Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e42f9ce3 by Salvatore Bonaccorso at 2025-04-09T22:23:28+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
CVE-2025-3475 (Allocation of Resources Without Limits or Throttling, Incorrect
Author ...)
- TODO: check
+ NOT-FOR-US: Drupal core and addons
CVE-2025-3474 (Missing Authentication for Critical Function vulnerability in
Drupal P ...)
- TODO: check
+ NOT-FOR-US: Drupal core and addons
CVE-2025-3131 (Cross-Site Request Forgery (CSRF) vulnerability in Drupal ECA:
Event - ...)
- TODO: check
+ NOT-FOR-US: Drupal core and addons
CVE-2025-3115 (Injection Vulnerabilities: Attackers can inject malicious code,
potent ...)
TODO: check
CVE-2025-3114 (Code Execution via Malicious Files:Attackers can create
specially craf ...)
@@ -23,109 +23,109 @@ CVE-2025-32690 (Improper Neutralization of Input During
Web Page Generation ('Cr
CVE-2025-32685 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
TODO: check
CVE-2025-32684 (Missing Authorization vulnerability in RomanCode MapSVG Lite
allows Ex ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32683 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32680 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32679 (Cross-Site Request Forgery (CSRF) vulnerability in ZealousWeb
User Reg ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32678 (Cross-Site Request Forgery (CSRF) vulnerability in Ashish
Ajani WP Sho ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32677 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32676 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32675 (Server-Side Request Forgery (SSRF) vulnerability in
QuantumCloud SEO H ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32673 (Cross-Site Request Forgery (CSRF) vulnerability in epeken
Epeken All K ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32669 (Cross-Site Request Forgery (CSRF) vulnerability in MERGADO
Mergado Pac ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32667 (Cross-Site Request Forgery (CSRF) vulnerability in fromdoppler
Doppler ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32664 (Cross-Site Request Forgery (CSRF) vulnerability in ashokbasnet
Nepali ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32661 (Cross-Site Request Forgery (CSRF) vulnerability in WP Map
Plugins Inte ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32659 (Cross-Site Request Forgery (CSRF) vulnerability in
fraudlabspro FraudL ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32645 (Cross-Site Request Forgery (CSRF) vulnerability in Hiren Patel
Custom ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32644 (Cross-Site Request Forgery (CSRF) vulnerability in ip2location
IP2Loca ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32642 (Cross-Site Request Forgery (CSRF) vulnerability in appsbd Vite
Coupon ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32641 (Cross-Site Request Forgery (CSRF) vulnerability in anantaddons
Anant A ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32640 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32624 (Missing Authorization vulnerability in czater Czater.pl \u2013
live ch ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32623 (Cross-Site Request Forgery (CSRF) vulnerability in plainware
PlainInve ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32621 (Cross-Site Request Forgery (CSRF) vulnerability in Vsourz
Digital WP M ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32619 (Cross-Site Request Forgery (CSRF) vulnerability in KeyCAPTCHA
KeyCAPTC ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32617 (Cross-Site Request Forgery (CSRF) vulnerability in
Ydesignservices Mul ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32616 (Cross-Site Request Forgery (CSRF) vulnerability in nimbata
Nimbata Cal ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32612 (Cross-Site Request Forgery (CSRF) vulnerability in rafasashi
User Sess ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32610 (Cross-Site Request Forgery (CSRF) vulnerability in
Foliovision: Making ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32597 (Cross-Site Request Forgery (CSRF) vulnerability in George
Sexton WordP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32591 (Cross-Site Request Forgery (CSRF) vulnerability in Kevon
Adonis WP Abs ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32584 (Cross-Site Request Forgery (CSRF) vulnerability in Chat2 Chat2
allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32581 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32580 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32576 (Cross-Site Request Forgery (CSRF) vulnerability in Agence web
Eoxia - ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32575 (Cross-Site Request Forgery (CSRF) vulnerability in axew3 WP
w3all phpB ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32570 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32563 (Cross-Site Request Forgery (CSRF) vulnerability in dangrossman
WP Cala ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32559 (Cross-Site Request Forgery (CSRF) vulnerability in REVE Chat
REVE Chat ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32556 (Cross-Site Request Forgery (CSRF) vulnerability in Sandor
Kovacs Simpl ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32555 (Cross-Site Request Forgery (CSRF) vulnerability in Edamam SEO,
Nutriti ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32550 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32547 (Cross-Site Request Forgery (CSRF) vulnerability in gtlwpdev
All push n ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32543 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32518 (Cross-Site Request Forgery (CSRF) vulnerability in
hossainawlad ALD Lo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32505 (Cross-Site Request Forgery (CSRF) vulnerability in SCAND
MultiMailer a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32503 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32502 (Cross-Site Request Forgery (CSRF) vulnerability in
lemmentwickler ePap ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32501 (Cross-Site Request Forgery (CSRF) vulnerability in dimafreund
RentSyst ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32500 (Cross-Site Request Forgery (CSRF) vulnerability in Sudavar
Codescar Ra ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32499 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32498 (Cross-Site Request Forgery (CSRF) vulnerability in oleglark
VKontakte ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32497 (Cross-Site Request Forgery (CSRF) vulnerability in squiter
Spoiler Blo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32496 (Cross-Site Request Forgery (CSRF) vulnerability in
Uncodethemes Ultra ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32495 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
TODO: check
CVE-2025-32494 (Cross-Site Request Forgery (CSRF) vulnerability in bozdoz
reCAPTCHA Je ...)
