[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Fri Oct 3 09:13:41 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a7a56ba2 by security tracker role at 2025-10-03T08:13:34+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,13 +7,13 @@ CVE-2025-61668 (Volto is a ReactJS-based frontend for the Plone Content Manageme
 CVE-2025-61666 (Traccar is an open source GPS tracking system. Default installs of Tra ...)
 	TODO: check
 CVE-2025-61665 (WeGIA is an open source web manager with a focus on charitable institu ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-61606 (WeGIA is an open source web manager with a focus on charitable institu ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-61605 (WeGIA is an open source web manager with a focus on charitable institu ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-61604 (WeGIA is an open source web manager with a focus on charitable institu ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-61600 (Stalwart is a mail and collaboration server. Versions 0.13.3 and below ...)
 	TODO: check
 CVE-2025-61599 (Emlog is an open source website building system. A stored Cross-Site S ...)
@@ -25,21 +25,21 @@ CVE-2025-61589 (Cursor is a code editor built for programming with AI. In versio
 CVE-2025-59536 (Claude Code is an agentic coding tool. Versions before 1.0.111 were vu ...)
 	TODO: check
 CVE-2025-59300 (Delta Electronics DIAScreenlacks proper validation of the user-supplie ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2025-59299 (Delta Electronics DIAScreenlacks proper validation of the user-supplie ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2025-59298 (Delta Electronics DIAScreenlacks proper validation of the user-supplie ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2025-59297 (Delta Electronics DIAScreenlacks proper validation of the user-supplie ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2025-54089 (CVE-2025-54089 is a cross-site scripting vulnerability in versions of  ...)
-	TODO: check
+	NOT-FOR-US: Absolute Software
 CVE-2025-54088 (CVE-2025-54088 is an open-redirect vulnerability in Secure Access prio ...)
-	TODO: check
+	NOT-FOR-US: Absolute Software
 CVE-2025-54087 (CVE-2025-54087 is a server-side request forgery vulnerability in Secur ...)
-	TODO: check
+	NOT-FOR-US: Absolute Software
 CVE-2025-11241 (The Yoast SEO Premium plugin for WordPress is vulnerable to Stored Cro ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-10895
 	REJECTED
 CVE-2025-10653 (An unauthenticated debug port may allow access to the device file syst ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a7a56ba2c412257ee8677e63e666edced389a106

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a7a56ba2c412257ee8677e63e666edced389a106
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251003/b7d55f53/attachment.htm>
