[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
66579325 by Moritz Muehlenhoff at 2026-01-07T09:35:58+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13,21 +13,21 @@ CVE-2026-22157
 CVE-2026-22156
 	REJECTED
 CVE-2026-21492 (iccDEV provides a set of libraries and tools that allow for the intera ...)
-	TODO: check
+	NOT-FOR-US: iccDEV
 CVE-2026-20893 (Origin validation error issue exists in Fujitsu Security Solution Auth ...)
-	TODO: check
+	NOT-FOR-US: Fujitsu
 CVE-2026-0656 (The iPaymu Payment Gateway for WooCommerce plugin for WordPress is vul ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-0650 (OpenFlagr versions prior to and including 1.1.18 contain an authentica ...)
-	TODO: check
+	NOT-FOR-US: OpenFlagr
 CVE-2026-0649 (A security vulnerability has been detected in invoiceninja up to 5.12. ...)
-	TODO: check
+	NOT-FOR-US: invoiceninja
 CVE-2026-0643 (A flaw has been found in projectworlds House Rental and Property Listi ...)
-	TODO: check
+	NOT-FOR-US: Project Worlds
 CVE-2026-0642 (A vulnerability was detected in projectworlds House Rental and Propert ...)
-	TODO: check
+	NOT-FOR-US: Project Worlds
 CVE-2025-9611 (Microsoft Playwright MCP Server versions prior to 0.0.40 fails to vali ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2025-47396 (Memory corruption occurs when a secure application is launched on a de ...)
 	NOT-FOR-US: Qualcomm
 CVE-2025-47395 (Transient DOS while parsing a WLAN management frame with a Vendor Spec ...)
@@ -83,13 +83,13 @@ CVE-2025-31642 (Improper Neutralization of Input During Web Page Generation ('Cr
 CVE-2025-31051 (Exposure of Sensitive System Information to an Unauthorized Control Sp ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-30996 (Unrestricted Upload of File with Dangerous Type vulnerability in Themi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-30631 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-29004 (Incorrect Privilege Assignment vulnerability in AA-Team Premium Age Ve ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-15474 (AuntyFey Smart Combination Lock firmware versions as of 2025-12-24 con ...)
-	TODO: check
+	NOT-FOR-US: AuntyFey Smart Combination Lock
 CVE-2025-15472 (A flaw has been found in TRENDnet TEW-811DRU 1.0.2.0. This affects the ...)
 	NOT-FOR-US: TRENDnet
 CVE-2025-15471 (A vulnerability was detected in TRENDnet TEW-713RE 1.02. The impacted  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/66579325f6b946d8e04686879fa1e0e1e9bbc2e2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/66579325f6b946d8e04686879fa1e0e1e9bbc2e2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260107/4d00299e/attachment-0001.htm>