[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jan 15 08:14:09 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
81afd9ca by security tracker role at 2026-01-15T08:13:57+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -29,29 +29,29 @@ CVE-2026-0959 (IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2
CVE-2026-0861 (Passing too large an alignment to the memalign suite of functions (mem ...)
TODO: check
CVE-2026-0601 (A reflected cross-site scripting vulnerability exists in Nexus Reposit ...)
- TODO: check
+ NOT-FOR-US: Sonatype
CVE-2026-0600 (Server-Side Request Forgery (SSRF) vulnerability in Sonatype Nexus Rep ...)
- TODO: check
+ NOT-FOR-US: Sonatype
CVE-2026-0421 (A potential vulnerability was reported in the BIOS of L13 Gen 6, L13 G ...)
- TODO: check
+ NOT-FOR-US: Lenovo
CVE-2025-14457 (The Drag and Drop Multiple File Upload for Contact Form 7 plugin for W ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-14448 (The WP-Members Membership Plugin plugin for WordPress is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-14058 (A potential missing authentication vulnerability was reported in some ...)
- TODO: check
+ NOT-FOR-US: Lenovo
CVE-2025-13455 (A vulnerability was reported in ThinkPlus configuration software that ...)
- TODO: check
+ NOT-FOR-US: Lenovo
CVE-2025-13454 (A potential vulnerability was reported in ThinkPlus configuration soft ...)
- TODO: check
+ NOT-FOR-US: Lenovo
CVE-2025-13453 (A potential vulnerability was reported in some ThinkPlus USB drives th ...)
- TODO: check
+ NOT-FOR-US: Lenovo
CVE-2025-13154 (An improper link following vulnerability was reported in the SmartPerf ...)
- TODO: check
+ NOT-FOR-US: Lenovo
CVE-2025-12533
REJECTED
CVE-2025-12166 (The Appointment Booking Calendar \u2014 Simply Schedule Appointments B ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2026-23550 (Incorrect Privilege Assignment vulnerability in Modular DS allows Priv ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2026-23498 (Shopware is an open commerce platform. From 6.7.0.0 to before 6.7.6.1, ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81afd9ca7c36d93ea30c21f1cc0e2c44f2df4f5e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81afd9ca7c36d93ea30c21f1cc0e2c44f2df4f5e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260115/bcfa3a75/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list