[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 29 21:22:39 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1a951f83 by security tracker role at 2025-05-29T20:22:32+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
CVE-2025-5334 (Exposure of private personal information to an unauthorized actor in t ...)
- TODO: check
+ NOT-FOR-US: Devolutions
CVE-2025-5326 (A vulnerability was found in zhilink \u667a\u4e92\u8054(\u6df1\u5733)\ ...)
TODO: check
CVE-2025-5325 (A vulnerability has been found in zhilink \u667a\u4e92\u8054(\u6df1\u5 ...)
@@ -13,15 +13,15 @@ CVE-2025-5321 (A vulnerability classified as critical was found in aimhubio aim
CVE-2025-5320 (A vulnerability classified as problematic has been found in gradio-app ...)
TODO: check
CVE-2025-5286 (The Bold Page Builder plugin for WordPress is vulnerable to Stored Cro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-5122 (The Map Block Leaflet plugin for WordPress is vulnerable to Stored Cro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-4967 (Esri Portal for ArcGIS 11.4 and prior allows a remote, unauthenticated ...)
TODO: check
CVE-2025-4687 (In Teltonika Networks Remote Management System (RMS), it is possible t ...)
TODO: check
CVE-2025-4670 (The Easy Digital Downloads \u2013 eCommerce Payments and Subscriptions ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-4081 (Use of entitlement "com.apple.security.cs.disable-library-validation" ...)
TODO: check
CVE-2025-48748 (Netwrix Directory Manager (formerly Imanami GroupID) through v.10.0.77 ...)
@@ -71,13 +71,13 @@ CVE-2025-45474 (maccms10 v2025.1000.4047 is vulnerable to Server-side request fo
CVE-2025-3913 (Mattermost versions 10.7.x <= 10.7.0, 10.6.x <= 10.6.2, 10.5.x <= 10.5 ...)
TODO: check
CVE-2025-3050 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-33043 (APTIOV contains a vulnerability in BIOS where an attacker may cause an ...)
- TODO: check
+ NOT-FOR-US: AMI
CVE-2025-32752 (Dell ThinOS 2502 and prior contain a Cleartext Storage of Sensitive In ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-2518 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-29632 (Buffer Overflow vulnerability in Free5gc v.4.0.0 allows a remote attac ...)
TODO: check
CVE-2025-27151 (Redis is an open source, in-memory database that persists on disk. In ...)
@@ -91,7 +91,7 @@ CVE-2024-52588 (Strapi is an open-source content management system. Prior to ver
CVE-2024-51392 (An issue in OpenKnowledgeMaps Headstart v7 allows a remote attacker to ...)
TODO: check
CVE-2024-49350 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2024-22654 (tcpreplay v4.4.4 was discovered to contain an infinite loop via the tc ...)
TODO: check
CVE-2024-22653 (yasm commit 9defefae was discovered to contain a NULL pointer derefere ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a951f8344daadfbdd33467c56e75559c0317d98
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a951f8344daadfbdd33467c56e75559c0317d98
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250529/288fe118/attachment.htm>
More information about the debian-security-tracker-commits
mailing list