[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Mar 13 20:27:25 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
986d9b2f by Salvatore Bonaccorso at 2025-03-13T21:26:52+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -25,15 +25,15 @@ CVE-2025-2080 (Optigo Networks Visual BACnet Capture Tool and Optigo Visual Netw
 CVE-2025-2079 (Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks  ...)
 	TODO: check
 CVE-2025-29998 (This vulnerability exists in the CAP back office application due to mi ...)
-	TODO: check
+	NOT-FOR-US: CAP back office application
 CVE-2025-29997 (This vulnerability exists in the CAP back office application due to im ...)
-	TODO: check
+	NOT-FOR-US: CAP back office application
 CVE-2025-29996 (This vulnerability exists in the CAP back office application due to im ...)
-	TODO: check
+	NOT-FOR-US: CAP back office application
 CVE-2025-29995 (This vulnerability exists in the CAP back office application due to a  ...)
-	TODO: check
+	NOT-FOR-US: CAP back office application
 CVE-2025-29994 (This vulnerability exists in the CAP back office application due to im ...)
-	TODO: check
+	NOT-FOR-US: CAP back office application
 CVE-2025-29773 (Froxlor is open-source server administration software. A vulnerability ...)
 	TODO: check
 CVE-2025-29768 (Vim, a text editor, is vulnerable to potential data loss with zip.vim  ...)
@@ -57,27 +57,27 @@ CVE-2025-28015 (A HTML Injection vulnerability was found in loginsystem/edit-pro
 CVE-2025-28011 (A SQL Injection was found in loginsystem/change-password.php in PHPGur ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-28010 (A cross-site scripting (XSS) vulnerability has been identified in MODX ...)
-	TODO: check
+	NOT-FOR-US: MODX
 CVE-2025-27496 (Snowflake, a platform for using artificial intelligence in the context ...)
-	TODO: check
+	NOT-FOR-US: Snowflake JDBC
 CVE-2025-27138 (DataEase is an open source business intelligence and data visualizatio ...)
-	TODO: check
+	NOT-FOR-US: DataEase
 CVE-2025-27107 (Integrated Scripting is a tool for creating scripts for handling compl ...)
 	TODO: check
 CVE-2025-27103 (DataEase is an open source business intelligence and data visualizatio ...)
-	TODO: check
+	NOT-FOR-US: DataEase
 CVE-2025-25625 (FS Inc S3150 8T2F Switch s3150-8t2f-switch-fsos-220d_118101 has a stor ...)
-	TODO: check
+	NOT-FOR-US: FS Inc S3150 8T2F Switch
 CVE-2025-25598 (Incorrect access control in the scheduled tasks console of Inova Logic ...)
-	TODO: check
+	NOT-FOR-US: Inova Logic CUSTOMER MONITOR (CM)
 CVE-2025-25363 (An authenticated stored cross-site scripting (XSS) vulnerability in Th ...)
 	TODO: check
 CVE-2025-25175 (A vulnerability has been identified in Simcenter Femap V2401 (All vers ...)
 	NOT-FOR-US: Siemens
 CVE-2025-24974 (DataEase is an open source business intelligence and data visualizatio ...)
-	TODO: check
+	NOT-FOR-US: DataEase
 CVE-2025-24053 (Improper authentication in Microsoft Dataverse allows an authorized at ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2025-21104 (Dell NetWorker, 19.11.0.3 and below versions, contain(s) an Open Redir ...)
 	NOT-FOR-US: Dell / EMC
 CVE-2025-1767 (This CVE only affects Kubernetes clusters that utilize the in-tree git ...)
@@ -127,7 +127,7 @@ CVE-2024-12858 (Delta Electronics CNCSoft-G2 Version 2.1.0.16 and prior lacks pr
 CVE-2024-10942 (The All-in-One WP Migration and Backup plugin for WordPress is vulnera ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-2271 (A vulnerability exists in Issuetrak v17.2.2 and prior that allows a lo ...)
-	TODO: check
+	NOT-FOR-US: Issuetrak
 CVE-2025-2250 (The WordPress Report Brute Force Attacks and Login Protection ReportAt ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-2107 (The ArielBrailovsky-ViralAd plugin for WordPress is vulnerable to SQL  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/986d9b2f3cfb8790d0d3dfce83c53739706af36d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/986d9b2f3cfb8790d0d3dfce83c53739706af36d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250313/1c4529a0/attachment.htm>

More information about the debian-security-tracker-commits mailing list