[Git][security-tracker-team/security-tracker][master] 2 commits: auto-nfu: Add CNA based rule for Tanium
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Feb 5 22:19:27 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d92a6e36 by Salvatore Bonaccorso at 2026-02-05T23:19:10+01:00
auto-nfu: Add CNA based rule for Tanium
- - - - -
d6c36585 by Salvatore Bonaccorso at 2026-02-05T23:19:10+01:00
Process some new NFUs
- - - - -
2 changed files:
- data/CVE/list
- data/packages/nfu.yaml
Changes:
=====================================
data/CVE/list
=====================================
@@ -57,55 +57,55 @@ CVE-2025-15557 (An Improper Certificate Validation vulnerability in TP-Link Tapo
CVE-2025-15551 (The response coming from TP-Link Archer MR200 v5.2, C20 v6, TL-WR850N ...)
NOT-FOR-US: TP-Link
CVE-2025-15343 (Tanium addressed an incorrect default permissions vulnerability in Enf ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15342 (Tanium addressed an improper access controls vulnerability in Reputati ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15341 (Tanium addressed an incorrect default permissions vulnerability in Ben ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15340 (Tanium addressed an incorrect default permissions vulnerability in Com ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15339 (Tanium addressed an incorrect default permissions vulnerability in Dis ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15338 (Tanium addressed an incorrect default permissions vulnerability in Par ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15337 (Tanium addressed an incorrect default permissions vulnerability in Pat ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15336 (Tanium addressed an incorrect default permissions vulnerability in Per ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15335 (Tanium addressed an information disclosure vulnerability in Threat Res ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15334 (Tanium addressed an information disclosure vulnerability in Threat Res ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15333 (Tanium addressed an information disclosure vulnerability in Threat Res ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15332 (Tanium addressed an information disclosure vulnerability in Threat Res ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15331 (Tanium addressed an uncontrolled resource consumption vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15330 (Tanium addressed an improper input validation vulnerability in Deploy.)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15329 (Tanium addressed an information disclosure vulnerability in Threat Res ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15328 (Tanium addressed an improper link resolution before file access vulner ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15327 (Tanium addressed an improper access controls vulnerability in Deploy.)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15326 (Tanium addressed an improper access controls vulnerability in Patch.)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15325 (Tanium addressed an improper input validation vulnerability in Discove ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15324 (Tanium addressed a documentation issue in Engage.)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15323 (Tanium addressed an improper certificate validation vulnerability in T ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15321 (Tanium addressed an improper input validation vulnerability in Tanium ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15312 (Tanium addressed an improper output sanitization vulnerability in Tani ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15311 (Tanium addressed an unauthorized code execution vulnerability in Taniu ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-15289 (Tanium addressed an improper access controls vulnerability in Interact ...)
- TODO: check
+ NOT-FOR-US: Tanium
CVE-2025-14150 (IBM webMethods Integration (on prem) - Integration Server 10.15 throug ...)
NOT-FOR-US: IBM
CVE-2025-14079 (The ELEX WordPress HelpDesk & Customer Ticketing System plugin for Wor ...)
=====================================
data/packages/nfu.yaml
=====================================
@@ -247,6 +247,8 @@
cna: Synaptics
- reason: Synology
cna: synology
+- reason: Tanium
+ cna: Tanium
- reason: TeamViewer
cna: TV
- reason: TECNO Mobile
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/8499121c9e2905e224e2d6b9b20da90b9b431a89...d6c365857e5186494fd0909518fbe84eafdf7e1c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/8499121c9e2905e224e2d6b9b20da90b9b431a89...d6c365857e5186494fd0909518fbe84eafdf7e1c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260205/28faef4c/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list