[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Feb 11 21:30:47 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aa5448eb by Salvatore Bonaccorso at 2026-02-11T22:30:21+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
 CVE-2026-2361 (PostgreSQL Anonymizer contains a vulnerability that allows a user to g ...)
-	TODO: check
+	NOT-FOR-US: PostgreSQL Anonymizer
 CVE-2026-2360 (PostgreSQL Anonymizer contains a vulnerability that allows a user to g ...)
-	TODO: check
+	NOT-FOR-US: PostgreSQL Anonymizer
 CVE-2026-2345 (Proctorio Chrome Extension is a browser extension used for online proc ...)
-	TODO: check
+	NOT-FOR-US: Proctorio Chrome Extension
 CVE-2026-2344 (A vulnerability in Plunet Plunet BusinessManager allows unauthorized a ...)
-	TODO: check
+	NOT-FOR-US: Plunet Plunet BusinessManager
 CVE-2026-2337 (A vulnerability in Plunet Plunet BusinessManager allows session hijack ...)
-	TODO: check
+	NOT-FOR-US: Plunet Plunet BusinessManager
 CVE-2026-2323 (Inappropriate implementation in Downloads in Google Chrome prior to 14 ...)
 	TODO: check
 CVE-2026-2322 (Inappropriate implementation in File input in Google Chrome prior to 1 ...)
@@ -39,13 +39,13 @@ CVE-2026-2249 (METIS DFS devices (versions <= oscore 2.1.234-r18) expose a web-b
 CVE-2026-2248 (METIS WIC devices (versions <= oscore 2.1.234-r18) expose a web-based  ...)
 	TODO: check
 CVE-2026-25869 (MiniGal Nano versions 0.3.5 and prior contain a path traversal vulnera ...)
-	TODO: check
+	NOT-FOR-US: MiniGal Nano
 CVE-2026-25868 (MiniGal Nano version 0.3.5 and prior contain a reflected cross-site sc ...)
-	TODO: check
+	NOT-FOR-US: MiniGal Nano
 CVE-2026-25084 (Authentication for ZLAN5143D can be bypassed by directly accessing int ...)
-	TODO: check
+	NOT-FOR-US: ZLAN5143D
 CVE-2026-24789 (An unprotected API endpoint allows an attacker to remotely change the  ...)
-	TODO: check
+	NOT-FOR-US: ZLAN5143D
 CVE-2026-22894 (A path traversal vulnerability has been reported to affect File Statio ...)
 	NOT-FOR-US: QNAP
 CVE-2026-1885 (The Slideshow Wp plugin for WordPress is vulnerable to Stored Cross-Si ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa5448eb71875680aedcbb6324749336d02a7673

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa5448eb71875680aedcbb6324749336d02a7673
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260211/93e91bad/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list