[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Oct 13 09:13:46 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
20fd826b by security tracker role at 2025-10-13T08:13:39+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,23 +1,23 @@
CVE-2025-9976 (An OS Command Injection vulnerability affecting Station Launcher App i ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-9698 (The Plus Addons for Elementor WordPress plugin before 6.3.16 does not ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9265 (A broken authorization vulnerability in Kiloview NDI N30 allows a remo ...)
TODO: check
CVE-2025-8915 (Hardcoded TLS private key and certificate in firmware in Kiloview N30 ...)
TODO: check
CVE-2025-36087 (IBM Security Verify Access 10.0.0 through 10.0.9, 11.0.0, IBM Verify I ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-31996 (HCL Unica Platform is affected by unprotected files due to improper ac ...)
- TODO: check
+ NOT-FOR-US: HCL
CVE-2025-31995 (HCL Unica MaxAI Workbench is vulnerable to improper input validation. ...)
- TODO: check
+ NOT-FOR-US: HCL
CVE-2025-31994 (HCL Unica Campaign 12.1.10 is vulnerable to Reflected Cross-Site Scrip ...)
- TODO: check
+ NOT-FOR-US: HCL
CVE-2025-27259 (Ericsson Network Manager versions prior to ENM 25.2 GA contain a vulne ...)
- TODO: check
+ NOT-FOR-US: Ericsson
CVE-2025-27258 (Ericsson Network Manager (ENM) versions prior to ENM 25.1 GA contain a ...)
- TODO: check
+ NOT-FOR-US: Ericsson
CVE-2025-11675 (Enterprise Cloud Database developed by Ragic has an Arbitrary File Upl ...)
TODO: check
CVE-2025-11674 (SOOP-CLM developed by PiExtract has a Server-Side Request Forgery vuln ...)
@@ -29,19 +29,19 @@ CVE-2025-11672 (Uniweb/SoliPACS WebServer developed by EBM Technologies has a Mi
CVE-2025-11671 (Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing ...)
TODO: check
CVE-2025-11668 (A vulnerability was determined in code-projects Automated Voting Syste ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-11667 (A vulnerability was found in code-projects Automated Voting System 1.0 ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-11666 (A flaw has been found in Tenda RP3 Pro up to 22.5.7.93. This impacts a ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-11665 (A vulnerability was detected in D-Link DAP-2695 2.00RC131. This affect ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2025-11664 (A security vulnerability has been detected in Campcodes Online Beauty ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-11663 (A weakness has been identified in Campcodes Online Beauty Parlor Manag ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-11662 (A security flaw has been discovered in SourceCodester Best Salon Manag ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2025-11661 (A vulnerability was found in ProjectsAndPrograms School Management Sys ...)
TODO: check
CVE-2025-11660 (A vulnerability has been found in ProjectsAndPrograms School Managemen ...)
@@ -77,15 +77,15 @@ CVE-2025-11646 (A vulnerability was detected in Tomofun Furbo 360 and Furbo Mini
CVE-2025-11645 (A security vulnerability has been detected in Tomofun Furbo Mobile App ...)
TODO: check
CVE-2025-10558 (A stored Cross-site Scripting (XSS) vulnerability affecting 3DSearch i ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-10557 (A stored Cross-site Scripting (XSS) vulnerability affecting Issue Mana ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-10556 (A stored Cross-site Scripting (XSS) vulnerability affecting Specificat ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-10552 (A stored Cross-site Scripting (XSS) vulnerability affecting 3DSwym in ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-0636 (EMCLI contains a high severity vulnerability where improper neutraliza ...)
- TODO: check
+ NOT-FOR-US: Ericsson
CVE-2025-52615 (HCL Unica Platform is impacted by misconfigured security related HTTP ...)
NOT-FOR-US: HCL
CVE-2025-33096 (IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/20fd826b472f5fdc3c6e827fce7dacb8dc889067
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/20fd826b472f5fdc3c6e827fce7dacb8dc889067
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251013/ac824cb7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list