Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f058f7f1 by Salvatore Bonaccorso at 2025-09-24T10:47:01+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,25 +1,25 @@
CVE-2025-9966 (Improper privilege management vulnerability in Novakon P series
allows ...)
- TODO: check
+ NOT-FOR-US: Novakon
CVE-2025-9965 (Improper authentication vulnerability in Novakon P series
allows unaut ...)
- TODO: check
+ NOT-FOR-US: Novakon
CVE-2025-9964 (No password for the root user is set in Novakon P series. This
allows ...)
- TODO: check
+ NOT-FOR-US: Novakon
CVE-2025-9963 (A path traversal vulnerability in Novakon P series allows to
expose th ...)
- TODO: check
+ NOT-FOR-US: Novakon
CVE-2025-9962 (A buffer overflow vulnerability in Novakon P series allows
attackers t ...)
- TODO: check
+ NOT-FOR-US: Novakon
CVE-2025-9846 (Unrestricted Upload of File with Dangerous Type vulnerability
in Talen ...)
- TODO: check
+ NOT-FOR-US: Inka.Net
CVE-2025-9844 (Uncontrolled Search Path Element vulnerability in Salesforce
Salesforc ...)
NOT-FOR-US: Salesforce
CVE-2025-9798 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: Netigma
CVE-2025-9342 (Authorization Bypass Through User-Controlled Key vulnerability
in Anad ...)
- TODO: check
+ NOT-FOR-US: AHE Mobile
CVE-2025-9197
REJECTED
CVE-2025-8410 (Use After Free vulnerability in RTI Connext Professional
(Security Plu ...)
- TODO: check
+ NOT-FOR-US: Connext Professional
CVE-2025-8354 (A maliciously crafted RFA file, when parsed through Autodesk
Revit, ca ...)
NOT-FOR-US: Autodesk
CVE-2025-7106 (danny-avila/librechat is affected by an authorization bypass
vulnerabi ...)
@@ -41,29 +41,29 @@ CVE-2025-59925
CVE-2025-59924
REJECTED
CVE-2025-59826 (Flag Forge is a Capture The Flag (CTF) platform. In version
2.1.0, non ...)
- TODO: check
+ NOT-FOR-US: Flag Forge
CVE-2025-59822 (Http4s is a Scala interface for HTTP services. In versions
from 1.0.0- ...)
TODO: check
CVE-2025-59821 (DNN (formerly DotNetNuke) is an open-source web content
management pla ...)
- TODO: check
+ NOT-FOR-US: DNN (formerly DotNetNuke)
CVE-2025-59548 (DNN (formerly DotNetNuke) is an open-source web content
management pla ...)
- TODO: check
+ NOT-FOR-US: DNN (formerly DotNetNuke)
CVE-2025-59547 (DNN (formerly DotNetNuke) is an open-source web content
management pla ...)
- TODO: check
+ NOT-FOR-US: DNN (formerly DotNetNuke)
CVE-2025-59546 (DNN (formerly DotNetNuke) is an open-source web content
management pla ...)
- TODO: check
+ NOT-FOR-US: DNN (formerly DotNetNuke)
CVE-2025-59545 (DNN (formerly DotNetNuke) is an open-source web content
management pla ...)
- TODO: check
+ NOT-FOR-US: DNN (formerly DotNetNuke)
CVE-2025-59539 (DNN (formerly DotNetNuke) is an open-source web content
management pla ...)
- TODO: check
+ NOT-FOR-US: DNN (formerly DotNetNuke)
CVE-2025-59534 (CryptoLib provides a software-only solution using the CCSDS
Space Data ...)
TODO: check
CVE-2025-59484 (The use of a broken or risky cryptographic algorithm was
discovered in ...)
- TODO: check
+ NOT-FOR-US: Click Plus PLC
CVE-2025-58674 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
TODO: check
CVE-2025-58473 (An improper resource shutdown or release vulnerability has
been identi ...)
- TODO: check
+ NOT-FOR-US: Click Plus devices
CVE-2025-58354 (Kata Containers is an open source project focusing on a
standard imple ...)
TODO: check
CVE-2025-58319 (Delta Electronics CNCSoft-G2lacks proper validation of the
user-suppli ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f058f7f1b2bc9ac6250df991165005379c3b6730
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f058f7f1b2bc9ac6250df991165005379c3b6730
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
