Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
e7d0ae09 by Moritz Muehlenhoff at 2025-10-02T12:13:48+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -23,13 +23,13 @@ CVE-2025-61691 (VT STUDIO versions 8.53 and prior contain 
an out-of-bounds read
 CVE-2025-61690 (KV STUDIO versions 12.23 and prior contain a buffer underflow 
vulnerab ...)
        NOT-FOR-US: KV STUDIO
 CVE-2025-61588 (RISC Zero is a zero-knowledge verifiable general computing 
platform ba ...)
-       TODO: check
+       NOT-FOR-US: RISC Zero
 CVE-2025-61587 (Weblate is a web based localization tool. An open redirect 
exists in v ...)
-       TODO: check
+       - weblate <itp> (bug #745661)
 CVE-2025-61583 (TS3 Manager is modern web interface for maintaining Teamspeak3 
servers ...)
-       TODO: check
+       NOT-FOR-US: TS3 Manager
 CVE-2025-61582 (TS3 Manager is modern web interface for maintaining Teamspeak3 
servers ...)
-       TODO: check
+       NOT-FOR-US: TS3 Manager
 CVE-2025-59951 (Termix is a web-based server management platform with SSH 
terminal, tu ...)
        TODO: check
 CVE-2025-59538 (Argo CD is a declarative, GitOps continuous delivery tool for 
Kubernet ...)
@@ -47,19 +47,19 @@ CVE-2025-58776 (KV Studio versions 12.23 and prior contain 
a stack-based buffer
 CVE-2025-58775 (KV STUDIO and VT5-WX15/WX12 contain a stack-based buffer 
overflow vuln ...)
        NOT-FOR-US: KV STUDIO and VT5-WX15/WX12
 CVE-2025-57389 (A reflected cross-site scripted (XSS) vulnerability in the 
/admin/syst ...)
-       TODO: check
+       NOT-FOR-US: OpenWRT
 CVE-2025-54811 (OpenPLC_V3 has a vulnerability in the enipThread function that 
occurs  ...)
-       TODO: check
+       NOT-FOR-US: OpenPLC
 CVE-2025-23355 (NVIDIA Nsight Graphics for Windows contains a vulnerability in 
an ngfx ...)
        TODO: check
 CVE-2025-23297 (NVIDIA Installer for NvAPP for Windows contains a 
vulnerability in the ...)
        TODO: check
 CVE-2025-11221 (Improper Limitation of a Pathname to a Restricted Directory 
('Path Tra ...)
-       TODO: check
+       NOT-FOR-US: GTONE ChangeFlow
 CVE-2025-11182 (Improper Limitation of a Pathname to a Restricted Directory 
('Path Tra ...)
-       TODO: check
+       NOT-FOR-US: GTONE ChangeFlow
 CVE-2025-11020 (An attacker can obtain server information using Path Traversal 
vulnera ...)
-       TODO: check
+       NOT-FOR-US: MarkAny SafePC Enterprise
 CVE-2025-9512 (The Schema & Structured Data for WP & AMP WordPress plugin 
before 1.50 ...)
        NOT-FOR-US: WordPress plugin
 CVE-2025-9075 (The ZoloBlocks plugin for WordPress is vulnerable to Stored 
Cross-Site ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7d0ae09089897354c0475621eed881ec363f75c

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7d0ae09089897354c0475621eed881ec363f75c
You're receiving this email because of your account on salsa.debian.org.


_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to