[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Oct 27 21:02:19 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ec40f37d by Salvatore Bonaccorso at 2025-10-27T22:01:17+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -108,7 +108,7 @@ CVE-2025-52264 (StarCharge Artemis AC Charger 7-22 kW v1.0.4 was discovered to c
CVE-2025-52263 (An issue in the Web Configuration module of Startcharge Artemis AC Cha ...)
NOT-FOR-US: StarCharge Artemis AC Charger
CVE-2025-50055 (Cross-site scripting (XSS) vulnerability in the SAML Authentication mo ...)
- TODO: check
+ NOT-FOR-US: OpenVPN Access Server
CVE-2025-46602 (Dell SupportAssist OS Recovery, versions prior to 5.5.15.0, contain an ...)
NOT-FOR-US: Dell / EMC
CVE-2025-46583 (There is a Denial of Service\uff08DoS\uff09vulnerability in the ZTE MC ...)
@@ -146,7 +146,7 @@ CVE-2025-27223 (TRUfusion Enterprise through 7.10.4.0 exposes the encrypted COOK
CVE-2025-27222 (TRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/getCob ...)
NOT-FOR-US: TRUfusion Enterprise
CVE-2025-26862 (Unexpected authentication form rendering in HTML Form Adapter using on ...)
- TODO: check
+ NOT-FOR-US: PingFederate
CVE-2025-12365 (Error Messages Wrapped In HTTP Header.This issue affects BLU-IC2: thro ...)
NOT-FOR-US: Azure Access Technology
CVE-2025-12364 (Weak Password Policy.This issue affects BLU-IC2: through 1.19.5; BLU-I ...)
@@ -200,15 +200,15 @@ CVE-2025-12292 (A vulnerability was determined in SourceCodester Point of Sales
CVE-2025-12291 (A vulnerability was found in ashymuzuro Full-Ecommece-Website and Muzu ...)
NOT-FOR-US: ashymuzuro Full-Ecommece-Website and Muzuro Ecommerce System
CVE-2025-12290 (A vulnerability has been found in Sui Shang Information Technology Sui ...)
- TODO: check
+ NOT-FOR-US: Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System
CVE-2025-12289 (A flaw has been found in Sui Shang Information Technology Suishang Ent ...)
- TODO: check
+ NOT-FOR-US: Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System
CVE-2025-12288 (A vulnerability was detected in Bdtask Pharmacy Management System up t ...)
- TODO: check
+ NOT-FOR-US: Bdtask Pharmacy Management System
CVE-2025-12287 (A security vulnerability has been detected in Bdtask Wholesale Invento ...)
- TODO: check
+ NOT-FOR-US: Bdtask Wholesale Inventory Control and Inventory Management System
CVE-2025-12286 (A weakness has been identified in VeePN up to 1.6.2. This affects an u ...)
- TODO: check
+ NOT-FOR-US: VeePN
CVE-2025-12283 (A security flaw has been discovered in code-projects Client Details Sy ...)
NOT-FOR-US: code-projects
CVE-2025-12282 (A vulnerability was identified in code-projects Client Details System ...)
@@ -220,9 +220,9 @@ CVE-2025-12280 (A vulnerability was found in code-projects Client Details System
CVE-2025-12279 (A vulnerability has been found in code-projects Client Details System ...)
NOT-FOR-US: code-projects
CVE-2025-12277 (A flaw has been found in Abdullah-Hasan-Sajjad Online-School up to f09 ...)
- TODO: check
+ NOT-FOR-US: Abdullah-Hasan-Sajjad Online-School
CVE-2025-12276 (A vulnerability was detected in LearnHouse up to 98dfad76aad70711a8113 ...)
- TODO: check
+ NOT-FOR-US: LearnHouse
CVE-2025-12274 (A security vulnerability has been detected in Tenda CH22 1.0.0.1. Affe ...)
NOT-FOR-US: Tenda
CVE-2025-12273 (A weakness has been identified in Tenda CH22 1.0.0.1. Affected is the ...)
@@ -232,19 +232,19 @@ CVE-2025-12272 (A security flaw has been discovered in Tenda CH22 1.0.0.1. This
CVE-2025-12271 (A vulnerability was identified in Tenda CH22 1.0.0.1. This affects the ...)
