Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2d22d557 by security tracker role at 2025-11-05T08:13:48+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
CVE-2025-8871 (The Everest Forms (Pro) plugin for WordPress is vulnerable to
PHP Obje ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-6027 (The Ace User Management WordPress plugin through 2.0.3 does not
proper ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-64455
REJECTED
CVE-2025-64454
@@ -47,9 +47,9 @@ CVE-2025-62369 (Xibo is an open source digital signage
platform with a web conte
CVE-2025-62225 (Optical Disc Archive Software provided by Sony Corporation
registers a ...)
TODO: check
CVE-2025-59596 (CVE-2025-59596 is a denial-of-service vulnerability in Secure
Access ...)
- TODO: check
+ NOT-FOR-US: Absolute Software
CVE-2025-59595 (CVE-2025-59595 is an internally discovered denial of service
vulnerab ...)
- TODO: check
+ NOT-FOR-US: Absolute Software
CVE-2025-56230 (Tencent Docs Desktop 3.9.20 and earlier suffers from Missing
SSL Certi ...)
TODO: check
CVE-2025-55155 (Mantis Bug Tracker (MantisBT) is an open source issue tracker.
In vers ...)
@@ -73,61 +73,61 @@ CVE-2025-32786 (The GLPI Inventory Plugin handles network
discovery, inventory,
CVE-2025-27374 (An issue was discovered in the Secure Boot component in
Samsung Mobile ...)
TODO: check
CVE-2025-21079 (Improper input validation in Samsung Members prior to version
5.5.01.3 ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2025-21078 (Use of insufficiently random value of secretKey in Smart
Switch prior ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2025-21077 (Improper input validation in Samsung Email prior to version
6.2.06.0 a ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2025-21076 (Improper handling of insufficient permissions or privileges in
Samsung ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2025-21075 (Out-of-bounds write in libimagecodec.quram.so prior to SMR
Nov-2025 Re ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2025-21074 (Out-of-bounds read in libimagecodec.quram.so prior to SMR
Nov-2025 Rel ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2025-21073 (Insecure default configuration in USB connection mode prior to
SMR Nov ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2025-21071 (Out-of-bounds write in handling opcode in fingerprint trustlet
prior t ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2025-12735 (The expr-eval library is a JavaScript expression parser and
evaluator ...)
TODO: check
CVE-2025-12677 (The KiotViet Sync plugin for WordPress is vulnerable to
Sensitive Info ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-12676 (The KiotViet Sync plugin for WordPress is vulnerable to
authorizarion ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-12675 (The KiotViet Sync plugin for WordPress is vulnerable to
unauthorized m ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-12674 (The KiotViet Sync plugin for WordPress is vulnerable to
arbitrary file ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-12582 (The Features plugin for WordPress is vulnerable to
unauthorized modifi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-12580 (The SMS for WordPress plugin for WordPress is vulnerable to
Reflected ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-12388 (The B Carousel Block \u2013 Responsive Image and Content
Carousel plug ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-12384 (The Document Embedder \u2013 Embed PDFs, Word, Excel, and
Other Files ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-12197 (The The Events Calendar plugin for WordPress is vulnerable to
blind SQ ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-12139 (The File Manager for Google Drive \u2013 Integrate Google
Drive with W ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-11917 (The WPeMatico RSS Feed Fetcher plugin for WordPress is
vulnerable to S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-11835 (The Paid Membership Subscriptions \u2013 Effortless
Memberships, Recur ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-11749 (The AI Engine plugin for WordPress is vulnerable to Sensitive
Informat ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-11373 (The Popup and Slider Builder by Depicter \u2013 Add Email
collecting P ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-11162 (The Spectra Gutenberg Blocks \u2013 Website Builder for the
Block Edit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-11072 (The MelAbu WP Download Counter Button WordPress plugin through
1.8.6.7 ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-10873 (The ElementInvader Addons for Elementor WordPress plugin
before 1.4.1 ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-10622 (A flaw was found in Red Hat Satellite (Foreman component).
This vulner ...)
TODO: check
CVE-2025-10567 (The FunnelKit WordPress plugin before 3.12.0.1 does not
sanitize user ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-56426 (An issue was discovered in Samsung Mobile Processor and
Wearable Proce ...)
TODO: check
CVE-2025-62507 (Redis is an open source, in-memory database that persists on
disk. In ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d22d55787cbe3bb4383b098570708bcf4410caa
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d22d55787cbe3bb4383b098570708bcf4410caa
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
