[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9e9024b7 by Moritz Muehlenhoff at 2025-09-09T09:01:18+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -43,13 +43,13 @@ CVE-2025-40641 (Cross-site Scripting (XSS) vulnerability stored in Multi-Purpose
 CVE-2025-3212 (Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm ...)
 	TODO: check
 CVE-2025-36855 (A vulnerability ( CVE-2025-21176 https://www.cve.org/CVERecord ) exist ...)
-	TODO: check
+	NOT-FOR-US: Microsoft .NET
 CVE-2025-36854 (A vulnerability ( CVE-2024-38229 https://www.cve.org/CVERecord ) exist ...)
-	TODO: check
+	NOT-FOR-US: Microsoft ASP.NET
 CVE-2025-36853 (A vulnerability (CVE-2025-21172) exists in msdia140.dlldue to integer  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft .NET
 CVE-2025-22956 (OPSI before 4.3 allows any client to retrieve any ProductPropertyState ...)
-	TODO: check
+	NOT-FOR-US: OPSI
 CVE-2025-10104 (A security vulnerability has been detected in code-projects Online Eve ...)
 	NOT-FOR-US: code-projects
 CVE-2025-10103 (A weakness has been identified in code-projects Online Event Judging S ...)
@@ -63,21 +63,21 @@ CVE-2025-10099 (A weakness has been identified in Portabilis i-Educar up to 2.10
 CVE-2025-10098 (A security flaw has been discovered in PHPGurukul User Management Syst ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-10097 (A vulnerability was identified in SimStudioAI sim up to 1.0.0. This im ...)
-	TODO: check
+	NOT-FOR-US: SimStudioAI
 CVE-2025-10096 (A vulnerability was determined in SimStudioAI sim up to 1.0.0. This af ...)
-	TODO: check
+	NOT-FOR-US: SimStudioAI
 CVE-2025-10093 (A vulnerability was identified in D-Link DIR-852 up to 1.00CN B09. Aff ...)
 	NOT-FOR-US: D-Link
 CVE-2025-10092 (A vulnerability was found in Jinher OA up to 1.2. This impacts an unkn ...)
-	TODO: check
+	NOT-FOR-US: Jinher OA
 CVE-2025-10091 (A vulnerability has been found in Jinher OA up to 1.2. This affects an ...)
-	TODO: check
+	NOT-FOR-US: Jinher OA
 CVE-2025-10090 (A flaw has been found in Jinher OA up to 1.2. The impacted element is  ...)
-	TODO: check
+	NOT-FOR-US: Jinher OA
 CVE-2024-48341 (dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forg ...)
-	TODO: check
+	NOT-FOR-US: dingfanzu CMS
 CVE-2022-50238 (The on-endpoint Microsoft vulnerable driver blocklist is not fully syn ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-25225 (`sanitize-html` prior to version 2.0.0-beta is vulnerable to Cross-sit ...)
 	TODO: check
 CVE-2014-125128 ('sanitize-html' prior to version 1.0.3 is vulnerable to Cross-site Scr ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e9024b730ab981fd3aebea1d17057b679dc995c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e9024b730ab981fd3aebea1d17057b679dc995c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250909/ad8b4a5d/attachment-0001.htm>