[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c5e20b27 by security tracker role at 2025-10-17T08:12:46+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,49 @@
+CVE-2025-6950 (An Use of Hard-coded Credentials vulnerability has been identified in  ...)
+	TODO: check
+CVE-2025-6949 (An Execution with Unnecessary Privileges vulnerability has been identi ...)
+	TODO: check
+CVE-2025-6894 (An Execution with Unnecessary Privileges vulnerability has been identi ...)
+	TODO: check
+CVE-2025-6893 (An Execution with Unnecessary Privileges vulnerability has been identi ...)
+	TODO: check
+CVE-2025-6892 (An Incorrect Authorization vulnerability has been identified in Moxa\u ...)
+	TODO: check
+CVE-2025-62506 (MinIO is a high-performance object storage system. In all versions pri ...)
+	TODO: check
+CVE-2025-62504 (Envoy is an open source edge and service proxy. Envoy versions earlier ...)
+	TODO: check
+CVE-2025-55100 (In USBX before 6.4.3, the USB support module for Eclipse Foundation Th ...)
+	TODO: check
+CVE-2025-55099 (In USBX before 6.4.3, the USB support module for Eclipse Foundation Th ...)
+	TODO: check
+CVE-2025-55098 (In USBX before 6.4.3, the USB support module for Eclipse Foundation Th ...)
+	TODO: check
+CVE-2025-55097 (In USBX before 6.4.3, the USB support module for Eclipse Foundation Th ...)
+	TODO: check
+CVE-2025-55096 (In USBX before 6.4.3, the USB support module for Eclipse Foundation Th ...)
+	TODO: check
+CVE-2025-55094 (In NetX Duo before 6.4.4, the networking support module for Eclipse Fo ...)
+	TODO: check
+CVE-2025-55093 (In NetX Duo before 6.4.4, the networking support module for Eclipse Fo ...)
+	TODO: check
+CVE-2025-55092 (In Eclipse Foundation NetX Duo before 6.4.4, the networking support mo ...)
+	TODO: check
+CVE-2025-55087 (In NextX Duo's snmp addon versions before 6.4.4, a part of the Eclipse ...)
+	TODO: check
+CVE-2025-11900 (The iSherlock developed by HGiga has an OS Command Injection vulnerabi ...)
+	TODO: check
+CVE-2025-11899 (Agentflow developed by Flowring has an Use of Hard-coded Cryptographic ...)
+	TODO: check
+CVE-2025-11898 (Agentflow developed by Flowring has an Arbitrary File Reading vulnerab ...)
+	TODO: check
+CVE-2025-11896 (In Xpdf 4.05 (and earlier), a PDF object loop in a CMap, via the "UseC ...)
+	TODO: check
+CVE-2025-11864 (A vulnerability was identified in NucleoidAI Nucleoid up to 0.7.10. Th ...)
+	TODO: check
+CVE-2025-11849 (Versions of the package mammoth from 0.3.25 and before 1.11.0; version ...)
+	TODO: check
+CVE-2024-42192 (HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a credenti ...)
+	TODO: check
 CVE-2025-9955 (An improper access control vulnerability exists in WSO2 Enterprise Int ...)
 	NOT-FOR-US: WSO2
 CVE-2025-9804 (An improper access control vulnerability exists in multiple WSO2 produ ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5e20b27aae512548734500f09d61347ddc4da24

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5e20b27aae512548734500f09d61347ddc4da24
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251017/71fdbe9a/attachment.htm>