[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Feb 6 20:14:17 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f0f6765f by security tracker role at 2026-02-06T20:14:09+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,43 +3,43 @@ CVE-2026-2103 (Infor SyteLine ERP uses hard-coded static cryptographic keys to e
 CVE-2026-2065 (A security flaw has been discovered in Flycatcher Toys smART Pixelator ...)
 	TODO: check
 CVE-2026-2064 (A vulnerability was identified in Portabilis i-Educar up to 2.10. Affe ...)
-	TODO: check
+	NOT-FOR-US: Portabilis
 CVE-2026-2063 (A security flaw has been discovered in D-Link DIR-823X 250416. This vu ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2026-2062 (A vulnerability was identified in Open5GS up to 2.7.6. This affects th ...)
 	TODO: check
 CVE-2026-2061 (A vulnerability was determined in D-Link DIR-823X 250416. Affected by  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2026-2060 (A vulnerability was found in code-projects Simple Blood Donor Manageme ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2026-2059 (A vulnerability has been found in SourceCodester Medical Center Portal ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2026-2058 (A flaw has been found in mathurvishal CloudClassroom-PHP-Project up to ...)
 	TODO: check
 CVE-2026-2057 (A vulnerability was detected in SourceCodester Medical Center Portal M ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2026-2056 (A security vulnerability has been detected in D-Link DIR-605L and DIR- ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2026-2055 (A weakness has been identified in D-Link DIR-605L and DIR-619L 2.06B01 ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2026-2054 (A security flaw has been discovered in D-Link DIR-605L and DIR-619L 2. ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2026-2018 (A flaw has been found in itsourcecode School Management System 1.0. Th ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode System
 CVE-2026-2017 (A vulnerability was detected in IP-COM W30AP up to 1.0.0.11(1340). Aff ...)
 	TODO: check
 CVE-2026-2016 (A security vulnerability has been detected in happyfish100 libfastcomm ...)
 	TODO: check
 CVE-2026-2015 (A weakness has been identified in Portabilis i-Educar up to 2.10. Affe ...)
-	TODO: check
+	NOT-FOR-US: Portabilis
 CVE-2026-2014 (A security flaw has been discovered in itsourcecode Student Management ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode System
 CVE-2026-2013 (A vulnerability was identified in itsourcecode Student Management Syst ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode System
 CVE-2026-2012 (A vulnerability was determined in itsourcecode Student Management Syst ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode System
 CVE-2026-2011 (A vulnerability was found in itsourcecode Student Management System 1. ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode System
 CVE-2026-25753 (PlaciPy is a placement management system designed for educational inst ...)
 	TODO: check
 CVE-2026-25752 (FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) softwa ...)
@@ -77,41 +77,41 @@ CVE-2026-25556 (MuPDF versions 1.23.0 through 1.27.0 contain a double-free vulne
 CVE-2026-25520 (SandboxJS is a JavaScript sandboxing library. Prior to 0.8.29, The ret ...)
 	TODO: check
 CVE-2026-24931 (Vulnerability of improper criterion security check in the card module. ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24930 (UAF concurrency vulnerability in the graphics module. Impact: Successf ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24929 (Out-of-bounds read vulnerability in the graphics module. Impact: Succe ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24928 (Out-of-bounds write vulnerability in the file system module. Impact: S ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24927 (Out-of-bounds access vulnerability in the frequency modulation module. ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24926 (Out-of-bounds write vulnerability in the camera module. Impact: Succes ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24925 (Heap-based buffer overflow vulnerability in the image module. Impact:  ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24924 (Vulnerability of improper permission control in the print module. Impa ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24923 (Permission control vulnerability in the HDC module. Impact: Successful ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24922 (Buffer overflow vulnerability in the HDC module. Impact: Successful ex ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24921 (Address read vulnerability in the HDC module. Impact: Successful explo ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24920 (Permission control vulnerability in the AMS module. Impact: Successful ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24919 (Out-of-bounds write vulnerability in the DFX module. Impact: Successfu ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24918 (Address read vulnerability in the communication module. Impact: Succes ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24917 (UAF vulnerability in the security module. Impact: Successful exploitat ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24916 (Identity authentication bypass vulnerability in the window module. Imp ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24915 (Out-of-bounds read issue in the media subsystem. Impact: Successful ex ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24914 (Type confusion vulnerability in the camera module. Impact: Successful  ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2026-24903 (OrcaStatLLM Researcher is an LLM Based Research Paper Generator. A Sto ...)
 	TODO: check
 CVE-2026-24851 (OpenFGA is a high-performance and flexible authorization/permission en ...)
@@ -149,21 +149,21 @@ CVE-2026-22592 (Gogs is an open source self-hosted Git service. In version 0.13.
 CVE-2026-22254 (Winter is a free, open-source content management system (CMS) based on ...)
 	TODO: check
 CVE-2026-21643 (An improper neutralization of special elements used in an sql command  ...)
-	TODO: check
+	NOT-FOR-US: Fortinet
 CVE-2026-1785 (The Code Snippets plugin for WordPress is vulnerable to Cross-Site Req ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-1769 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: Xerox
 CVE-2026-1709 (A flaw was found in Keylime. The Keylime registrar, since version 7.12 ...)
 	TODO: check
 CVE-2026-1499 (The WP Duplicate plugin for WordPress is vulnerable to Missing Authori ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-1337 (Insufficient escaping of unicode characters in query log in Neo4j Ente ...)
 	TODO: check
 CVE-2026-1293 (The Yoast SEO \u2013 Advanced SEO with real-time guidance and built-in ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-1252 (The Events Listing Widget plugin for WordPress is vulnerable to Stored ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-70963 (Gophish <=0.12.1 is vulnerable to Incorrect Access Control. The admini ...)
 	TODO: check
 CVE-2025-69216 (OpenSTAManager is an open source management software for technical ass ...)
@@ -177,7 +177,7 @@ CVE-2025-64175 (Gogs is an open source self-hosted Git service. In version 0.13.
 CVE-2025-64111 (Gogs is an open source self-hosted Git service. In version 0.13.3 and  ...)
 	TODO: check
 CVE-2025-15320 (Tanium addressed a denial of service vulnerability in Tanium Client.)
-	TODO: check
+	NOT-FOR-US: Tanium
 CVE-2025-13818 (Local privilege escalation vulnerability via insecure temporary batch  ...)
 	TODO: check
 CVE-2025-13523 (Mattermost Confluence plugin version <1.7.0 fails to properly escape u ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f0f6765fabb219654cb75dde45ae77eb13a8d65a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f0f6765fabb219654cb75dde45ae77eb13a8d65a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260206/58009e9f/attachment.htm>

More information about the debian-security-tracker-commits mailing list