[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu May 8 09:13:00 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
665d826c by security tracker role at 2025-05-08T08:12:54+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2025-4127 (The WP SEO Structured Data Schema plugin for WordPress is vulnerable t ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-4043 (An admin user can gain unauthorized write access to the /etc/rc.local  ...)
 	TODO: check
 CVE-2025-46826 (insa-auth is an authentication server for INSA Rouen. A minor issue al ...)
@@ -23,7 +23,7 @@ CVE-2025-41399 (When a Stream Control Transmission Protocol (SCTP) profile is co
 CVE-2025-3925 (BrightSign players running BrightSign OS series 4 prior to v8.5.53.1 o ...)
 	TODO: check
 CVE-2025-3419 (The Event Manager, Events Calendar, Tickets, Registrations \u2013 Even ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-36557 (When an HTTP profile with the Enforce RFC Compliance option is configu ...)
 	TODO: check
 CVE-2025-36546 (On an F5OS system, if the root user had previously configured the syst ...)
@@ -41,11 +41,11 @@ CVE-2025-32441 (Rack is a modular Ruby web server interface. Prior to version 2.
 CVE-2025-31644 (When running in Appliance mode, a command injection vulnerability exis ...)
 	TODO: check
 CVE-2025-0936 (On affected platforms running Arista EOS with a gNMI transport enabled ...)
-	TODO: check
+	NOT-FOR-US: Arista Networks
 CVE-2024-55651 (i-Educar is free, fully online school management software. Version 2.9 ...)
 	TODO: check
 CVE-2024-13793 (The Wolmart | Multi-Vendor Marketplace WooCommerce Theme theme for Wor ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11953
 	REJECTED
 CVE-2023-7303 (A vulnerability, which was classified as problematic, was found in q2a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/665d826ceff1bc7163e31d8f9efbc513d795d401

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/665d826ceff1bc7163e31d8f9efbc513d795d401
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250508/bf65240d/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list