[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jan 26 21:09:18 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5bfa4e52 by Salvatore Bonaccorso at 2026-01-26T22:08:52+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -103,29 +103,29 @@ CVE-2025-57783 (Improper header parsing may lead to request smuggling has been i
 CVE-2025-50537 (Stack overflow vulnerability in eslint before 9.26.0 when serializing  ...)
 	TODO: check
 CVE-2025-41083 (Vulnerability in Altitude Authentication Service and Altitude Communic ...)
-	TODO: check
+	NOT-FOR-US: Altitude Communication Server
 CVE-2025-41082 (Illegal HTTP request traffic vulnerability (CL.0) in Altitude Communic ...)
-	TODO: check
+	NOT-FOR-US: Altitude Communication Server
 CVE-2025-14756 (Command injection vulnerability was found in the admin interface compo ...)
 	NOT-FOR-US: TP-Link
 CVE-2020-36960 (Forma LMS 2.3 contains a stored cross-site scripting vulnerability tha ...)
-	TODO: check
+	NOT-FOR-US: Forma LMS
 CVE-2020-36959 (IDT PC Audio 1.0.6499.0 contains an unquoted service path vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: IDT PC Audio
 CVE-2020-36958 (Kite 1.2020.1119.0 contains an unquoted service path vulnerability in  ...)
-	TODO: check
+	NOT-FOR-US: Kite
 CVE-2020-36957 (PDF Complete 3.5.310.2002 contains an unquoted service path vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: PDF Complete
 CVE-2020-36956 (Openfire 4.6.0 contains a stored cross-site scripting vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Openfire
 CVE-2020-36955 (Grav CMS 1.6.30 with Admin Plugin 1.9.18 contains a persistent cross-s ...)
-	TODO: check
+	NOT-FOR-US: Grav CMS
 CVE-2020-36954 (Xeroneit Library Management System 3.1 contains a stored cross-site sc ...)
-	TODO: check
+	NOT-FOR-US: Xeroneit Library Management System
 CVE-2020-36953 (MiniTool ShadowMaker 3.2 contains an unquoted service path vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: MiniTool ShadowMaker
 CVE-2020-36952 (IObit Uninstaller 10 Pro contains an unquoted service path vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: IObit Uninstaller 10 Pro
 CVE-2016-15057 (** UNSUPPORTED WHEN ASSIGNED ** Improper Neutralization of Special Ele ...)
 	TODO: check
 CVE-2026-1425 (A security flaw has been discovered in pymumu SmartDNS up to 47.1. Thi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5bfa4e52a6411572f730683a5628825083adcbe9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5bfa4e52a6411572f730683a5628825083adcbe9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260126/3924d689/attachment.htm>

More information about the debian-security-tracker-commits mailing list