[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Fri Oct 17 09:13:43 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
741bd4ce by security tracker role at 2025-10-17T08:13:37+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
 CVE-2025-6950 (An Use of Hard-coded Credentials vulnerability has been identified in  ...)
-	TODO: check
+	NOT-FOR-US: Moxa
 CVE-2025-6949 (An Execution with Unnecessary Privileges vulnerability has been identi ...)
-	TODO: check
+	NOT-FOR-US: Moxa
 CVE-2025-6894 (An Execution with Unnecessary Privileges vulnerability has been identi ...)
-	TODO: check
+	NOT-FOR-US: Moxa
 CVE-2025-6893 (An Execution with Unnecessary Privileges vulnerability has been identi ...)
-	TODO: check
+	NOT-FOR-US: Moxa
 CVE-2025-6892 (An Incorrect Authorization vulnerability has been identified in Moxa\u ...)
-	TODO: check
+	NOT-FOR-US: Moxa
 CVE-2025-62506 (MinIO is a high-performance object storage system. In all versions pri ...)
 	TODO: check
 CVE-2025-62504 (Envoy is an open source edge and service proxy. Envoy versions earlier ...)
@@ -21,13 +21,13 @@ CVE-2025-55098 (In USBX before 6.4.3, the USB support module for Eclipse Foundat
 CVE-2025-55097 (In USBX before 6.4.3, the USB support module for Eclipse Foundation Th ...)
 	TODO: check
 CVE-2025-55096 (In USBX before 6.4.3, the USB support module for Eclipse Foundation Th ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-55094 (In NetX Duo before 6.4.4, the networking support module for Eclipse Fo ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-55093 (In NetX Duo before 6.4.4, the networking support module for Eclipse Fo ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-55092 (In Eclipse Foundation NetX Duo before 6.4.4, the networking support mo ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-55087 (In NextX Duo's snmp addon versions before 6.4.4, a part of the Eclipse ...)
 	TODO: check
 CVE-2025-11900 (The iSherlock developed by HGiga has an OS Command Injection vulnerabi ...)
@@ -43,7 +43,7 @@ CVE-2025-11864 (A vulnerability was identified in NucleoidAI Nucleoid up to 0.7.
 CVE-2025-11849 (Versions of the package mammoth from 0.3.25 and before 1.11.0; version ...)
 	TODO: check
 CVE-2024-42192 (HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a credenti ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2025-9955 (An improper access control vulnerability exists in WSO2 Enterprise Int ...)
 	NOT-FOR-US: WSO2
 CVE-2025-9804 (An improper access control vulnerability exists in multiple WSO2 produ ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/741bd4cefe42171b588e3dd5f359a862c4e68c77

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/741bd4cefe42171b588e3dd5f359a862c4e68c77
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251017/88ec4082/attachment.htm>
