[Git][security-tracker-team/security-tracker][master] Add CVE-2025-56814/opencpn

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
de26a273 by Salvatore Bonaccorso at 2026-06-19T22:43:32+02:00
Add CVE-2025-56814/opencpn

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3592,6 +3592,8 @@ CVE-2025-60175 (Administrator Server Side Request Forgery (SSRF) in PopAd <= 1.0
 CVE-2025-59133 (Custom role Insecure Direct Object References (IDOR) in Projectopia <= ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-56814 (A code injection vulnerability in the wxExecute() function of OpenCPN  ...)
+	- opencpn <undetermined>
+	NOTE: https://jihoo-portfolio.vercel.app/posts/opencpn-rce-command-injection
 	TODO: check
 CVE-2025-10262 (Nokia SR Linux is vulnerable to local privilege escalation vulnerabili ...)
 	NOT-FOR-US: Nokia



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de26a27391f0f2f9bb86fce0b02d91cc8ee17e0d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de26a27391f0f2f9bb86fce0b02d91cc8ee17e0d
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260619/ae0e77f0/attachment.htm>