Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
95c6fbeb by security tracker role at 2025-07-30T20:13:03+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,21 +1,21 @@
CVE-2025-8353 (UI synchronization issue in the Just-in-Time (JIT) access
request appr ...)
- TODO: check
+ NOT-FOR-US: Devolutions
CVE-2025-8331 (A vulnerability was found in code-projects Online Farm System
1.0 and ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-8330 (A vulnerability has been found in code-projects Vehicle
Management 1.0 ...)
TODO: check
CVE-2025-8329 (A vulnerability, which was classified as critical, was found in
code-p ...)
TODO: check
CVE-2025-8328 (A vulnerability, which was classified as critical, has been
found in c ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-8327 (A vulnerability classified as critical was found in
code-projects Exam ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-8326 (A vulnerability classified as critical has been found in
code-projects ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-8312 (Deadlock in PAM automatic check-in feature in Devolutions
Server allow ...)
- TODO: check
+ NOT-FOR-US: Devolutions
CVE-2025-6348 (The Smart Slider 3 plugin for WordPress is vulnerable to
time-based SQ ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-54656 (** UNSUPPORTED WHEN ASSIGNED ** Improper Output Neutralization
for Log ...)
TODO: check
CVE-2025-54584 (GitProxy is an application that stands between developers and
a Git re ...)
@@ -39,7 +39,7 @@ CVE-2025-54433 (Bugsink is a self-hosted error tracking
service. In versions 1.4
CVE-2025-54430 (dedupe is a python library that uses machine learning to
perform fuzzy ...)
TODO: check
CVE-2025-54425 (Umbraco is an ASP.NET CMS. In versions 13.0.0 through 13.9.2,
15.0.0 t ...)
- TODO: check
+ NOT-FOR-US: Umbraco CMS
CVE-2025-54410 (Moby is an open source container framework developed by Docker
Inc. th ...)
TODO: check
CVE-2025-54388 (Moby is an open source container framework developed by Docker
Inc. th ...)
@@ -75,7 +75,7 @@ CVE-2025-50578 (LinuxServer.io heimdall 2.6.3-ls307 contains
a vulnerability in
CVE-2025-50464 (A buffer overflow vulnerability exists in the upload.cgi
module of the ...)
TODO: check
CVE-2025-47001 (Adobe Experience Manager versions 6.5.22 and earlier are
affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-46811 (A Missing Authentication for Critical Function vulnerability
in SUSE M ...)
TODO: check
CVE-2025-45620 (An issue in Aver PTC310UV2 v.0.1.0000.59 allows a remote
attacker to o ...)
@@ -83,33 +83,33 @@ CVE-2025-45620 (An issue in Aver PTC310UV2 v.0.1.0000.59
allows a remote attacke
CVE-2025-45619 (An issue in Aver PTC310UV2 firmware v.0.1.0000.59 allows a
remote atta ...)
TODO: check
CVE-2025-43018 (Certain HP LaserJet Pro printers may be vulnerable to
information disc ...)
- TODO: check
+ NOT-FOR-US: HP
CVE-2025-36611 (Dell Encryption and Dell Security Management Server, versions
prior to ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-36609 (Dell SmartFabric OS10 Software, versions prior to 10.6.0.5,
contains a ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-36608 (Dell SmartFabric OS10 Software, versions prior to 10.6.0.5,
contains a ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-30480 (Dell PowerProtect Data Manager, versions prior to 19.19,
contain(s) an ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-30105 (Dell XtremIO, version(s) 6.4.0-22, contain(s) an Insertion of
Sensitiv ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-30103 (Dell SmartFabric OS10 Software, versions prior to 10.6.0.5
contains a ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-26332 (TechAdvisor versions 2.6 through 3.37-30 for Dell XtremIO X2,
contain( ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-25692 (A PHAR deserialization vulnerability in the _getHeaders
function of Pr ...)
TODO: check
CVE-2025-25691 (A PHAR deserialization vulnerability in the component
/themes/import o ...)
TODO: check
CVE-2025-1394 (Failure to handle the error status returned by the buffer
management A ...)
- TODO: check
+ NOT-FOR-US: Silicon Labs
CVE-2025-1221 (A Zigbee Radio Co-Processor (RCP), which is using SiLabs
EmberZNet Zig ...)
- TODO: check
+ NOT-FOR-US: Silicon Labs
CVE-2024-45955 (Rocket Software Rocket Zena 4.4.1.26 is vulnerable to SQL
Injection vi ...)
TODO: check
CVE-2024-45515 (An issue was discovered in Zimbra Collaboration (ZCS) through
10.1. A ...)
- TODO: check
+ NOT-FOR-US: Zimbra
CVE-2023-2593 (A flaw exists within the Linux kernel's handling of new TCP
connection ...)
TODO: check
CVE-2025-8323 (The e-School from Ventem has a Arbitrary File Upload
vulnerability, al ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/95c6fbebbaef49a573dff80a7320a049850243b1
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/95c6fbebbaef49a573dff80a7320a049850243b1
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
