Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
1a951f83 by security tracker role at 2025-05-29T20:22:32+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2025-5334 (Exposure of private personal information to an unauthorized 
actor in t ...)
-       TODO: check
+       NOT-FOR-US: Devolutions
 CVE-2025-5326 (A vulnerability was found in zhilink 
\u667a\u4e92\u8054(\u6df1\u5733)\ ...)
        TODO: check
 CVE-2025-5325 (A vulnerability has been found in zhilink 
\u667a\u4e92\u8054(\u6df1\u5 ...)
@@ -13,15 +13,15 @@ CVE-2025-5321 (A vulnerability classified as critical was 
found in aimhubio aim
 CVE-2025-5320 (A vulnerability classified as problematic has been found in 
gradio-app ...)
        TODO: check
 CVE-2025-5286 (The Bold Page Builder plugin for WordPress is vulnerable to 
Stored Cro ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-5122 (The Map Block Leaflet plugin for WordPress is vulnerable to 
Stored Cro ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-4967 (Esri Portal for ArcGIS 11.4 and prior allows a remote, 
unauthenticated ...)
        TODO: check
 CVE-2025-4687 (In Teltonika Networks Remote Management System (RMS), it is 
possible t ...)
        TODO: check
 CVE-2025-4670 (The Easy Digital Downloads \u2013 eCommerce Payments and 
Subscriptions ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-4081 (Use of entitlement 
"com.apple.security.cs.disable-library-validation"  ...)
        TODO: check
 CVE-2025-48748 (Netwrix Directory Manager (formerly Imanami GroupID) through 
v.10.0.77 ...)
@@ -71,13 +71,13 @@ CVE-2025-45474 (maccms10 v2025.1000.4047 is vulnerable to 
Server-side request fo
 CVE-2025-3913 (Mattermost versions 10.7.x <= 10.7.0, 10.6.x <= 10.6.2, 10.5.x 
<= 10.5 ...)
        TODO: check
 CVE-2025-3050 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 11.5 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2025-33043 (APTIOV contains a vulnerability in BIOS where an attacker may 
cause an ...)
-       TODO: check
+       NOT-FOR-US: AMI
 CVE-2025-32752 (Dell ThinOS 2502 and prior contain a Cleartext Storage of 
Sensitive In ...)
-       TODO: check
+       NOT-FOR-US: Dell / EMC
 CVE-2025-2518 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 11.5 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2025-29632 (Buffer Overflow vulnerability in Free5gc v.4.0.0 allows a 
remote attac ...)
        TODO: check
 CVE-2025-27151 (Redis is an open source, in-memory database that persists on 
disk. In  ...)
@@ -91,7 +91,7 @@ CVE-2024-52588 (Strapi is an open-source content management 
system. Prior to ver
 CVE-2024-51392 (An issue in OpenKnowledgeMaps Headstart v7 allows a remote 
attacker to ...)
        TODO: check
 CVE-2024-49350 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 11.1 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2024-22654 (tcpreplay v4.4.4 was discovered to contain an infinite loop 
via the tc ...)
        TODO: check
 CVE-2024-22653 (yasm commit 9defefae was discovered to contain a NULL pointer 
derefere ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a951f8344daadfbdd33467c56e75559c0317d98

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a951f8344daadfbdd33467c56e75559c0317d98
You're receiving this email because of your account on salsa.debian.org.


_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to