Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bec15847 by security tracker role at 2025-07-15T20:14:15+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,25 +1,25 @@
CVE-2025-7667 (The Restrict File Access plugin for WordPress is vulnerable to
Cross-S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-7657 (Use after free in WebRTC in Google Chrome prior to
138.0.7204.157 allo ...)
TODO: check
CVE-2025-7656 (Integer overflow in V8 in Google Chrome prior to 138.0.7204.157
allowe ...)
TODO: check
CVE-2025-7042 (Use After Free vulnerability exists in the IPT file reading
procedure ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-6974 (Use of Uninitialized Variable vulnerability exists in the JT
file read ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-6973 (Use After Free vulnerability exists in the JT file reading
procedure i ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-6972 (Use After Free vulnerability exists in the CATPRODUCT file
reading pro ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-6971 (Use After Free vulnerability exists in the CATPRODUCT file
reading pro ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2025-6965 (There exists a vulnerability in SQLite versions before 3.50.2
where th ...)
TODO: check
CVE-2025-6558 (Insufficient validation of untrusted input in ANGLE and GPU in
Google ...)
TODO: check
CVE-2025-53959 (In JetBrains YouTrack before 2025.2.86069, 2024.3.85077,
2025.1.8619 ...)
- TODO: check
+ NOT-FOR-US: JetBrains
CVE-2025-53903 (The Scratch Channel is a news website that is under
development as of ...)
TODO: check
CVE-2025-53895 (ZITADEL is an open source identity management system. Starting
in vers ...)
@@ -61,11 +61,11 @@ CVE-2025-52377 (Command injection vulnerability in Nexxt
Solutions NCM-X1800 Mes
CVE-2025-52376 (An authentication bypass vulnerability in the
/web/um_open_telnet.cgi ...)
TODO: check
CVE-2025-52082 (In Netgear XR300 V1.0.3.38_10.3.30, a stack-based buffer
overflow exis ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2025-52081 (In Netgear XR300 V1.0.3.38_10.3.30, a stack-based buffer
overflow vuln ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2025-52080 (In Netgear XR300 V1.0.3.38_10.3.30, a stack-based buffer
overflow vuln ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2025-50819 (Directory traversal vulnerability in beiyuouo arxiv-daily thru
2025-05 ...)
TODO: check
CVE-2025-50108 (Vulnerability in the Oracle Hyperion Financial Reporting
product of Or ...)
@@ -105,7 +105,7 @@ CVE-2025-50092 (Vulnerability in the MySQL Server product
of Oracle MySQL (compo
CVE-2025-50091 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
TODO: check
CVE-2025-50090 (Vulnerability in the Oracle Applications Framework product of
Oracle E ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50089 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
TODO: check
CVE-2025-50088 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
@@ -139,17 +139,17 @@ CVE-2025-50073 (Vulnerability in the Oracle WebLogic
Server product of Oracle Fu
CVE-2025-50072 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
TODO: check
CVE-2025-50071 (Vulnerability in the Oracle Applications Framework product of
Oracle E ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50070 (Vulnerability in the JDBC component of Oracle Database Server.
Suppor ...)
TODO: check
CVE-2025-50069 (Vulnerability in the Java VM component of Oracle Database
Server. Sup ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50068 (Vulnerability in the MySQL Cluster product of Oracle MySQL
(component: ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50067 (Vulnerability in Oracle Application Express (component:
Strategic Plan ...)
TODO: check
CVE-2025-50066 (Vulnerability in the Oracle Database Materialized View
component of Or ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50065 (Vulnerability in the Oracle GraalVM for JDK product of Oracle
Java SE ...)
TODO: check
CVE-2025-50064 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
@@ -161,11 +161,11 @@ CVE-2025-50062 (Vulnerability in the PeopleSoft
Enterprise HCM Global Payroll Co
CVE-2025-50061 (Vulnerability in the Primavera P6 Enterprise Project Portfolio
Managem ...)
TODO: check
CVE-2025-50060 (Vulnerability in the Oracle BI Publisher product of Oracle
Analytics ( ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-50059 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK,
Oracle Gr ...)
TODO: check
CVE-2025-4369 (The Companion Auto Update plugin for WordPress is vulnerable to
Stored ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-49830 (Conjur provides secrets management and application identity
for infras ...)
TODO: check
CVE-2025-49829 (Conjur provides secrets management and application identity
for infras ...)
@@ -213,11 +213,11 @@ CVE-2025-34103 (An unauthenticated command injection
vulnerability exists in WeP
CVE-2025-34068 (An unauthenticated remote command execution vulnerability
exists in Sa ...)
TODO: check
CVE-2025-33097 (IBM QRadar SIEM 7.5 - 7.5.0 UP12 IF02 is vulnerable to stored
cross-si ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-30762 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
TODO: check
CVE-2025-30760 (Vulnerability in the JD Edwards EnterpriseOne Tools product of
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30759 (Vulnerability in the Oracle Business Intelligence Enterprise
Edition p ...)
TODO: check
CVE-2025-30758 (Vulnerability in the Siebel CRM End User product of Oracle
Siebel CRM ...)
@@ -231,17 +231,17 @@ CVE-2025-30753 (Vulnerability in the Oracle WebLogic
Server product of Oracle Fu
CVE-2025-30752 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK
product of ...)
TODO: check
CVE-2025-30751 (Vulnerability in the Oracle Database component of Oracle
Database Serv ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30750 (Vulnerability in the Unified Audit component of Oracle
Database Server ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30749 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK,
Oracle Gr ...)
TODO: check
CVE-2025-30748 (Vulnerability in the PeopleSoft Enterprise PeopleTools product
of Orac ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30747 (Vulnerability in the PeopleSoft Enterprise PeopleTools product
of Orac ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30746 (Vulnerability in the Oracle iStore product of Oracle
E-Business Suite ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30745 (Vulnerability in the Oracle MES for Process Manufacturing
product of O ...)
TODO: check
CVE-2025-30744 (Vulnerability in the Oracle Mobile Field Service product of
Oracle E-B ...)
@@ -249,15 +249,15 @@ CVE-2025-30744 (Vulnerability in the Oracle Mobile Field
Service product of Orac
CVE-2025-30743 (Vulnerability in the Oracle Lease and Finance Management
product of Or ...)
TODO: check
CVE-2025-30739 (Vulnerability in the Oracle CRM Technical Foundation product
of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-30483 (Dell ECS versions prior to 3.8.1.5/ ObjectScale version
4.0.0.0 contai ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-26186 (SQL Injection vulnerability in openSIS v.9.1 allows a remote
attacker ...)
TODO: check
CVE-2025-24477 (A heap-based buffer overflow in Fortinet FortiOS versions
7.6.0 throug ...)
- TODO: check
+ NOT-FOR-US: Fortinet
CVE-2025-0831 (Out-Of-Bounds Read vulnerability exists in the JT file reading
procedu ...)
- TODO: check
+ NOT-FOR-US: Dassault Systemes
CVE-2024-42650 (NanoMQ 0.17.5 was discovered to contain a segmentation fault
via the c ...)
TODO: check
CVE-2025-7672 (The improper default setting in JiranSoft CrossEditor4 on
Windows, Lin ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bec158476188c797f51390efd9f7f21d58836e98
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bec158476188c797f51390efd9f7f21d58836e98
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
