[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b0ada513 by security tracker role at 2025-06-02T08:14:54+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -41,7 +41,7 @@ CVE-2025-5410 (A vulnerability was found in Mist Community Edition up to 4.7.1.
 CVE-2025-5409 (A vulnerability was found in Mist Community Edition up to 4.7.1. It ha ...)
 	TODO: check
 CVE-2025-5408 (A vulnerability was found in WAVLINK QUANTUM D2G, QUANTUM D3G, WL-WN53 ...)
-	TODO: check
+	NOT-FOR-US: Wavlink
 CVE-2025-5407 (A vulnerability has been found in chaitak-gorai Blogbook up to 92f5cf9 ...)
 	TODO: check
 CVE-2025-5113 (The Diviotec professional series exposes a web interface. One endpoint ...)
@@ -53,33 +53,33 @@ CVE-2025-49113 (Roundcube Webmail before 1.5.10 and 1.6.x before 1.6.11 allows r
 CVE-2025-49112 (setDeferredReply in networking.c in Valkey through 8.1.1 has an intege ...)
 	TODO: check
 CVE-2025-3951 (The WP-Optimize  WordPress plugin before 4.2.0 does not properly escap ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-25179 (Software installed and run as a non-privileged user may conduct improp ...)
-	TODO: check
+	NOT-FOR-US: Imagination Technologies
 CVE-2025-20678 (In ims service, there is a possible system crash due to incorrect erro ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2025-20677 (In Bluetooth driver, there is a possible system crash due to an uncaug ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2025-20676 (In wlan STA driver, there is a possible system crash due to an uncaugh ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2025-20675 (In wlan STA driver, there is a possible system crash due to an uncaugh ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2025-20674 (In wlan AP driver, there is a possible way to inject arbitrary packet  ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2025-20673 (In wlan STA driver, there is a possible system crash due to an uncaugh ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2025-20672 (In Bluetooth driver, there is a possible out of bounds write due to an ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2025-1485 (The Real Cookie Banner: GDPR & ePrivacy Cookie Consent WordPress plugi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1235 (A low privileged attacker can set the date of the devices to the 19th  ...)
 	TODO: check
 CVE-2025-0358 (During an annual penetration test conducted on behalf of Axis Communic ...)
-	TODO: check
+	NOT-FOR-US: Axis Communication
 CVE-2025-0325 (A Guard Tour VAPIX API parameter allowed the use of arbitrary values a ...)
-	TODO: check
+	NOT-FOR-US: Axis Communication
 CVE-2025-0324 (The VAPIX Device Configuration framework allowed a privilege escalatio ...)
-	TODO: check
+	NOT-FOR-US: Axis Communication
 CVE-2024-11857 (Bluetooth HCI Adaptor from Realtek has a Link Following vulnerability. ...)
 	TODO: check
 CVE-2025-XXXX [Post-Auth RCE via PHP Object Deserialization]



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b0ada51316202d977f46a3e81c09995006030d87

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b0ada51316202d977f46a3e81c09995006030d87
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250602/ed1564ab/attachment.htm>