Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f5392c9c by Salvatore Bonaccorso at 2025-11-12T09:32:09+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11,7 +11,7 @@ CVE-2025-54983 (A health check port on Zscaler Client
Connector on Windows, vers
CVE-2025-43205 (An out-of-bounds access issue was addressed with improved
bounds check ...)
NOT-FOR-US: Apple
CVE-2025-41116 (When using the Grafana Databricks Datasource Plugin, if Oauth
passthro ...)
- TODO: check
+ NOT-FOR-US: Grafana Databricks Datasource Plugin
CVE-2025-40827 (A vulnerability has been identified in Siemens Software Center
(All ve ...)
NOT-FOR-US: Siemens
CVE-2025-40817 (A vulnerability has been identified in LOGO! 12/24RCE
(6ED1052-1MD08-0 ...)
@@ -36,21 +36,21 @@ CVE-2025-40110 (In the Linux kernel, the following
vulnerability has been resolv
[trixie] - linux 6.12.57-1
NOTE:
https://git.kernel.org/linus/5ac2c0279053a2c5265d46903432fb26ae2d0da2 (6.18-rc1)
CVE-2025-3717 (When using the Grafana Snowflake Datasource Plugin, if Oauth
passthrou ...)
- TODO: check
+ NOT-FOR-US: Grafana Snowflake Datasource Plugin
CVE-2025-13047 (Bacteriology Laboratory Reporting System developed by ViewLead
Technol ...)
- TODO: check
+ NOT-FOR-US: Bacteriology Laboratory Reporting System
CVE-2025-13046 (Bacteriology Laboratory Reporting System developed by ViewLead
Technol ...)
- TODO: check
+ NOT-FOR-US: Bacteriology Laboratory Reporting System
CVE-2025-12901 (The Asgaros Forum plugin for WordPress is vulnerable to
Cross-Site Req ...)
NOT-FOR-US: WordPress plugin
CVE-2025-12872 (The a+HRD and a+HCM developed by aEnrich has a Stored
Cross-Site Scrip ...)
- TODO: check
+ NOT-FOR-US: aEnrich
CVE-2025-12871 (The a+HRD developed by aEnrich has an Authentication Abuse
vulnerabili ...)
- TODO: check
+ NOT-FOR-US: aEnrich
CVE-2025-12870 (The a+HRD developed by aEnrich has an Authentication Abuse
vulnerabili ...)
- TODO: check
+ NOT-FOR-US: aEnrich
CVE-2025-12869 (The a+HRD developed by aEnrich has a Stored Cross-Site
Scripting vulne ...)
- TODO: check
+ NOT-FOR-US: aEnrich
CVE-2025-12833 (The GeoDirectory \u2013 WP Business Directory Plugin and
Classified Li ...)
NOT-FOR-US: WordPress plugin
CVE-2025-12633 (The Booking Calendar | Appointment Booking | Bookit plugin for
WordPre ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f5392c9cd766b4f08b53d0cb4c3b55034d83ce64
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f5392c9cd766b4f08b53d0cb4c3b55034d83ce64
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
