Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
71cedf2a by Salvatore Bonaccorso at 2025-07-10T23:26:29+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21,7 +21,7 @@ CVE-2025-7408 (A vulnerability has been found in
SourceCodester Zoo Management S
CVE-2025-7407 (A vulnerability, which was classified as critical, was found in
Netgea ...)
NOT-FOR-US: Netgear
CVE-2025-7021 (Fullscreen API Spoofing and UI Redressing in the handling of
Fullscree ...)
- TODO: check
+ NOT-FOR-US: OpenAI Operator SaaS
CVE-2025-6948 (An issue has been discovered in GitLab CE/EE affecting all
versions fr ...)
TODO: check
CVE-2025-6211 (A vulnerability in the DocugamiReader class of the
run-llama/llama_ind ...)
@@ -67,7 +67,7 @@ CVE-2025-53378 (A missing authentication vulnerability in
Trend Micro Worry-Free
CVE-2025-53371 (DiscordNotifications is an extension for MediaWiki that sends
notifica ...)
TODO: check
CVE-2025-53364 (Parse Server is an open source backend that can be deployed to
any inf ...)
- TODO: check
+ NOT-FOR-US: Parse Server
CVE-2025-53020 (Late Release of Memory after Effective Lifetime vulnerability
in Apach ...)
TODO: check
CVE-2025-52837 (Trend Micro Password Manager (Consumer) version 5.8.0.1327 and
below i ...)
@@ -95,9 +95,9 @@ CVE-2025-49462 (Cross-site scripting in certain Zoom Clients
before version 6.4
CVE-2025-47813 (loginok.html in Wing FTP Server before 7.4.4 discloses the
full local ...)
TODO: check
CVE-2025-47812 (In Wing FTP Server before 7.4.4. the user and admin web
interfaces mis ...)
- TODO: check
+ NOT-FOR-US: Wing FTP Server
CVE-2025-47811 (In Wing FTP Server through 7.4.4, the administrative web
interface (li ...)
- TODO: check
+ NOT-FOR-US: Wing FTP Server
CVE-2025-46789 (Classic buffer overflow in certain Zoom Clients for Windows
may allow ...)
NOT-FOR-US: Zoom
CVE-2025-46788 (Improper certificate validation in Zoom Workplace for Linux
before ver ...)
@@ -105,7 +105,7 @@ CVE-2025-46788 (Improper certificate validation in Zoom
Workplace for Linux befo
CVE-2025-45662 (A cross-site scripting (XSS) vulnerability in the component
/master/lo ...)
TODO: check
CVE-2025-44251 (Ecovacs Deebot T10 1.7.2 transmits Wi-Fi credentials in
cleartext duri ...)
- TODO: check
+ NOT-FOR-US: Ecovacs
CVE-2025-3396 (An issue has been discovered in GitLab EE affecting all
versions from ...)
TODO: check
CVE-2025-36090 (IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a
remote ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71cedf2aea23bf7e49c9be881a9027af1d4fbc38
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71cedf2aea23bf7e49c9be881a9027af1d4fbc38
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
