[Git][security-tracker-team/security-tracker][master] Process some more NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e28cc3af by Salvatore Bonaccorso at 2025-03-11T22:22:31+01:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,19 +3,19 @@ CVE-2025-2207 (A vulnerability classified as problematic was found in aitangbao
 CVE-2025-2206 (A vulnerability classified as problematic has been found in aitangbao  ...)
 	TODO: check
 CVE-2025-2196 (A vulnerability was found in MRCMS 3.1.2. It has been declared as prob ...)
-	TODO: check
+	NOT-FOR-US: MRCMS
 CVE-2025-2195 (A vulnerability was found in MRCMS 3.1.2. It has been classified as pr ...)
-	TODO: check
+	NOT-FOR-US: MRCMS
 CVE-2025-2194 (A vulnerability was found in MRCMS 3.1.2 and classified as problematic ...)
-	TODO: check
+	NOT-FOR-US: MRCMS
 CVE-2025-2193 (A vulnerability has been found in MRCMS 3.1.2 and classified as critic ...)
-	TODO: check
+	NOT-FOR-US: MRCMS
 CVE-2025-2192 (A vulnerability, which was classified as problematic, was found in Sto ...)
 	TODO: check
 CVE-2025-2191 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: Claro
 CVE-2025-2189 (This vulnerability exists in the Tinxy smart devices due to storage of ...)
-	TODO: check
+	NOT-FOR-US: Tinxy smart devices
 CVE-2025-27893 (In Archer Platform 6 through 6.14.00202.10024, an authenticated user w ...)
 	NOT-FOR-US: Archer Platform
 CVE-2025-27789 (Babel is a compiler for writing next generation JavaScript. When using ...)
@@ -291,23 +291,23 @@ CVE-2025-23242 (NVIDIA Riva contains a vulnerability where a user could cause an
 CVE-2025-22454 (Insufficiently restrictive permissions in Ivanti Secure Access Client  ...)
 	NOT-FOR-US: Ivanti
 CVE-2025-22370 (Many fields for the web configuration interface of the firmware for Me ...)
-	TODO: check
+	NOT-FOR-US: Mennekes
 CVE-2025-22369 (The ReadFile endpoint of the firmware for Mennekes Smart / Premium Cha ...)
-	TODO: check
+	NOT-FOR-US: Mennekes
 CVE-2025-22368 (The authenticated SCU firmware command of the firmware for Mennekes Sm ...)
-	TODO: check
+	NOT-FOR-US: Mennekes
 CVE-2025-22367 (The authenticated time setting capability of the firmware for Mennekes ...)
-	TODO: check
+	NOT-FOR-US: Mennekes
 CVE-2025-22366 (The authenticated firmware update capability of the firmware for Menne ...)
-	TODO: check
+	NOT-FOR-US: Mennekes
 CVE-2025-22213 (Inadequate checks in the Media Manager allowed users with "edit" privi ...)
 	TODO: check
 CVE-2025-21247 (Improper resolution of path equivalence in Windows MapUrlToZone allows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2025-21199 (Improper privilege management in Azure Agent Installer allows an autho ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2025-21180 (Heap-based buffer overflow in Windows exFAT File System allows an unau ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2025-21169 (Substance3D - Designer versions 14.1 and earlier are affected by a Hea ...)
 	NOT-FOR-US: Adobe
 CVE-2025-1550 (The Keras Model.load_model function permits arbitrary code execution,  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e28cc3afaa222ba16bf9a03f74bfe15c1476c8e4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e28cc3afaa222ba16bf9a03f74bfe15c1476c8e4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250311/d51ac09c/attachment-0001.htm>