[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Oct 17 09:38:23 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0ecbe268 by Salvatore Bonaccorso at 2025-10-17T10:38:07+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -31,17 +31,17 @@ CVE-2025-55092 (In Eclipse Foundation NetX Duo before 6.4.4, the networking supp
 CVE-2025-55087 (In NextX Duo's snmp addon versions before 6.4.4, a part of the Eclipse ...)
 	TODO: check
 CVE-2025-11900 (The iSherlock developed by HGiga has an OS Command Injection vulnerabi ...)
-	TODO: check
+	NOT-FOR-US: HGiga
 CVE-2025-11899 (Agentflow developed by Flowring has an Use of Hard-coded Cryptographic ...)
-	TODO: check
+	NOT-FOR-US: Flowring
 CVE-2025-11898 (Agentflow developed by Flowring has an Arbitrary File Reading vulnerab ...)
-	TODO: check
+	NOT-FOR-US: Flowring
 CVE-2025-11896 (In Xpdf 4.05 (and earlier), a PDF object loop in a CMap, via the "UseC ...)
 	TODO: check
 CVE-2025-11864 (A vulnerability was identified in NucleoidAI Nucleoid up to 0.7.10. Th ...)
-	TODO: check
+	NOT-FOR-US: NucleoidAI Nucleoid
 CVE-2025-11849 (Versions of the package mammoth from 0.3.25 and before 1.11.0; version ...)
-	TODO: check
+	NOT-FOR-US: mammoth Node.js module
 CVE-2024-42192 (HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a credenti ...)
 	NOT-FOR-US: HCL
 CVE-2025-9955 (An improper access control vulnerability exists in WSO2 Enterprise Int ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ecbe2689f2d462640c38bc9f36dd81606e9288c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ecbe2689f2d462640c38bc9f36dd81606e9288c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251017/a138f212/attachment.htm>

More information about the debian-security-tracker-commits mailing list