[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
55f2f91b by Salvatore Bonaccorso at 2026-02-24T22:06:34+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -82,7 +82,7 @@ CVE-2026-26222 (Altec DocLink (now maintained by Beyond Limits Inc.) version 4.0
 CVE-2026-25603 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
 	NOT-FOR-US: Linksys
 CVE-2026-24241 (NVIDIA Delegated Licensing Service for all appliance platforms contain ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2026-23984 (An Improper Input Validation vulnerability exists in Apache Superset t ...)
 	NOT-FOR-US: Apache software not packaged in Debian
 CVE-2026-23983 (A Sensitive Data Exposure vulnerability exists in Apache Superset allo ...)
@@ -122,33 +122,33 @@ CVE-2025-69985 (FUXA 1.2.8 and prior contains an Authentication Bypass vulnerabi
 CVE-2025-67445 (TOTOLINK X5000R V9.1.0cu.2415_B20250515 contains a denial-of-service v ...)
 	NOT-FOR-US: TOTOLINK
 CVE-2025-63409 (Privilege escalation and improper access control in GCOM EPON 1GE C00R ...)
-	TODO: check
+	NOT-FOR-US: GCOM EPON 1GE C00R371V00B01
 CVE-2025-62512 (Piwigo is an open source photo gallery application for the web. In ver ...)
 	TODO: check
 CVE-2025-47904 (Download of Code Without Integrity Check vulnerability in Microchip Ti ...)
-	TODO: check
+	NOT-FOR-US: Microchip
 CVE-2025-33181 (NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the  ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-33180 (NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the  ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-33179 (NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the  ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-27555 (Airflow versions before 2.11.1 have a vulnerability that allows authen ...)
 	TODO: check
 CVE-2025-1789 (Local privilege escalation in Genetec Update Service. An authenticated ...)
-	TODO: check
+	NOT-FOR-US: Genetec
 CVE-2025-1787 (Local admin could to leak information from the Genetec Update Service  ...)
-	TODO: check
+	NOT-FOR-US: Genetec
 CVE-2025-14963 (A vulnerability identified in the Trellix HX Agent driver file  fekern ...)
-	TODO: check
+	NOT-FOR-US: Trellix
 CVE-2025-14577 (Slican NCP/IPL/IPM/IPU devices are vulnerable to PHP Function Injectio ...)
-	TODO: check
+	NOT-FOR-US: Slican NCP/IPL/IPM/IPU devices
 CVE-2025-13776 (Multiple Finka programs use hard-coded Firebird database credentials ( ...)
-	TODO: check
+	NOT-FOR-US: Finka
 CVE-2025-11165 (A sandbox escape vulnerability exists in dotCMS\u2019s Velocity script ...)
-	TODO: check
+	NOT-FOR-US: dotCMS
 CVE-2025-10010 (The CPSD CryptoPro Secure Disk application boots a small Linux operati ...)
-	TODO: check
+	NOT-FOR-US: CPSD CryptoPro Secure Disk application
 CVE-2024-56373 (DAG Author (who already has quite a lot of permissions) could manipula ...)
 	TODO: check
 CVE-2024-48928 (Piwigo is an open source photo gallery application for the web. In ver ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55f2f91bbac9f543a67f37786310da58e86d2960

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55f2f91bbac9f543a67f37786310da58e86d2960
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260224/fb073660/attachment.htm>