[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu May 22 09:26:11 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f0545e9d by Moritz Muehlenhoff at 2025-05-22T10:25:53+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,51 +7,51 @@ CVE-2025-5057 (A vulnerability was found in Campcodes Online Shopping Portal 1.0
 CVE-2025-5056 (A vulnerability was found in Campcodes Online Shopping Portal 1.0. It  ...)
 	NOT-FOR-US: Campcodes
 CVE-2025-5053 (A vulnerability, which was classified as critical, has been found in F ...)
-	TODO: check
+	NOT-FOR-US: FreeFloat FTP Server
 CVE-2025-5052 (A vulnerability classified as critical was found in FreeFloat FTP Serv ...)
-	TODO: check
+	NOT-FOR-US: FreeFloat FTP Server
 CVE-2025-4133 (The Blog2Social: Social Media Auto Post & Scheduler WordPress plugin b ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-48070 (Plane is open-source project management software. Versions prior to 0. ...)
-	TODO: check
+	NOT-FOR-US: Plane
 CVE-2025-47947 (ModSecurity is an open source, cross platform web application firewall ...)
 	TODO: check
 CVE-2025-47942 (The Open edX Platform is a learning management platform. Prior to comm ...)
-	TODO: check
+	NOT-FOR-US: Open edX
 CVE-2025-45753 (A vulnerability in Vtiger CRM Open Source Edition v8.3.0 allows an att ...)
-	TODO: check
+	NOT-FOR-US: Vtiger CRM
 CVE-2025-44040 (An issue in OrangeHRM v.5.7 allows an attacker to escalate privileges  ...)
-	TODO: check
+	NOT-FOR-US: OrangeHRM
 CVE-2025-3887 (GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code E ...)
 	TODO: check
 CVE-2025-3885 (Harman Becker MGU21 Bluetooth Improper Input Validation Denial-of-Serv ...)
-	TODO: check
+	NOT-FOR-US: Harman Becker
 CVE-2025-3884 (Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vul ...)
-	TODO: check
+	NOT-FOR-US: Cloudera Hue
 CVE-2025-3883 (eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execu ...)
-	TODO: check
+	NOT-FOR-US: eCharge Hardy Barth cPH2
 CVE-2025-3882 (eCharge Hardy Barth cPH2 nwcheckexec.php dest Command Injection Remote ...)
-	TODO: check
+	NOT-FOR-US: eCharge Hardy Barth cPH2
 CVE-2025-3881 (eCharge Hardy Barth cPH2 check_req.php ntp Command Injection Remote Co ...)
-	TODO: check
+	NOT-FOR-US: eCharge Hardy Barth cPH2
 CVE-2025-3486 (Allegra isZipEntryValide Directory Traversal Remote Code Execution Vul ...)
 	TODO: check
 CVE-2025-3484 (MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Re ...)
-	TODO: check
+	NOT-FOR-US: MedDream PACS Server
 CVE-2025-3483 (MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Re ...)
-	TODO: check
+	NOT-FOR-US: MedDream PACS Server
 CVE-2025-3482 (MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Re ...)
-	TODO: check
+	NOT-FOR-US: MedDream PACS Server
 CVE-2025-3481 (MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Re ...)
-	TODO: check
+	NOT-FOR-US: MedDream PACS Server
 CVE-2025-3480 (MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Inform ...)
-	TODO: check
+	NOT-FOR-US: MedDream Web
 CVE-2025-34027 (The Versa Concerto SD-WAN orchestration platform is vulnerable to an a ...)
-	TODO: check
+	NOT-FOR-US: Versa Concerto
 CVE-2025-34026 (The Versa Concerto SD-WAN orchestration platform is vulnerable to an a ...)
-	TODO: check
+	NOT-FOR-US: Versa Concerto
 CVE-2025-34025 (The Versa Concerto SD-WAN orchestration platform is vulnerable to an p ...)
-	TODO: check
+	NOT-FOR-US: Versa Concerto
 CVE-2025-2759 (GStreamer Incorrect Permission Assignment Local Privilege Escalation V ...)
 	TODO: check
 CVE-2025-5051 (A vulnerability classified as critical has been found in FreeFloat FTP ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f0545e9da245b21b549fc9f6b5ea3584dfacf788

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f0545e9da245b21b549fc9f6b5ea3584dfacf788
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250522/d7edd94e/attachment.htm>

More information about the debian-security-tracker-commits mailing list