[Git][security-tracker-team/security-tracker][master] Process some NFUs

Wed May 28 08:01:46 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ff3a61fb by Salvatore Bonaccorso at 2025-05-28T09:01:08+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -87,15 +87,15 @@ CVE-2025-45529 (An arbitrary file read vulnerability in the ReadTextAsynchronous
 CVE-2025-45475 (maccms10 v2025.1000.4047 is vulnerable to Server-Side request forgery  ...)
 	NOT-FOR-US: maccms10
 CVE-2025-41653 (An unauthenticated remote attacker can exploit a denial-of-service vul ...)
-	TODO: check
+	NOT-FOR-US: Weidmueller Interface GmbH & Co. KG
 CVE-2025-41652 (The devices are vulnerable to an authentication bypass due to flaws in ...)
-	TODO: check
+	NOT-FOR-US: Weidmueller Interface GmbH & Co. KG
 CVE-2025-41651 (Due to missing authentication on a critical function of the devices an ...)
-	TODO: check
+	NOT-FOR-US: Weidmueller Interface GmbH & Co. KG
 CVE-2025-41650 (An unauthenticated remote attacker can exploit input validation in cmd ...)
-	TODO: check
+	NOT-FOR-US: Weidmueller Interface GmbH & Co. KG
 CVE-2025-41649 (An unauthenticated remote attacker can exploit insufficient input vali ...)
-	TODO: check
+	NOT-FOR-US: Weidmueller Interface GmbH & Co. KG
 CVE-2025-3704 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-2872
@@ -109,15 +109,15 @@ CVE-2025-27700 (There is a possible bypass of carrier restrictions due to an unu
 CVE-2025-23247 (NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the  ...)
 	TODO: check
 CVE-2025-22377 (An issue was discovered in Samsung Mobile Processor, Wearable Processo ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-56193 (There is a possible disclosure of Bluetooth adapter details due to a p ...)
 	NOT-FOR-US: Google devices
 CVE-2024-49197 (An issue was discovered in Wi-Fi in Samsung Mobile Processor and Weara ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-49196 (An issue was discovered in the GPU in Samsung Mobile Processor Exynos  ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-13966 (ZKTeco BioTime allows unauthenticated attackers to enumerate usernames ...)
-	TODO: check
+	NOT-FOR-US: ZKTeco BioTime
 CVE-2025-5272 (Memory safety bugs present in Firefox 138 and Thunderbird 138. Some of ...)
 	- firefox 139.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-42/#CVE-2025-5272



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff3a61fb9fa388f881a59615e867c2826515aedb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff3a61fb9fa388f881a59615e867c2826515aedb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250528/3dbf1eeb/attachment.htm>
