[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Jun 24 09:56:15 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1e3b589c by Moritz Muehlenhoff at 2025-06-24T10:55:57+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,37 +1,37 @@
 CVE-2025-6560 (Multiple wireless router models from Sapido have an Exposure of Sensit ...)
-	TODO: check
+	NOT-FOR-US: Sapido
 CVE-2025-6559 (Multiple wireless router models from Sapido have an OS Command Injecti ...)
-	TODO: check
+	NOT-FOR-US: Sapido
 CVE-2025-6552 (A vulnerability was found in java-aodeng Hope-Boot 1.0.0. It has been  ...)
-	TODO: check
+	NOT-FOR-US: Hope-Boot
 CVE-2025-6551 (A vulnerability was found in java-aodeng Hope-Boot 1.0.0 and classifie ...)
-	TODO: check
+	NOT-FOR-US: Hope-Boot
 CVE-2025-6536 (A vulnerability has been found in Tarantool up to 3.3.1 and classified ...)
 	TODO: check
 CVE-2025-6535 (A vulnerability has been found in xxyopen/201206030 novel-plus up to 5 ...)
-	TODO: check
+	NOT-FOR-US: novel-plus
 CVE-2025-6534 (A vulnerability, which was classified as problematic, was found in xxy ...)
-	TODO: check
+	NOT-FOR-US: novel-plus
 CVE-2025-6533 (A vulnerability, which was classified as critical, has been found in x ...)
-	TODO: check
+	NOT-FOR-US: novel-plus
 CVE-2025-6532 (A vulnerability classified as problematic was found in NOYAFA/Xiami LF ...)
-	TODO: check
+	NOT-FOR-US:  NOYAFA/Xiami LF9 Pro
 CVE-2025-6531 (A vulnerability was found in SIFUSM/MZZYG BD S1 up to 20250611. It has ...)
-	TODO: check
+	NOT-FOR-US: SIFUSM/MZZYG BD S1
 CVE-2025-6530 (A vulnerability was found in 70mai M300 up to 20250611. It has been cl ...)
-	TODO: check
+	NOT-FOR-US: 70mai
 CVE-2025-6529 (A vulnerability was found in 70mai M300 up to 20250611 and classified  ...)
-	TODO: check
+	NOT-FOR-US: 70mai
 CVE-2025-6528 (A vulnerability has been found in 70mai M300 up to 20250611 and classi ...)
-	TODO: check
+	NOT-FOR-US: 70mai
 CVE-2025-6527 (A vulnerability, which was classified as problematic, was found in 70m ...)
-	TODO: check
+	NOT-FOR-US: 70mai
 CVE-2025-6526 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: 70mai
 CVE-2025-6525 (A vulnerability classified as problematic was found in 70mai 1S up to  ...)
-	TODO: check
+	NOT-FOR-US: 70mai
 CVE-2025-6524 (A vulnerability classified as problematic has been found in 70mai 1S u ...)
-	TODO: check
+	NOT-FOR-US: 70mai
 CVE-2025-5258 (The Conference Scheduler plugin for WordPress is vulnerable to Stored  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-52979
@@ -53,15 +53,15 @@ CVE-2025-52972
 CVE-2025-52971
 	REJECTED
 CVE-2025-52574 (SysmonElixir is a system monitor HTTP service in Elixir. Prior to vers ...)
-	TODO: check
+	NOT-FOR-US: SysmonElixir
 CVE-2025-52570 (Letmein is an authenticating port knocker. Prior to version 10.2.1, Th ...)
 	TODO: check
 CVE-2025-52568 (NeKernal is a free and open-source operating system stack. Prior to ve ...)
-	TODO: check
+	NOT-FOR-US: NeKernal
 CVE-2025-52566 (llama.cpp is an inference of several LLM models in C/C++. Prior to ver ...)
 	TODO: check
 CVE-2025-52562 (Convoy is a KVM server management panel for hosting businesses. In ver ...)
-	TODO: check
+	NOT-FOR-US: Convoy
 CVE-2025-52561 (HTMLSanitizer.jl is a Whitelist-based HTML sanitizer. Prior to version ...)
 	TODO: check
 CVE-2025-52560 (Kanboard is project management software that focuses on the Kanban met ...)
@@ -71,31 +71,31 @@ CVE-2025-52558 (changedetection.io is a free open source web page change detecti
 CVE-2025-50213 (Failure to Sanitize Special Elements into a Different Plane (Special E ...)
 	TODO: check
 CVE-2025-48890 (WRH-733GBK and WRH-733GWH contain an improper neutralization of specia ...)
-	TODO: check
+	NOT-FOR-US: ELECOM
 CVE-2025-48470 (Successful exploitation of the stored cross-site scripting vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-48469 (Successful exploitation of the vulnerability could allow an unauthenti ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-48468 (Successful exploitation of the vulnerability could allow an attacker t ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-48467 (Successful exploitation of the vulnerability could allow an attacker t ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-48466 (Successful exploitation of the vulnerability could allow an unauthenti ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-48463 (Successful exploitation of the vulnerability could allow an attacker t ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-48462 (Successful exploitation of the vulnerability could allow an attacker t ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-48461 (Successful exploitation of the vulnerability could allow an unauthenti ...)
-	TODO: check
+	NOT-FOR-US: Advantech
 CVE-2025-47943 (Gogs is an open source self-hosted Git service. In application version ...)
 	TODO: check
 CVE-2025-43879 (WRH-733GBK and WRH-733GWH contain an improper neutralization of specia ...)
-	TODO: check
+	NOT-FOR-US: ELECOM
 CVE-2025-43877 (WRC-1167GHBK2-S contains a stored cross-site scripting vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: ELECOM
 CVE-2025-41427 (WRC-X3000GS, WRC-X3000GSA, and WRC-X3000GSN contain an improper neutra ...)
-	TODO: check
+	NOT-FOR-US: ELECOM
 CVE-2025-3090 (An unauthenticated remote attacker can obtain limited sensitive inform ...)
 	TODO: check
 CVE-2025-36519 (Unrestricted upload of file with dangerous type issue exists in WRC-25 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e3b589cb7cfd048deefaa483a2367827880bb28

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e3b589cb7cfd048deefaa483a2367827880bb28
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250624/c3d9c23c/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list