[Git][security-tracker-team/security-tracker][master] Process some NFUs

Wed Feb 4 10:19:00 GMT 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
19d56180 by Salvatore Bonaccorso at 2026-02-04T11:18:02+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21,9 +21,9 @@ CVE-2026-24887 (Claude Code is an agentic coding tool. Prior to version 2.0.72,
 CVE-2026-24447 (If a malformed data is input to the affected product, a CSV file downl ...)
 	TODO: check
 CVE-2026-24053 (Claude Code is an agentic coding tool. Prior to version 2.0.74, due to ...)
-	TODO: check
+	NOT-FOR-US: Claude Code
 CVE-2026-24052 (Claude Code is an agentic coding tool. Prior to version 1.0.111, Claud ...)
-	TODO: check
+	NOT-FOR-US: Claude Code
 CVE-2026-23704 (A non-administrative user can upload malicious files. When an administ ...)
 	TODO: check
 CVE-2026-22875 (Movable Type contains a stored cross-site scripting vulnerability in E ...)
@@ -53,33 +53,33 @@ CVE-2026-20978 (Improper authorization in KnoxGuardManager prior to SMR Feb-2026
 CVE-2026-20977 (Improper access control in Emergency Sharing prior to SMR Feb-2026 Rel ...)
 	NOT-FOR-US: Samsung Mobile
 CVE-2026-1835 (A vulnerability was identified in lcg0124 BootDo up to e93dd428ef6f5c8 ...)
-	TODO: check
+	NOT-FOR-US: lcg0124 BootDo
 CVE-2026-1819 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: ViPort
 CVE-2026-1813 (A vulnerability was found in bolo-blog bolo-solo up to 2.6.4. Affected ...)
-	TODO: check
+	NOT-FOR-US: bolo-blog bolo-solo
 CVE-2026-1812 (A vulnerability has been found in bolo-blog bolo-solo up to 2.6.4. Thi ...)
-	TODO: check
+	NOT-FOR-US: bolo-blog bolo-solo
 CVE-2026-1811 (A flaw has been found in bolo-blog bolo-solo up to 2.6.4. This affects ...)
-	TODO: check
+	NOT-FOR-US: bolo-blog bolo-solo
 CVE-2026-1810 (A vulnerability was detected in bolo-blog bolo-solo up to 2.6.4. The i ...)
-	TODO: check
+	NOT-FOR-US: bolo-blog bolo-solo
 CVE-2026-1791 (Unrestricted Upload of File with Dangerous Type vulnerability in Hills ...)
-	TODO: check
+	NOT-FOR-US: Hillstone Networks Operation and Maintenance Security Gateway
 CVE-2026-1756 (The WP FOFT Loader plugin for WordPress is vulnerable to arbitrary fil ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-1755 (The Menu Icons by ThemeIsle plugin for WordPress is vulnerable to Stor ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-1633 (The Synectix LAN 232 TRIO 3-Port serial to ethernet adapter exposes it ...)
-	TODO: check
+	NOT-FOR-US: Synectix LAN 232 TRIO 3-Port serial to ethernet adapter
 CVE-2026-1632 (MOMA Seismic Station Version v2.4.2520 and prior exposes its web manag ...)
-	TODO: check
+	NOT-FOR-US: MOMA Seismic Station
 CVE-2026-1341 (Avation Light Engine Pro exposes its configuration and control interfa ...)
-	TODO: check
+	NOT-FOR-US: Avation Light Engine Pro
 CVE-2025-69621 (An arbitrary file overwrite vulnerability in the file import process o ...)
-	TODO: check
+	NOT-FOR-US: Comic Book Reader
 CVE-2025-69620 (A path traversal in Moo Chan Song v4.5.7 allows attackers to cause a D ...)
-	TODO: check
+	NOT-FOR-US: Moo Chan Song
 CVE-2025-65081 (An out-of-bounds read vulnerability has been identified in the Postscr ...)
 	NOT-FOR-US: Lexmark
 CVE-2025-65080 (A type confusion vulnerability has been identified in the Postscript i ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19d561806734242f23bdf8db446808dc5a8e4a3d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19d561806734242f23bdf8db446808dc5a8e4a3d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260204/bd707170/attachment.htm>
