[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jul 24 09:13:12 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c1636414 by security tracker role at 2025-07-24T08:13:05+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
CVE-2025-8107 (In OceanBase's Oracle tenant mode, a malicious user with specific priv ...)
TODO: check
CVE-2025-8009 (The Security Ninja \u2013 WordPress Security Plugin & Firewall plugin ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-7852 (The WPBookit plugin for WordPress is vulnerable to arbitrary file uplo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-7745 (: Buffer Over-read vulnerability in ABB AC500 V2.This issue affects AC ...)
- TODO: check
+ NOT-FOR-US: ABB group
CVE-2025-7437 (The Ebook Store plugin for WordPress is vulnerable to arbitrary file u ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-7001 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
TODO: check
CVE-2025-54377 (Roo Code is an AI-powered autonomous coding agent that lives in users' ...)
@@ -23,7 +23,7 @@ CVE-2025-53537 (LibHTP is a security-aware parser for the HTTP protocol and its
CVE-2025-4976 (An issue has been discovered in GitLab EE affecting all versions from ...)
TODO: check
CVE-2025-4968 (The WPBakery Page Builder for WordPress plugin for WordPress is vulner ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-4395 (Medtronic MyCareLink Patient Monitor has a built-in user account with ...)
TODO: check
CVE-2025-4394 (Medtronic MyCareLink Patient Monitor uses an unencrypted filesystem on ...)
@@ -37,7 +37,7 @@ CVE-2025-41240 (Three Bitnami Helm charts mount Kubernetes Secrets under a predi
CVE-2025-32019 (Harbor is an open source trusted cloud native registry project that st ...)
TODO: check
CVE-2025-26397 (SolarWinds Observability Self-Hosted is susceptible to Deserialization ...)
- TODO: check
+ NOT-FOR-US: SolarWinds
CVE-2025-1299 (An issue has been discovered in GitLab CE/EE affecting all versions st ...)
TODO: check
CVE-2025-0765 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c16364148aa917e9b0b3824c43d3ba0966a9cccd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c16364148aa917e9b0b3824c43d3ba0966a9cccd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250724/269e97b2/attachment.htm>
More information about the debian-security-tracker-commits
mailing list