[Git][security-tracker-team/security-tracker][master] Process some NFUs for Siemens

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Mar 11 20:28:23 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2416be05 by Salvatore Bonaccorso at 2025-03-11T21:26:17+01:00
Process some NFUs for Siemens

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -31,31 +31,31 @@ CVE-2025-27601 (Umbraco is a free and open source .NET content management system
 CVE-2025-27591 (A privilege escalation vulnerability existed in the Below service prio ...)
 	TODO: check
 CVE-2025-27494 (A vulnerability has been identified in SiPass integrated AC5102 (ACC-G ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-27493 (A vulnerability has been identified in SiPass integrated AC5102 (ACC-G ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-27440 (Heap overflow in some Zoom Workplace Apps may allow an authenticated u ...)
 	TODO: check
 CVE-2025-27439 (Buffer underflow in some Zoom Workplace Apps may allow an authenticate ...)
 	TODO: check
 CVE-2025-27438 (A vulnerability has been identified in Teamcenter Visualization V14.3  ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-27403 (Ratify is a verification engine as a binary executable and on Kubernet ...)
 	TODO: check
 CVE-2025-27398 (A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-27397 (A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-27396 (A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-27395 (A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-27394 (A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-27393 (A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-27392 (A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-27363 (An out of bounds write exists in FreeType versions 2.13.0 and below wh ...)
 	TODO: check
 CVE-2025-27179 (InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by ...)
@@ -131,9 +131,9 @@ CVE-2025-25747 (Cross Site Scripting vulnerability in DigitalDruid HotelDruid v.
 CVE-2025-25680 (LSC Smart Connect LSC Indoor PTZ Camera 7.6.32 is contains a RCE vulne ...)
 	TODO: check
 CVE-2025-25267 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-25266 (A vulnerability has been identified in Tecnomatix Plant Simulation V23 ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-25008 (Improper link resolution before file access ('link following') in Micr ...)
 	TODO: check
 CVE-2025-25003 (Uncontrolled search path element in Visual Studio allows an authorized ...)
@@ -259,21 +259,21 @@ CVE-2025-24043 (Improper verification of cryptographic signature in .NET allows
 CVE-2025-24035 (Sensitive data storage in improperly locked memory in Windows Remote D ...)
 	TODO: check
 CVE-2025-23402 (A vulnerability has been identified in Teamcenter Visualization V14.3  ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-23401 (A vulnerability has been identified in Teamcenter Visualization V14.3  ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-23400 (A vulnerability has been identified in Teamcenter Visualization V14.3  ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-23399 (A vulnerability has been identified in Teamcenter Visualization V14.3  ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-23398 (A vulnerability has been identified in Teamcenter Visualization V14.3  ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-23397 (A vulnerability has been identified in Teamcenter Visualization V14.3  ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-23396 (A vulnerability has been identified in Teamcenter Visualization V14.3  ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-23384 (A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6G ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2025-23360 (NVIDIA Nemo Framework contains a vulnerability where a user could caus ...)
 	TODO: check
 CVE-2025-23243 (NVIDIA Riva contains a vulnerability where a user could cause an impro ...)
@@ -315,11 +315,11 @@ CVE-2024-9157 (** UNSUPPORTED WHEN ASSIGNED **  A privilege escalation vulnerabi
 CVE-2024-56338 (IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.6 a ...)
 	NOT-FOR-US: IBM
 CVE-2024-56336 (A vulnerability has been identified in SINAMICS S200 (All versions wit ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2024-56182 (A vulnerability has been identified in SIMATIC Field PG M5 (All versio ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2024-56181 (A vulnerability has been identified in SIMATIC Field PG M5 (All versio ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2024-55597 (A improper limitation of a pathname to a restricted directory ('path t ...)
 	TODO: check
 CVE-2024-55592 (An incorrect authorization vulnerability [CWE-863] in FortiSIEM 7.2 al ...)
@@ -339,7 +339,7 @@ CVE-2024-52961 (An improper neutralization of special elements used in an OS Com
 CVE-2024-52960 (A client-side enforcement of server-side security vulnerability [CWE-6 ...)
 	TODO: check
 CVE-2024-52285 (A vulnerability has been identified in SiPass integrated AC5102 (ACC-G ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2024-51322 (Cross Site Scripting vulnerability in Zucchetti Ad Hoc Infinity 2.4 al ...)
 	TODO: check
 CVE-2024-51321 (In Zucchetti Ad Hoc Infinity 2.4, an improper check on the m_cURL para ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2416be0580c56f757929c2e6e305a7cdf4364e46

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2416be0580c56f757929c2e6e305a7cdf4364e46
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250311/2d9b7173/attachment.htm>

More information about the debian-security-tracker-commits mailing list