[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jun 20 13:06:44 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
22e59d70 by Salvatore Bonaccorso at 2025-06-20T14:06:23+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,15 +1,15 @@
 CVE-2025-6384 (Improper Control of Dynamically-Managed Code Resources vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: CrafterCMS
 CVE-2025-6319 (A vulnerability, which was classified as critical, has been found in P ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-6318 (A vulnerability classified as critical was found in PHPGurukul Pre-Sch ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-6317 (A vulnerability classified as critical has been found in code-projects ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-6316 (A vulnerability was found in code-projects Online Shoe Store 1.0. It h ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-6315 (A vulnerability was found in code-projects Online Shoe Store 1.0. It h ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-6314 (A vulnerability was found in Campcodes Sales and Inventory System 1.0. ...)
 	NOT-FOR-US: Campcodes
 CVE-2025-6313 (A vulnerability was found in Campcodes Sales and Inventory System 1.0  ...)
@@ -25,23 +25,23 @@ CVE-2025-6309 (A vulnerability classified as critical was found in PHPGurukul Em
 CVE-2025-6308 (A vulnerability classified as critical has been found in PHPGurukul Em ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-6307 (A vulnerability was found in code-projects Online Shoe Store 1.0. It h ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-6306 (A vulnerability was found in code-projects Online Shoe Store 1.0. It h ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-6305 (A vulnerability was found in code-projects Online Shoe Store 1.0. It h ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-6304 (A vulnerability was found in code-projects Online Shoe Store 1.0 and c ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-6303 (A vulnerability has been found in code-projects Online Shoe Store 1.0  ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-6302 (A vulnerability, which was classified as critical, was found in TOTOLI ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2025-6301 (A vulnerability, which was classified as problematic, has been found i ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-6300 (A vulnerability classified as critical was found in PHPGurukul Employe ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-6299 (A vulnerability classified as critical has been found in TOTOLINK N150 ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2025-6296 (A vulnerability was found in code-projects Hostel Management System 1. ...)
 	NOT-FOR-US: code-projects
 CVE-2025-6295 (A vulnerability was found in code-projects Hostel Management System 1. ...)
@@ -65,19 +65,19 @@ CVE-2025-6285 (A vulnerability was found in PHPGurukul COVID19 Testing Managemen
 CVE-2025-6284 (A vulnerability was found in PHPGurukul Car Rental Portal 3.0. It has  ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-6283 (A vulnerability was found in xataio Xata Agent up to 0.3.0. It has bee ...)
-	TODO: check
+	NOT-FOR-US: xataio Xata Agent
 CVE-2025-6282 (A vulnerability was found in xlang-ai OpenAgents up to ff2e46440699af1 ...)
-	TODO: check
+	NOT-FOR-US: xlang-ai OpenAgents
 CVE-2025-6281 (A vulnerability has been found in OpenBMB XAgent up to 1.0.0 and class ...)
-	TODO: check
+	NOT-FOR-US: OpenBMB XAgent
 CVE-2025-6280 (A vulnerability, which was classified as critical, was found in Transf ...)
-	TODO: check
+	NOT-FOR-US: TransformerOptimus SuperAGI
 CVE-2025-6279 (A vulnerability, which was classified as critical, has been found in U ...)
-	TODO: check
+	NOT-FOR-US: Upsonic
 CVE-2025-6278 (A vulnerability classified as critical was found in Upsonic up to 0.55 ...)
-	TODO: check
+	NOT-FOR-US: Upsonic
 CVE-2025-6277 (A vulnerability classified as critical has been found in Brilliance Go ...)
-	TODO: check
+	NOT-FOR-US: Brilliance Golden Link Secondary System
 CVE-2025-6264 (Velociraptor allows collection of VQL queries packaged into Artifacts  ...)
 	TODO: check
 CVE-2025-5125 (The Custom Post Carousels with Owl WordPress plugin before 1.4.12 uses ...)
@@ -85,7 +85,7 @@ CVE-2025-5125 (The Custom Post Carousels with Owl WordPress plugin before 1.4.12
 CVE-2025-50054 (Buffer overflow in OpenVPN ovpn-dco-win version 1.3.0 and earlier and  ...)
 	TODO: check
 CVE-2025-49715 (Exposure of private personal information to an unauthorized actor in D ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2025-48058 (PowSyBl (Power System Blocks) is a framework to build power system ori ...)
 	TODO: check
 CVE-2025-47771 (PowSyBl (Power System Blocks) is a framework to build power system ori ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22e59d70ad99824546a28e03ac024a50c711d159

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22e59d70ad99824546a28e03ac024a50c711d159
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250620/282b7d54/attachment.htm>

More information about the debian-security-tracker-commits mailing list