabled requests sent out by the R ...)
 	TODO: check
 CVE-2025-2301 (Authorization Bypass Through User-Controlled Key vulnerability in Akbi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0134b93ad3c1a526cb2aa864d48e2f748429ee0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0134b93ad3c1a526cb2aa864d48e2f748429ee0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250721/21f6628d/attachment.htm>

More information about the debian-security-tracker-commits mailing list