[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Nov 27 20:31:42 GMT 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f731b7aa by Moritz Muehlenhoff at 2025-11-27T21:31:20+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2025-8890 (Firmware in SDMC NE6037 routers prior to version 7.1.12.2.44has a netw ...)
-	TODO: check
+	NOT-FOR-US: SDMC NE6037 routers
 CVE-2025-59890 (Improper input sanitization in the file archives upload functionality  ...)
 	NOT-FOR-US: Eaton
 CVE-2025-59454 (In Apache CloudStack, a gap in access control checks affected the APIs ...)
@@ -39,13 +39,13 @@ CVE-2025-12971 (The Folders \u2013 Unlimited Folders to Organize Media Library F
 CVE-2025-12584 (The Quick View for WooCommerce plugin for WordPress is vulnerable to I ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-12559 (Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 1 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2025-12421 (Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 1 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2025-12419 (Mattermost versions 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <=  ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2025-12140 (The application contains an insecure 'redirectToUrl' mechanism that in ...)
-	TODO: check
+	NOT-FOR-US: Wirtualna Uczelnia
 CVE-2025-10476 (The WP Fastest Cache plugin for WordPress is vulnerable to unauthorize ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-7820 (The SKT PayPal for WooCommerce plugin for WordPress is vulnerable to P ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f731b7aa32e3779a897799c40ab57dc898b780aa

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f731b7aa32e3779a897799c40ab57dc898b780aa
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251127/ae142aeb/attachment.htm>

More information about the debian-security-tracker-commits mailing list