Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1a951f83 by security tracker role at 2025-05-29T20:22:32+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
CVE-2025-5334 (Exposure of private personal information to an unauthorized
actor in t ...)
- TODO: check
+ NOT-FOR-US: Devolutions
CVE-2025-5326 (A vulnerability was found in zhilink
\u667a\u4e92\u8054(\u6df1\u5733)\ ...)
TODO: check
CVE-2025-5325 (A vulnerability has been found in zhilink
\u667a\u4e92\u8054(\u6df1\u5 ...)
@@ -13,15 +13,15 @@ CVE-2025-5321 (A vulnerability classified as critical was
found in aimhubio aim
CVE-2025-5320 (A vulnerability classified as problematic has been found in
gradio-app ...)
TODO: check
CVE-2025-5286 (The Bold Page Builder plugin for WordPress is vulnerable to
Stored Cro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-5122 (The Map Block Leaflet plugin for WordPress is vulnerable to
Stored Cro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-4967 (Esri Portal for ArcGIS 11.4 and prior allows a remote,
unauthenticated ...)
TODO: check
CVE-2025-4687 (In Teltonika Networks Remote Management System (RMS), it is
possible t ...)
TODO: check
CVE-2025-4670 (The Easy Digital Downloads \u2013 eCommerce Payments and
Subscriptions ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-4081 (Use of entitlement
"com.apple.security.cs.disable-library-validation" ...)
TODO: check
CVE-2025-48748 (Netwrix Directory Manager (formerly Imanami GroupID) through
v.10.0.77 ...)
@@ -71,13 +71,13 @@ CVE-2025-45474 (maccms10 v2025.1000.4047 is vulnerable to
Server-side request fo
CVE-2025-3913 (Mattermost versions 10.7.x <= 10.7.0, 10.6.x <= 10.6.2, 10.5.x
<= 10.5 ...)
TODO: check
CVE-2025-3050 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect
Server) 11.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-33043 (APTIOV contains a vulnerability in BIOS where an attacker may
cause an ...)
- TODO: check
+ NOT-FOR-US: AMI
CVE-2025-32752 (Dell ThinOS 2502 and prior contain a Cleartext Storage of
Sensitive In ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-2518 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect
Server) 11.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-29632 (Buffer Overflow vulnerability in Free5gc v.4.0.0 allows a
remote attac ...)
TODO: check
CVE-2025-27151 (Redis is an open source, in-memory database that persists on
disk. In ...)
@@ -91,7 +91,7 @@ CVE-2024-52588 (Strapi is an open-source content management
system. Prior to ver
CVE-2024-51392 (An issue in OpenKnowledgeMaps Headstart v7 allows a remote
attacker to ...)
TODO: check
CVE-2024-49350 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect
Server) 11.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2024-22654 (tcpreplay v4.4.4 was discovered to contain an infinite loop
via the tc ...)
TODO: check
CVE-2024-22653 (yasm commit 9defefae was discovered to contain a NULL pointer
derefere ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a951f8344daadfbdd33467c56e75559c0317d98
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a951f8344daadfbdd33467c56e75559c0317d98
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