@@ -143,23 +143,23 @@ CVE-2025-32487 (Server-Side Request Forgery (SSRF)
vulnerability in Joe Waymark
CVE-2025-32485 (Cross-Site Request Forgery (CSRF) vulnerability in Bjoern WP
Performan ...)
TODO: check
CVE-2025-32484 (Cross-Site Request Forgery (CSRF) vulnerability in Mathieu
Chartier WP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32483 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
TODO: check
CVE-2025-32482 (Cross-Site Request Forgery (CSRF) vulnerability in quanganhdo
Custom S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32481 (Cross-Site Request Forgery (CSRF) vulnerability in ninotheme
Nino Soci ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32480 (Cross-Site Request Forgery (CSRF) vulnerability in dalziel
Windows Liv ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32479 (Cross-Site Request Forgery (CSRF) vulnerability in ab-tools
Flags Widg ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32478 (Cross-Site Request Forgery (CSRF) vulnerability in Mario
Aguiar WP Sex ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32477 (Cross-Site Request Forgery (CSRF) vulnerability in Jordi
Salord WP-Eas ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32476 (Cross-Site Request Forgery (CSRF) vulnerability in blueinstyle
Advance ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32381 (XGrammar is an open-source library for efficient, flexible,
and portab ...)
TODO: check
CVE-2025-32380 (The Apollo Router Core is a configurable, high-performance
graph route ...)
@@ -181,57 +181,57 @@ CVE-2025-32371 (DNN (formerly DotNetNuke) is an
open-source web content manageme
CVE-2025-32016 (Microsoft Identity Web is a library which contains a set of
reusable c ...)
TODO: check
CVE-2025-31404 (Cross-Site Request Forgery (CSRF) vulnerability in Wladyslaw
Madejczyk ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31402 (Cross-Site Request Forgery (CSRF) vulnerability in NewsBoard
Plugin Ne ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31401 (Cross-Site Request Forgery (CSRF) vulnerability in mmetrodw
MMX – ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31400 (Cross-Site Request Forgery (CSRF) vulnerability in icyleaf WS
Audio Pl ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31399 (Cross-Site Request Forgery (CSRF) vulnerability in Chandan
Garg CG Scr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31395 (Cross-Site Request Forgery (CSRF) vulnerability in a.ankit
Easy Custom ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31394 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31393 (Cross-Site Request Forgery (CSRF) vulnerability in vfvalent
Social Boo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31392 (Cross-Site Request Forgery (CSRF) vulnerability in Shameem
Reza Smart ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31391 (Cross-Site Request Forgery (CSRF) vulnerability in regen
Script Compre ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31390 (Cross-Site Request Forgery (CSRF) vulnerability in bdoga
Social Crowd ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31388 (Cross-Site Request Forgery (CSRF) vulnerability in doa The
World allow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31385 (Cross-Site Request Forgery (CSRF) vulnerability in Site Table
of Cont ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31383 (Cross-Site Request Forgery (CSRF) vulnerability in FrescoChat
Live Ch ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31382 (Cross-Site Request Forgery (CSRF) vulnerability in theode
Language Fie ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31377 (Missing Authorization vulnerability in Asaquzzaman mishu Woo
Product F ...)
TODO: check
CVE-2025-31375 (Cross-Site Request Forgery (CSRF) vulnerability in bhoogterp
Scheduled ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31042 (Missing Authorization vulnerability in rtakao Sandwich Adsense
allows ...)
TODO: check
CVE-2025-31038 (Cross-Site Request Forgery (CSRF) vulnerability in Essential
Marketer ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31036 (Cross-Site Request Forgery (CSRF) vulnerability in WPSolr free
WPSolr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31035 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
TODO: check
CVE-2025-31034 (Cross-Site Request Forgery (CSRF) vulnerability in AboZain
Albanna Cus ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31033 (Cross-Site Request Forgery (CSRF) vulnerability in Adam Nowak
Buddypre ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31032 (Cross-Site Request Forgery (CSRF) vulnerability in Pagopar -
Grupo M S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31026 (Cross-Site Request Forgery (CSRF) vulnerability in Austin
Comment Vali ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31023 (Cross-Site Request Forgery (CSRF) vulnerability in Purab Seo
Meta Tags ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31020 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
TODO: check
CVE-2025-31017 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
@@ -243,39 +243,39 @@ CVE-2025-31009 (Server-Side Request Forgery (SSRF)
vulnerability in Jan Boddez I
CVE-2025-31008 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
TODO: check
CVE-2025-31005 (Cross-Site Request Forgery (CSRF) vulnerability in Uzair
Easyfonts all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31004 (Missing Authorization vulnerability in Croover.inc Rich Table
of Conte ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31003 (Exposure of Sensitive System Information to an Unauthorized
Control Sp ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31002 (Unrestricted Upload of File with Dangerous Type vulnerability
in Bogda ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-30677 (Apache Pulsar contains multiple connectors for integrating
with Apache ...)
