[Git][security-tracker-team/security-tracker][master] Process some NFUs

Tue, 23 Dec 2025 12:47:35 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
7c3477fc by Salvatore Bonaccorso at 2025-12-23T21:46:56+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -339,17 +339,17 @@ CVE-2025-62107 (Cross-Site Request Forgery (CSRF) 
vulnerability in PluginOps Fea
 CVE-2025-62094 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
        NOT-FOR-US: WordPress plugin or theme
 CVE-2025-61740 (Authentication issue that does not verify the source of a 
packet which ...)
-       TODO: check
+       NOT-FOR-US: Johnson Controls
 CVE-2025-61739 (Due to Nonce reuse, attackers can perform reply attack or 
decrypt capt ...)
-       TODO: check
+       NOT-FOR-US: Johnson Controls
 CVE-2025-61738 (Under certain circumstances, attacker can capture the network 
key, rea ...)
-       TODO: check
+       NOT-FOR-US: Johnson Controls
 CVE-2025-54890 (Improper Neutralization of Input During Web Page Generation 
(XSS or 'C ...)
        NOT-FOR-US: Centreon
 CVE-2025-26787 (An error in the SignServer container startup logic was found 
in Keyfac ...)
        NOT-FOR-US: Keyfactor SignServer
 CVE-2025-26379 (Use of a weak pseudo-random number generator, which may allow 
an attac ...)
-       TODO: check
+       NOT-FOR-US: Johnson Controls
 CVE-2025-15033 (A vulnerability in WooCommerce 8.1 to 10.4.2 can allow 
logged-in custo ...)
        NOT-FOR-US: WordPress plugin
 CVE-2025-14273 (Mattermost versions 11.1.x <= 11.1.0, 11.0.x <= 11.0.5, 
10.12.x <= 10. ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c3477fc87083b6c247ec9e9006f28376092b4ab

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c3477fc87083b6c247ec9e9006f28376092b4ab
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to