[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Mar 5 08:33:21 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a9f1edfb by Salvatore Bonaccorso at 2025-03-05T09:33:00+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -107,15 +107,15 @@ CVE-2025-26136 (A SQL injection vulnerability exists in mysiteforme versions pri
 CVE-2025-25426 (yshopmall <=v1.9.0 is vulnerable to SQL Injection in the image listing ...)
 	NOT-FOR-US: yshopmall
 CVE-2025-24924 (Certain functionality within GMOD Apollo does not require authenticati ...)
-	TODO: check
+	NOT-FOR-US: GMOD Apollo
 CVE-2025-23410 (When uploading organism or sequence data via the web interface,   GMOD ...)
-	TODO: check
+	NOT-FOR-US: GMOD Apollo
 CVE-2025-21092 (GMOD Apollo does not have sufficient logical or access checks when upd ...)
-	TODO: check
+	NOT-FOR-US: GMOD Apollo
 CVE-2025-20002 (After attempting to upload a file that does not meet prerequisites, GM ...)
-	TODO: check
+	NOT-FOR-US: GMOD Apollo
 CVE-2025-1967 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-1966 (A vulnerability classified as critical was found in PHPGurukul Pre-Sch ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-1965 (A vulnerability classified as critical has been found in projectworlds ...)
@@ -129,27 +129,27 @@ CVE-2025-1962 (A vulnerability was found in projectworlds Online Hotel Booking 1
 CVE-2025-1961 (A vulnerability has been found in SourceCodester Best Church Managemen ...)
 	NOT-FOR-US: SourceCodester
 CVE-2025-1959 (A vulnerability, which was classified as critical, was found in Codezi ...)
-	TODO: check
+	NOT-FOR-US: Codezips
 CVE-2025-1958 (A vulnerability, which was classified as critical, has been found in a ...)
-	TODO: check
+	NOT-FOR-US: aaluoxiang oa_system
 CVE-2025-1957 (A vulnerability classified as problematic was found in code-projects B ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-1956 (A vulnerability classified as critical has been found in code-projects ...)
 	TODO: check
 CVE-2025-1955 (A vulnerability was found in code-projects Online Class and Exam Sched ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-1954 (A vulnerability was found in PHPGurukul Human Metapneumovirus Testing  ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-1316 (Edimax IC-7100 does not properly neutralize requests. An attacker can  ...)
-	TODO: check
+	NOT-FOR-US: Edimax
 CVE-2024-9135 (On affected platforms running Arista EOS with BGP Link State configure ...)
 	NOT-FOR-US: Arista Networks
 CVE-2024-8000 (On affected platforms running Arista EOS with 802.1X configured, certa ...)
 	NOT-FOR-US: Arista Networks
 CVE-2024-0141 (NVIDIA Hopper HGX for 8-GPU contains a vulnerability in the GPU vBIOS  ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2024-0114 (NVIDIA Hopper HGX for 8-GPU contains a vulnerability in the HGX Manage ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-22870
 	- golang-1.24 1.24.1-1
 	- golang-1.23 1.23.7-1
@@ -283644,7 +283644,7 @@ CVE-2021-41721
 CVE-2021-41720
 	REJECTED
 CVE-2021-41719 (Maharashtra State Electricity Distribution Company Limited Mahavitran  ...)
-	TODO: check
+	NOT-FOR-US: Maharashtra State Electricity Distribution Company Limited Mahavitran IOS Application
 CVE-2021-41718
 	RESERVED
 CVE-2021-41717
@@ -361923,7 +361923,7 @@ CVE-2020-23440
 CVE-2020-23439
 	RESERVED
 CVE-2020-23438 (Wondershare filmora 9.2.11 is affected by Trojan Dll hijacking leading ...)
-	TODO: check
+	NOT-FOR-US: Wondershare filmora
 CVE-2020-23437
 	RESERVED
 CVE-2020-23436



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a9f1edfb4a385356abe87c17b884becca0d30124

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a9f1edfb4a385356abe87c17b884becca0d30124
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250305/61978297/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list