[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Nov 5 08:13:57 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2d22d557 by security tracker role at 2025-11-05T08:13:48+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2025-8871 (The Everest Forms (Pro) plugin for WordPress is vulnerable to PHP Obje ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6027 (The Ace User Management WordPress plugin through 2.0.3 does not proper ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-64455
 	REJECTED
 CVE-2025-64454
@@ -47,9 +47,9 @@ CVE-2025-62369 (Xibo is an open source digital signage platform with a web conte
 CVE-2025-62225 (Optical Disc Archive Software provided by Sony Corporation registers a ...)
 	TODO: check
 CVE-2025-59596 (CVE-2025-59596 is a denial-of-service vulnerability in Secure Access   ...)
-	TODO: check
+	NOT-FOR-US: Absolute Software
 CVE-2025-59595 (CVE-2025-59595 is an internally discovered denial of service  vulnerab ...)
-	TODO: check
+	NOT-FOR-US: Absolute Software
 CVE-2025-56230 (Tencent Docs Desktop 3.9.20 and earlier suffers from Missing SSL Certi ...)
 	TODO: check
 CVE-2025-55155 (Mantis Bug Tracker (MantisBT) is an open source issue tracker. In vers ...)
@@ -73,61 +73,61 @@ CVE-2025-32786 (The GLPI Inventory Plugin handles network discovery, inventory,
 CVE-2025-27374 (An issue was discovered in the Secure Boot component in Samsung Mobile ...)
 	TODO: check
 CVE-2025-21079 (Improper input validation in Samsung Members prior to version 5.5.01.3 ...)
-	TODO: check
+	NOT-FOR-US: Samsung Mobile
 CVE-2025-21078 (Use of insufficiently random value of secretKey in Smart Switch prior  ...)
-	TODO: check
+	NOT-FOR-US: Samsung Mobile
 CVE-2025-21077 (Improper input validation in Samsung Email prior to version 6.2.06.0 a ...)
-	TODO: check
+	NOT-FOR-US: Samsung Mobile
 CVE-2025-21076 (Improper handling of insufficient permissions or privileges in Samsung ...)
-	TODO: check
+	NOT-FOR-US: Samsung Mobile
 CVE-2025-21075 (Out-of-bounds write in libimagecodec.quram.so prior to SMR Nov-2025 Re ...)
-	TODO: check
+	NOT-FOR-US: Samsung Mobile
 CVE-2025-21074 (Out-of-bounds read in libimagecodec.quram.so prior to SMR Nov-2025 Rel ...)
-	TODO: check
+	NOT-FOR-US: Samsung Mobile
 CVE-2025-21073 (Insecure default configuration in USB connection mode prior to SMR Nov ...)
-	TODO: check
+	NOT-FOR-US: Samsung Mobile
 CVE-2025-21071 (Out-of-bounds write in handling opcode in fingerprint trustlet prior t ...)
-	TODO: check
+	NOT-FOR-US: Samsung Mobile
 CVE-2025-12735 (The expr-eval library is a JavaScript expression parser and evaluator  ...)
 	TODO: check
 CVE-2025-12677 (The KiotViet Sync plugin for WordPress is vulnerable to Sensitive Info ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12676 (The KiotViet Sync plugin for WordPress is vulnerable to authorizarion  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12675 (The KiotViet Sync plugin for WordPress is vulnerable to unauthorized m ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12674 (The KiotViet Sync plugin for WordPress is vulnerable to arbitrary file ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12582 (The Features plugin for WordPress is vulnerable to unauthorized modifi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12580 (The SMS for WordPress plugin for WordPress is vulnerable to Reflected  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12388 (The B Carousel Block \u2013 Responsive Image and Content Carousel plug ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12384 (The Document Embedder \u2013 Embed PDFs, Word, Excel, and Other Files  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12197 (The The Events Calendar plugin for WordPress is vulnerable to blind SQ ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12139 (The File Manager for Google Drive \u2013 Integrate Google Drive with W ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11917 (The WPeMatico RSS Feed Fetcher plugin for WordPress is vulnerable to S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11835 (The Paid Membership Subscriptions \u2013 Effortless Memberships, Recur ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11749 (The AI Engine plugin for WordPress is vulnerable to Sensitive Informat ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11373 (The Popup and Slider Builder by Depicter \u2013 Add Email collecting P ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11162 (The Spectra Gutenberg Blocks \u2013 Website Builder for the Block Edit ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11072 (The MelAbu WP Download Counter Button WordPress plugin through 1.8.6.7 ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-10873 (The ElementInvader Addons for Elementor WordPress plugin before 1.4.1  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-10622 (A flaw was found in Red Hat Satellite (Foreman component). This vulner ...)
 	TODO: check
 CVE-2025-10567 (The FunnelKit  WordPress plugin before 3.12.0.1 does not sanitize user ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-56426 (An issue was discovered in Samsung Mobile Processor and Wearable Proce ...)
 	TODO: check
 CVE-2025-62507 (Redis is an open source, in-memory database that persists on disk. In  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d22d55787cbe3bb4383b098570708bcf4410caa

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d22d55787cbe3bb4383b098570708bcf4410caa
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251105/7b85e9aa/attachment.htm>

More information about the debian-security-tracker-commits mailing list