[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Jun 17 12:12:15 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9b5e35a3 by Moritz Muehlenhoff at 2025-06-17T13:11:54+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -198,9 +198,9 @@ CVE-2025-6114 (A vulnerability has been found in D-Link DIR-619L 2.06B01 and cla
 CVE-2025-6113 (A vulnerability, which was classified as critical, was found in Tenda  ...)
 	NOT-FOR-US: Tenda
 CVE-2025-6087 (A Server-Side Request Forgery (SSRF) vulnerability was identified in t ...)
-	TODO: check
+	NOT-FOR-US: opennextjs-cloudflare
 CVE-2025-5689 (A flaw was found in the temporary user record that authd uses in the p ...)
-	TODO: check
+	NOT-FOR-US: Authd
 CVE-2025-5309 (The chat feature within Remote Support (RS) and Privileged Remote Acce ...)
 	NOT-FOR-US: BeyondTrust
 CVE-2025-4748 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
@@ -277,7 +277,8 @@ CVE-2025-25265 (A web application for configuring the controller is accessible a
 CVE-2025-25264 (An unauthenticated remote attacker can take advantage of the current o ...)
 	NOT-FOR-US: WAGO
 CVE-2025-24388 (A vulnerability in the OTRS Admin Interface and Agent Interface (versi ...)
-	TODO: check
+	NOT-FOR-US: OTRS
+	NOTE: Could possibly affect Znuny, we'll let their security team figure it out
 CVE-2025-40916 (Mojolicious::Plugin::CaptchaPNG version 1.05 for Perl uses a weak rand ...)
 	NOT-FOR-US: Mojolicious-Plugin-CaptchaPNG
 CVE-2025-6169 (The WIMP website co-construction management platform from HAMASTAR Tec ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b5e35a3493dc2db3403c390db880000a51a755e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b5e35a3493dc2db3403c390db880000a51a755e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250617/458c37b4/attachment.htm>

More information about the debian-security-tracker-commits mailing list