NOT-FOR-US: Tenda
CVE-2025-12270 (A vulnerability was determined in LearnHouse up to 98dfad76aad70711a81 ...)
- TODO: check
+ NOT-FOR-US: LearnHouse
CVE-2025-12269 (A vulnerability was found in LearnHouse up to 98dfad76aad70711a8113f6c ...)
- TODO: check
+ NOT-FOR-US: LearnHouse
CVE-2025-12268 (A vulnerability has been found in LearnHouse up to 98dfad76aad70711a81 ...)
- TODO: check
+ NOT-FOR-US: LearnHouse
CVE-2025-12267 (A flaw has been found in abhicodebox ModernShop 20250922. This issue a ...)
- TODO: check
+ NOT-FOR-US: abhicodebox ModernShop
CVE-2025-12266 (A vulnerability was detected in Zytec Dalian Zhuoyun Technology Centra ...)
- TODO: check
+ NOT-FOR-US: Zytec Dalian Zhuoyun Technology Central Authentication Service
CVE-2025-12265 (A weakness has been identified in Tenda CH22 1.0.0.1. Affected by this ...)
NOT-FOR-US: Tenda
CVE-2025-12264 (A security flaw has been discovered in Wisencode up to 20251012. Affec ...)
- TODO: check
+ NOT-FOR-US: Wisencode
CVE-2025-12263 (A vulnerability was identified in code-projects Online Event Judging S ...)
NOT-FOR-US: code-projects
CVE-2025-12262 (A vulnerability was determined in code-projects Online Event Judging S ...)
@@ -266,23 +266,23 @@ CVE-2025-12255 (A security flaw has been discovered in code-projects Online Even
CVE-2025-12254 (A vulnerability was identified in code-projects Online Event Judging S ...)
NOT-FOR-US: code-projects
CVE-2025-12253 (A vulnerability was determined in AMTT Hotel Broadband Operation Syste ...)
- TODO: check
+ NOT-FOR-US: AMTT Hotel Broadband Operation System
CVE-2025-12252 (A vulnerability was found in code-projects Online Event Judging System ...)
NOT-FOR-US: code-projects
CVE-2025-12251 (A vulnerability has been found in OpenWGA 7.11.12 Build 737. This impa ...)
- TODO: check
+ NOT-FOR-US: OpenWGA
CVE-2025-12250 (A flaw has been found in OpenWGA 7.11.12 Build 737. This affects an un ...)
- TODO: check
+ NOT-FOR-US: OpenWGA
CVE-2025-12249 (A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1. ...)
- TODO: check
+ NOT-FOR-US: Axosoft Scrum and Bug Tracking
CVE-2025-12248 (A security vulnerability has been detected in CLTPHP 3.0. The affected ...)
- TODO: check
+ NOT-FOR-US: CLTPHP
CVE-2025-12247 (A weakness has been identified in Hasleo Backup Suite up to 5.2. Impac ...)
- TODO: check
+ NOT-FOR-US: Hasleo Backup Suite
CVE-2025-12080 (On Wear OS devices, when Google Messages is configured as the default ...)
TODO: check
CVE-2025-11955 (Incorrect validation of OCSP certificates vulnerability in TheGreenBow ...)
- TODO: check
+ NOT-FOR-US: TheGreenBow VPN
CVE-2025-11248 (ZohoCorp ManageEngine Endpoint Central versions prior to 11.4.2528.05 ...)
NOT-FOR-US: Zoho
CVE-2025-10561 (The device is running an outdated operating system, which may be susce ...)
@@ -290,9 +290,9 @@ CVE-2025-10561 (The device is running an outdated operating system, which may be
CVE-2025-10023 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
NOT-FOR-US: Centreon
CVE-2023-49440 (AhnLab EPP 1.0.15 is vulnerable to SQL Injection via the "preview para ...)
- TODO: check
+ NOT-FOR-US: AhnLab EPP
CVE-2023-37749 (Incorrect access control in the REST API endpoint of HubSpot v1.29441 ...)
- TODO: check
+ NOT-FOR-US: HubSpot
CVE-2025-62291
{DSA-6041-1}
- strongswan <unfixed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec40f37d0b802926def6c78f400750e259c1ddd2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec40f37d0b802926def6c78f400750e259c1ddd2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251027/fde44d50/attachment.htm>
More information about the debian-security-tracker-commits
mailing list