[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
ff3a61fb by Salvatore Bonaccorso at 2025-05-28T09:01:08+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -87,15 +87,15 @@ CVE-2025-45529 (An arbitrary file read vulnerability in the 
ReadTextAsynchronous
 CVE-2025-45475 (maccms10 v2025.1000.4047 is vulnerable to Server-Side request 
forgery  ...)
        NOT-FOR-US: maccms10
 CVE-2025-41653 (An unauthenticated remote attacker can exploit a 
denial-of-service vul ...)
-       TODO: check
+       NOT-FOR-US: Weidmueller Interface GmbH & Co. KG
 CVE-2025-41652 (The devices are vulnerable to an authentication bypass due to 
flaws in ...)
-       TODO: check
+       NOT-FOR-US: Weidmueller Interface GmbH & Co. KG
 CVE-2025-41651 (Due to missing authentication on a critical function of the 
devices an ...)
-       TODO: check
+       NOT-FOR-US: Weidmueller Interface GmbH & Co. KG
 CVE-2025-41650 (An unauthenticated remote attacker can exploit input 
validation in cmd ...)
-       TODO: check
+       NOT-FOR-US: Weidmueller Interface GmbH & Co. KG
 CVE-2025-41649 (An unauthenticated remote attacker can exploit insufficient 
input vali ...)
-       TODO: check
+       NOT-FOR-US: Weidmueller Interface GmbH & Co. KG
 CVE-2025-3704 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
        NOT-FOR-US: WordPress plugin or theme
 CVE-2025-2872
@@ -109,15 +109,15 @@ CVE-2025-27700 (There is a possible bypass of carrier 
restrictions due to an unu
 CVE-2025-23247 (NVIDIA CUDA Toolkit for all platforms contains a vulnerability 
in the  ...)
        TODO: check
 CVE-2025-22377 (An issue was discovered in Samsung Mobile Processor, Wearable 
Processo ...)
-       TODO: check
+       NOT-FOR-US: Samsung
 CVE-2024-56193 (There is a possible disclosure of Bluetooth adapter details 
due to a p ...)
        NOT-FOR-US: Google devices
 CVE-2024-49197 (An issue was discovered in Wi-Fi in Samsung Mobile Processor 
and Weara ...)
-       TODO: check
+       NOT-FOR-US: Samsung
 CVE-2024-49196 (An issue was discovered in the GPU in Samsung Mobile Processor 
Exynos  ...)
-       TODO: check
+       NOT-FOR-US: Samsung
 CVE-2024-13966 (ZKTeco BioTime allows unauthenticated attackers to enumerate 
usernames ...)
-       TODO: check
+       NOT-FOR-US: ZKTeco BioTime
 CVE-2025-5272 (Memory safety bugs present in Firefox 138 and Thunderbird 138. 
Some of ...)
        - firefox 139.0-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2025-42/#CVE-2025-5272



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff3a61fb9fa388f881a59615e867c2826515aedb

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff3a61fb9fa388f881a59615e867c2826515aedb
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits