Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1e3b589c by Moritz Muehlenhoff at 2025-06-24T10:55:57+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,37 +1,37 @@
CVE-2025-6560 (Multiple wireless router models from Sapido have an Exposure of
Sensit ...)
- TODO: check
+ NOT-FOR-US: Sapido
CVE-2025-6559 (Multiple wireless router models from Sapido have an OS Command
Injecti ...)
- TODO: check
+ NOT-FOR-US: Sapido
CVE-2025-6552 (A vulnerability was found in java-aodeng Hope-Boot 1.0.0. It
has been ...)
- TODO: check
+ NOT-FOR-US: Hope-Boot
CVE-2025-6551 (A vulnerability was found in java-aodeng Hope-Boot 1.0.0 and
classifie ...)
- TODO: check
+ NOT-FOR-US: Hope-Boot
CVE-2025-6536 (A vulnerability has been found in Tarantool up to 3.3.1 and
classified ...)
TODO: check
CVE-2025-6535 (A vulnerability has been found in xxyopen/201206030 novel-plus
up to 5 ...)
- TODO: check
+ NOT-FOR-US: novel-plus
CVE-2025-6534 (A vulnerability, which was classified as problematic, was found
in xxy ...)
- TODO: check
+ NOT-FOR-US: novel-plus
CVE-2025-6533 (A vulnerability, which was classified as critical, has been
found in x ...)
- TODO: check
+ NOT-FOR-US: novel-plus
CVE-2025-6532 (A vulnerability classified as problematic was found in
NOYAFA/Xiami LF ...)
- TODO: check
+ NOT-FOR-US: NOYAFA/Xiami LF9 Pro
CVE-2025-6531 (A vulnerability was found in SIFUSM/MZZYG BD S1 up to 20250611.
It has ...)
- TODO: check
+ NOT-FOR-US: SIFUSM/MZZYG BD S1
CVE-2025-6530 (A vulnerability was found in 70mai M300 up to 20250611. It has
been cl ...)
- TODO: check
+ NOT-FOR-US: 70mai
CVE-2025-6529 (A vulnerability was found in 70mai M300 up to 20250611 and
classified ...)
- TODO: check
+ NOT-FOR-US: 70mai
CVE-2025-6528 (A vulnerability has been found in 70mai M300 up to 20250611 and
classi ...)
- TODO: check
+ NOT-FOR-US: 70mai
CVE-2025-6527 (A vulnerability, which was classified as problematic, was found
in 70m ...)
- TODO: check
+ NOT-FOR-US: 70mai
CVE-2025-6526 (A vulnerability, which was classified as problematic, has been
found i ...)
- TODO: check
+ NOT-FOR-US: 70mai
CVE-2025-6525 (A vulnerability classified as problematic was found in 70mai 1S
up to ...)
- TODO: check
+ NOT-FOR-US: 70mai
CVE-2025-6524 (A vulnerability classified as problematic has been found in
70mai 1S u ...)
- TODO: check
+ NOT-FOR-US: 70mai
CVE-2025-5258 (The Conference Scheduler plugin for WordPress is vulnerable to
Stored ...)
NOT-FOR-US: WordPress plugin
CVE-2025-52979
@@ -53,15 +53,15 @@ CVE-2025-52972
CVE-2025-52971
REJECTED
CVE-2025-52574 (SysmonElixir is a system monitor HTTP service in Elixir. Prior
to vers ...)
- TODO: check
+ NOT-FOR-US: SysmonElixir
CVE-2025-52570 (Letmein is an authenticating port knocker. Prior to version
10.2.1, Th ...)
TODO: check
CVE-2025-52568 (NeKernal is a free and open-source operating system stack.
Prior to ve ...)
- TODO: check
+ NOT-FOR-US: NeKernal
CVE-2025-52566 (llama.cpp is an inference of several LLM models in C/C++.
Prior to ver ...)
TODO: check
CVE-2025-52562 (Convoy is a KVM server management panel for hosting
businesses. In ver ...)
- TODO: check
+ NOT-FOR-US: Convoy
CVE-2025-52561 (HTMLSanitizer.jl is a Whitelist-based HTML sanitizer. Prior to
version ...)
TODO: check
CVE-2025-52560 (Kanboard is project management software that focuses on the
Kanban met ...)
@@ -71,31 +71,31 @@ CVE-2025-52558 (changedetection.io is a free open source
web page change detecti
CVE-2025-50213 (Failure to Sanitize Special Elements into a Different Plane
(Special E ...)
TODO: check
CVE-2025-48890 (WRH-733GBK and WRH-733GWH contain an improper neutralization
of specia ...)
- TODO: check
+ NOT-FOR-US: ELECOM
CVE-2025-48470 (Successful exploitation of the stored cross-site scripting
vulnerabili ...)
- TODO: check
+ NOT-FOR-US: Advantech
CVE-2025-48469 (Successful exploitation of the vulnerability could allow an
unauthenti ...)
- TODO: check
+ NOT-FOR-US: Advantech
CVE-2025-48468 (Successful exploitation of the vulnerability could allow an
attacker t ...)
- TODO: check
+ NOT-FOR-US: Advantech
CVE-2025-48467 (Successful exploitation of the vulnerability could allow an
attacker t ...)
- TODO: check
+ NOT-FOR-US: Advantech
CVE-2025-48466 (Successful exploitation of the vulnerability could allow an
unauthenti ...)
- TODO: check
+ NOT-FOR-US: Advantech
CVE-2025-48463 (Successful exploitation of the vulnerability could allow an
attacker t ...)
- TODO: check
+ NOT-FOR-US: Advantech
CVE-2025-48462 (Successful exploitation of the vulnerability could allow an
attacker t ...)
- TODO: check
+ NOT-FOR-US: Advantech
CVE-2025-48461 (Successful exploitation of the vulnerability could allow an
unauthenti ...)
- TODO: check
+ NOT-FOR-US: Advantech
CVE-2025-47943 (Gogs is an open source self-hosted Git service. In application
version ...)
TODO: check
CVE-2025-43879 (WRH-733GBK and WRH-733GWH contain an improper neutralization
of specia ...)
- TODO: check
+ NOT-FOR-US: ELECOM
CVE-2025-43877 (WRC-1167GHBK2-S contains a stored cross-site scripting
vulnerability i ...)
- TODO: check
+ NOT-FOR-US: ELECOM
CVE-2025-41427 (WRC-X3000GS, WRC-X3000GSA, and WRC-X3000GSN contain an
improper neutra ...)
- TODO: check
+ NOT-FOR-US: ELECOM
CVE-2025-3090 (An unauthenticated remote attacker can obtain limited sensitive
inform ...)
TODO: check
CVE-2025-36519 (Unrestricted upload of file with dangerous type issue exists
in WRC-25 ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e3b589cb7cfd048deefaa483a2367827880bb28
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e3b589cb7cfd048deefaa483a2367827880bb28
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