TODO: check
CVE-2025-30656 (An Improper Handling of Additional Special Element
vulnerability in th ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-30655 (An Improper Check for Unusual or Exceptional Conditions
vulnerability ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-30654 (An Exposure of Sensitive Information to an Unauthorized Actor
vulnerab ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-30653 (An Expired Pointer Dereference vulnerability in Routing
Protocol Daemo ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-30652 (An Improper Handling of Exceptional Conditions vulnerability
in routin ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-30651 (A Buffer Access with Incorrect Length Value vulnerability in
the routi ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-30649 (An Improper Input Validation vulnerability in thesyslog stream
TCP tra ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-30648 (An Improper Input Validation vulnerability in theJuniper DHCP
Daemon ( ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-30647 (A Missing Release of Memory after Effective Lifetime
vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-30646 (A Signed to Unsigned Conversion Error vulnerability in the
Layer 2 Con ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-30645 (A NULL Pointer Dereference vulnerability in the flow daemon
(flowd) of ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-30644 (A Heap-based Buffer Overflow vulnerability in the flexible PIC
concent ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-2632 (Out of bounds write vulnerability due to improper bounds
checking in N ...)
TODO: check
CVE-2025-2631 (Out of bounds write vulnerability due to improper bounds
checking in N ...)
@@ -285,15 +285,15 @@ CVE-2025-2630 (There is a DLL hijacking vulnerability due
to an uncontrolled sea
CVE-2025-2629 (There is a DLL hijacking vulnerability due to an uncontrolled
search p ...)
TODO: check
CVE-2025-2442 (CWE-1188: Initialization of a Resource with an Insecure Default
vulner ...)
- TODO: check
+ NOT-FOR-US: Schneider Electric
CVE-2025-2441 (CWE-1188: Initialization of a Resource with an Insecure Default
vulner ...)
- TODO: check
+ NOT-FOR-US: Schneider Electric
CVE-2025-2440 (CWE-922: Insecure Storage of Sensitive Information
vulnerability exist ...)
- TODO: check
+ NOT-FOR-US: Schneider Electric
CVE-2025-2223 (CWE-20: Improper Input Validation vulnerability exists that
could caus ...)
- TODO: check
+ NOT-FOR-US: Schneider Electric
CVE-2025-2222 (CWE-552: Files or Directories Accessible to External Parties
vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Schneider Electric
CVE-2025-29870 (Missing authentication for critical function vulnerability
exists in W ...)
TODO: check
CVE-2025-29394 (An insecure permissions vulnerability in verydows v2.0 allows
a remote ...)
@@ -315,11 +315,11 @@ CVE-2025-27722 (Cleartext transmission of sensitive
information issue exists in
CVE-2025-27391 (Insertion of Sensitive Information into Log File vulnerability
in Apac ...)
TODO: check
CVE-2025-26902 (Cross-Site Request Forgery (CSRF) vulnerability in Brizy Brizy
Pro all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-26901 (Missing Authorization vulnerability in Brizy Brizy Pro allows
Exploiti ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-26888 (Missing Authorization vulnerability in OnTheGoSystems
WooCommerce Mult ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-25213 (Improper restriction of rendered UI layers or frames issue
exists in W ...)
TODO: check
CVE-2025-25056 (Cross-site request forgery vulnerability exists in Wi-Fi AP
UNIT 'AC-W ...)
@@ -327,25 +327,25 @@ CVE-2025-25056 (Cross-site request forgery vulnerability
exists in Wi-Fi AP UNIT
CVE-2025-25053 (OS command injection vulnerability in the WEB UI (the setting
page) ex ...)
TODO: check
CVE-2025-25023 (IBM Security Guardium 11.4 and 12.1 could allow a privileged
user to r ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-23407 (Incorrect privilege assignment vulnerability in the WEB UI
(the settin ...)
TODO: check
CVE-2025-21601 (An Improper Following of Specification by Caller vulnerability
in web ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-21597 (An Improper Check for Unusual or Exceptional Conditions
vulnerability ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-21595 (A Missing Release of Memory after Effective
Lifetimevulnerability in t ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-21594 (An Improper Check for Unusual or Exceptional Conditions
vulnerability ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-21591 (A Buffer Access with Incorrect Length Value vulnerability in
the jdhcp ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2025-1968 (Insufficient Session Expiration vulnerability in Progress
Software Cor ...)
- TODO: check
+ NOT-FOR-US: Progress Software
CVE-2024-55210 (An issue in TOTVS Framework (Linha Protheus) 12.1.2310 allows
attacker ...)
TODO: check
CVE-2023-33844 (IBM Security Verify Governance 10.0.2 is vulnerable to
cross-site scri ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-20197 (A vulnerability was found in propanetank
Roommate-Bill-Tracking up to ...)
TODO: check
CVE-2025-30215
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e42f9ce347305a4420e28e1208d07965b9f1a954
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e42f9ce347305a4420e28e1208d07965b9f1a954
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
