[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Oct 16 21:27:33 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1352e2b6 by Salvatore Bonaccorso at 2025-10-16T22:27:10+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,13 +3,13 @@ CVE-2025-9955 (An improper access control vulnerability exists in WSO2 Enterpris
 CVE-2025-9804 (An improper access control vulnerability exists in multiple WSO2 produ ...)
 	NOT-FOR-US: WSO2
 CVE-2025-9559 (Pega Platform versions 8.7.5 to Infinity 24.2.2 are affected by a Inse ...)
-	TODO: check
+	NOT-FOR-US: Pega Platform
 CVE-2025-9152 (An improper privilege management vulnerability exists in WSO2 API Mana ...)
 	NOT-FOR-US: WSO2
 CVE-2025-6338 (There is an incomplete cleanup vulnerability in Qt Network's Schannel  ...)
 	TODO: check
 CVE-2025-62586 (OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset t ...)
-	TODO: check
+	NOT-FOR-US: OPEXUS FOIAXpress
 CVE-2025-62496 (A vulnerability exists in the QuickJS engine's BigInt string parsing l ...)
 	TODO: check
 CVE-2025-62495 (An integer overflow vulnerability exists in the QuickJS regular expres ...)
@@ -25,39 +25,39 @@ CVE-2025-62491 (A Use-After-Free (UAF) vulnerability exists in the QuickJS engin
 CVE-2025-62490 (In quickjs, in js_print_object, when printing an array, the function f ...)
 	TODO: check
 CVE-2025-62428 (Drawing-Captcha APP provides interactive, engaging verification for We ...)
-	TODO: check
+	NOT-FOR-US: Drawing-Captcha APP
 CVE-2025-62427 (The Angular CLI is a command-line interface tool for Angular applicati ...)
 	TODO: check
 CVE-2025-62425 (MAS (Matrix Authentication Service) is a user management and authentic ...)
-	TODO: check
+	NOT-FOR-US: MAS (Matrix Authentication Service)
 CVE-2025-62423 (ClipBucket V5 provides open source video hosting with PHP. In version5 ...)
-	TODO: check
+	NOT-FOR-US: ClipBucket
 CVE-2025-62418 (Bagisto is an open source laravel eCommerce platform. In Bagisto v2.3. ...)
-	TODO: check
+	NOT-FOR-US: Bagisto
 CVE-2025-62417 (Bagisto is an open source laravel eCommerce platform. When product dat ...)
-	TODO: check
+	NOT-FOR-US: Bagisto
 CVE-2025-62416 (Bagisto is an open source laravel eCommerce platform. Bagisto v2.3.7 i ...)
-	TODO: check
+	NOT-FOR-US: Bagisto
 CVE-2025-62415 (Bagisto is an open source laravel eCommerce platform. In Bagisto v2.3. ...)
-	TODO: check
+	NOT-FOR-US: Bagisto
 CVE-2025-62414 (Bagisto is an open source laravel eCommerce platform. In Bagisto v2.3. ...)
-	TODO: check
+	NOT-FOR-US: Bagisto
 CVE-2025-62413 (MQTTX is an MQTT 5.0 desktop client and MQTT testing tool. A Cross-Sit ...)
 	TODO: check
 CVE-2025-62412 (LibreNMS  is a community-based GPL-licensed network monitoring system. ...)
-	TODO: check
+	NOT-FOR-US: LibreNMS
 CVE-2025-62411 (LibreNMS  is a community-based GPL-licensed network monitoring system. ...)
-	TODO: check
+	NOT-FOR-US: LibreNMS
 CVE-2025-62409 (Envoy is a cloud-native, open source edge and service proxy. Prior to  ...)
 	TODO: check
 CVE-2025-62407 (Frappe is a full-stack web application framework. Prior to 14.98.0 and ...)
-	TODO: check
+	NOT-FOR-US: Frappe Framework
 CVE-2025-61924 (PrestaShop Checkout is the PrestaShop official payment module in partn ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2025-61923 (PrestaShop Checkout is the PrestaShop official payment module in partn ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2025-61922 (PrestaShop Checkout is the PrestaShop official payment module in partn ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2025-61909 (Icinga 2 is an open source monitoring system. From 2.10.0 to before 2. ...)
 	TODO: check
 CVE-2025-61908 (Icinga 2 is an open source monitoring system. From 2.10.0 to before 2. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1352e2b684af570d3918480a09a7e8d338a3686f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1352e2b684af570d3918480a09a7e8d338a3686f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251016/15925769/attachment.htm>

More information about the debian-security-tracker-commits mailing list