[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bcbb9007 by Salvatore Bonaccorso at 2026-02-20T22:05:56+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -51,13 +51,13 @@ CVE-2026-26745 (OpenSourcePOS 3.4.1 has a second order SQL Injection vulnerabili
 CVE-2026-26725 (An issue in edu Business Solutions Print Shop Pro WebDesk v.18.34 allo ...)
 	NOT-FOR-US: edu Business Solutions Print Shop Pro WebDesk
 CVE-2026-26724 (Cross Site Scripting vulnerability in Key Systems Inc Global Facilitie ...)
-	TODO: check
+	NOT-FOR-US: Key Systems Inc Global Facilities Management Software
 CVE-2026-26723 (Cross Site Scripting vulnerability in Key Systems Inc Global Facilitie ...)
-	TODO: check
+	NOT-FOR-US: Key Systems Inc Global Facilities Management Software
 CVE-2026-26722 (An issue in Key Systems Inc Global Facilities Management Software v.20 ...)
-	TODO: check
+	NOT-FOR-US: Key Systems Inc Global Facilities Management Software
 CVE-2026-26721 (An issue in Key Systems Inc Global Facilities Management Software v.20 ...)
-	TODO: check
+	NOT-FOR-US: Key Systems Inc Global Facilities Management Software
 CVE-2026-26102 (Incorrect Permission Assignment for Critical Resource in Owl opds 2.2. ...)
 	TODO: check
 CVE-2026-26101 (Incorrect Permission Assignment for Critical Resource in Owl opds 2.2. ...)
@@ -77,7 +77,7 @@ CVE-2026-26095 (Incorrect Permission Assignment for Critical Resource in Owl opd
 CVE-2026-26093 (Improper Neutralization of Special Elements used in a Command ('Comman ...)
 	TODO: check
 CVE-2026-26050 (The installer for \u30b8\u30e7\u30d6\u30ed\u30b0\u96c6\u8a08/\u5206\u6 ...)
-	TODO: check
+	NOT-FOR-US: Ricoh
 CVE-2026-26049 (The web management interface of the device renders the passwords in a  ...)
 	TODO: check
 CVE-2026-26048 (The Wi-Fi router is vulnerable to de-authentication attacks due to the ...)
@@ -107,7 +107,7 @@ CVE-2026-24943 (Improper Neutralization of Input During Web Page Generation ('Cr
 CVE-2026-24941 (Missing Authorization vulnerability in wpjobportal WP Job Portal wp-jo ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2026-24891 (openITCOCKPIT is an open source monitoring tool built for different mo ...)
-	TODO: check
+	NOT-FOR-US: openITCOCKPIT
 CVE-2026-24790 (The underlying PLC of the device can be remotely influenced, without p ...)
 	TODO: check
 CVE-2026-24455 (The embedded web interface of the device does not support HTTPS/TLS fo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bcbb9007ccf9abaa17ab75bbb36d9df7caedc90d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bcbb9007ccf9abaa17ab75bbb36d9df7caedc90d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260220/b79a1651/attachment.htm>