[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Oct 22 09:41:11 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0a47e9bf by Salvatore Bonaccorso at 2025-10-22T10:40:03+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
CVE-2025-62775 (Mercku M6a devices through 2.1.0 allow root TELNET logins via the web ...)
- TODO: check
+ NOT-FOR-US: Mercku M6a devices
CVE-2025-62774 (On Mercku M6a devices through 2.1.0, the authentication system uses pr ...)
- TODO: check
+ NOT-FOR-US: Mercku M6a devices
CVE-2025-62773 (Mercku M6a devices through 2.1.0 allow TELNET sessions via a router.te ...)
- TODO: check
+ NOT-FOR-US: Mercku M6a devices
CVE-2025-62772 (On Mercku M6a devices through 2.1.0, session tokens remain valid for a ...)
- TODO: check
+ NOT-FOR-US: Mercku M6a devices
CVE-2025-62771 (Mercku M6a devices through 2.1.0 allow password changes via intranet C ...)
- TODO: check
+ NOT-FOR-US: Mercku M6a devices
CVE-2025-61756 (Vulnerability in the Oracle Financial Services Analytical Applications ...)
NOT-FOR-US: Oracle
CVE-2025-5983 (The Meta Tag Manager WordPress plugin before 3.3 does not restrict whi ...)
@@ -37,9 +37,9 @@ CVE-2025-10588 (The PixelYourSite \u2013 Your smart PIXEL (TAG) & API Manager pl
CVE-2025-10570 (The Flexible Refund and Return Order for WooCommerce plugin for WordPr ...)
NOT-FOR-US: WordPress plugin
CVE-2024-58274 (Hikvision CSMP (Comprehensive Security Management Platform) iSecure Ce ...)
- TODO: check
+ NOT-FOR-US: Hikvision
CVE-2023-53691 (Hikvision CSMP (Comprehensive Security Management Platform) iSecure Ce ...)
- TODO: check
+ NOT-FOR-US: Hikvision
CVE-2025-62526
NOT-FOR-US: OpenWRT (ubusd)
NOTE: https://openwrt.org/advisory/2025-10-22-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a47e9bf2aa7a51494d3538ce75fc967b35d9252
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a47e9bf2aa7a51494d3538ce75fc967b35d9252
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251022/99649646/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list