Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ea9153aa by security tracker role at 2025-08-06T20:13:43+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,9 +3,9 @@ CVE-2025-8667 (A vulnerability, which was classified as
critical, was found in S
CVE-2025-8665 (A vulnerability, which was classified as critical, has been
found in a ...)
TODO: check
CVE-2025-8620 (The GiveWP \u2013 Donation Plugin and Fundraising Platform
plugin for ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8616 (A weakness identified in OpenText Advanced Authentication where
aMalic ...)
- TODO: check
+ NOT-FOR-US: OpenText
CVE-2025-8419 (A vulnerability was found in Keycloak-services. Special
characters use ...)
TODO: check
CVE-2025-8130
@@ -59,15 +59,15 @@ CVE-2025-45766 (poco v1.14.1-release was discovered to
contain weak encryption.)
CVE-2025-45764 (jsrsasign v11.1.0 was discovered to contain weak encryption.)
TODO: check
CVE-2025-3354 (IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 20
is vulne ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-3320 (IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 20
is vulne ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-38747 (Dell SupportAssist OS Recovery, versions prior to 5.5.14.0,
contain a ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-38746 (Dell SupportAssist OS Recovery, versions prior to 5.5.14.0,
contains a ...)
- TODO: check
+ NOT-FOR-US: Dell / EMC
CVE-2025-36020 (IBM Guardium Data Protection could allow a remote attacker to
obtain s ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-30127 (An issue was discovered on Marbella KR8s Dashcam FF 2.0.8
devices. Onc ...)
TODO: check
CVE-2025-2028 (Lack of TLS validation when downloading a CSV file including
mapping f ...)
@@ -111,11 +111,11 @@ CVE-2025-22470 (CL4/6NX Plus and CL4/6NX-J Plus (Japan
model) with the firmware
CVE-2025-22469 (OS command injection vulnerability exists in CL4/6NX Plus and
CL4/6NX- ...)
TODO: check
CVE-2025-20332 (A vulnerability in the web-based management interface of Cisco
ISE cou ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2025-20331 (A vulnerability in the web-based management interface of Cisco
ISE and ...)
TODO: check
CVE-2025-20215 (A vulnerability in the meeting-join functionality of Cisco
Webex Meeti ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2024-8244 (The filepath.Walk and filepath.WalkDir functions are documented
as not ...)
TODO: check
CVE-2024-52885 (The Mobile Access Portal's File Share application is
vulnerable to a d ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea9153aa2580f62d752f6aeaff8e548be26e5c42
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea9153aa2580f62d752f6aeaff8e548be26e5c42
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
