Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
da8066d0 by security tracker role at 2025-08-27T20:13:48+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,65 +1,65 @@
CVE-2025-9533 (A vulnerability has been found in TOTOLINK T10
4.1.8cu.5241_B20210927. ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2025-9532 (A flaw has been found in Portabilis i-Educar up to 2.10. This
impacts ...)
- TODO: check
+ NOT-FOR-US: Portabilis
CVE-2025-9531 (A vulnerability was detected in Portabilis i-Educar up to 2.10.
This a ...)
- TODO: check
+ NOT-FOR-US: Portabilis
CVE-2025-9529 (A weakness has been identified in Campcodes Payroll Management
System ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-9528 (A vulnerability was determined in Linksys E1700 1.0.0.4.003.
This vuln ...)
- TODO: check
+ NOT-FOR-US: Linksys
CVE-2025-9527 (A vulnerability was found in Linksys E1700 1.0.0.4.003. This
affects t ...)
- TODO: check
+ NOT-FOR-US: Linksys
CVE-2025-9526 (A vulnerability has been found in Linksys E1700 1.0.0.4.003.
Affected ...)
- TODO: check
+ NOT-FOR-US: Linksys
CVE-2025-9525 (A flaw has been found in Linksys E1700 1.0.0.4.003. Affected by
this v ...)
- TODO: check
+ NOT-FOR-US: Linksys
CVE-2025-9523 (A vulnerability was detected in Tenda AC1206 15.03.06.23.
Affected is ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-5187 (A vulnerability exists in the NodeRestriction admission
controller in ...)
TODO: check
CVE-2025-5101 (An issue has been discovered in GitLab CE/EE affecting all
versions be ...)
TODO: check
CVE-2025-58218 (Deserialization of Untrusted Data vulnerability in
enituretechnology S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58217 (Cross-Site Request Forgery (CSRF) vulnerability in GeroNikolov
Instant ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58216 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58213 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58212 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58211 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58209 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58208 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58205 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58204 (URL Redirection to Untrusted Site ('Open Redirect')
vulnerability in E ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58203 (Server-Side Request Forgery (SSRF) vulnerability in solacewp
Solace Ex ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58202 (Cross-Site Request Forgery (CSRF) vulnerability in Plugins and
Snippet ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58201 (Missing Authorization vulnerability in AfterShip & Automizely
AfterShi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58198 (Missing Authorization vulnerability in Xpro Xpro Theme Builder
allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58197 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58196 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58195 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58194 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58193 (Missing Authorization vulnerability in Uncanny Owl Uncanny
Automator a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-58192 (Missing Authorization vulnerability in Xylus Themes WP Bulk
Delete all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-57821 (Basecamp's Google Sign-In adds Google sign-in to Rails
applications. P ...)
TODO: check
CVE-2025-56694 (Client-side password validation (CWE-602) in lumasoft
fotoShare Cloud ...)
@@ -67,9 +67,9 @@ CVE-2025-56694 (Client-side password validation (CWE-602) in
lumasoft fotoShare
CVE-2025-55618 (In Hyundai Navigation App STD5W.EUR.HMC.230516.afa908d, an
attacker ca ...)
TODO: check
CVE-2025-55582 (D-Link DCS-825L firmware v1.08.01 contains a vulnerability in
the watc ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2025-55495 (Tenda AC6 V15.03.06.23_multi was discovered to contain a
buffer overfl ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-55422 (In FoxCMS 1.2.6, there is a reflected Cross Site Scripting
(XSS) vulne ...)
TODO: check
CVE-2025-54598 (The Bevy Event service through 2025-07-22, as used for eBay
Seller Eve ...)
@@ -103,13 +103,13 @@ CVE-2025-50428 (In RaspAP raspap-webgui 3.3.2 and
earlier, a command injection v
CVE-2025-4225 (An issue has been discovered in GitLab CE/EE affecting all
versions fr ...)
TODO: check
CVE-2025-43882 (Dell ThinOS 10, versions prior to 2508_10.0127, contains an
Unverified ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-43730 (Dell ThinOS 10, versions prior to 2508_10.0127, contains an
Improper N ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-43729 (Dell ThinOS 10, versions prior to 2508_10.0127, contains an
Incorrect ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-43728 (Dell ThinOS 10, versions prior to 2508_10.0127, contain a
Protection M ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-3601 (An issue has been discovered in GitLab CE/EE affecting all
versions fr ...)
TODO: check
CVE-2025-34161 (Coolify versions prior to v4.0.0-beta.420.7 are vulnerable to
a remote ...)
@@ -175,9 +175,9 @@ CVE-2025-20292 (A vulnerability in the CLI of Cisco NX-OS
Software could allow a
CVE-2025-20290 (A vulnerability in the logging feature of Cisco NX-OS Software
for Cis ...)
TODO: check
CVE-2025-20262 (A vulnerability in the Protocol Independent Multicast Version
6 (PIM6) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2025-20241 (A vulnerability in the Intermediate System-to-Intermediate
System (IS- ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-37777 (O2OA v9.0.3 was discovered to contain a remote code execution
(RCE) vu ...)
TODO: check
CVE-2025-58050 (The PCRE2 library is a set of C functions that implement
regular expre ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/da8066d0126f78bf3a7cc5d3a02bad3105bff7d4
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/da8066d0126f78bf3a7cc5d3a02bad3105bff7d4
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
