[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jan 31 08:13:48 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4b576cd0 by security tracker role at 2026-01-31T08:13:40+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,55 +9,55 @@ CVE-2026-25130 (Cybersecurity AI (CAI) is a framework for AI Security. In versio
 CVE-2026-25129 (PsySH is a runtime developer console, interactive debugger, and REPL f ...)
 	TODO: check
 CVE-2026-1723 (Improper Neutralization of Special Elements used in an OS Command ('OS ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks
 CVE-2026-1705 (A vulnerability was detected in D-Link DSL-6641K N8.TR069.20131126. Af ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2026-1431 (The Booking Calendar plugin for WordPress is vulnerable to unauthorize ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-1251 (The SupportCandy \u2013 Helpdesk & Customer Support Ticket System plug ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-0683 (The SupportCandy \u2013 Helpdesk & Customer Support Ticket System plug ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-36442 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36428 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36427 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36424 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36423 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 12.1 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36407 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)11.5. ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36387 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36384 (IBM Db2 for Windows12.1.0 - 12.1.3  could allow a local user with file ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36366 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36365 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36353 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36184 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)11.5. ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36123 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36098 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36070 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)11.5. ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36009 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36001 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-2668 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)11.5. ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-15525 (The Ajax Load More \u2013 Infinite Scroll, Load More, & Lazy Load plug ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-15510 (The NEX-Forms \u2013 Ultimate Forms Plugin for WordPress is vulnerable ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2020-37057 (Online-Exam-System 2015 contains a SQL injection vulnerability in the  ...)
 	TODO: check
 CVE-2020-37056 (Crystal Shard http-protection 0.2.0 contains an IP spoofing vulnerabil ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4b576cd01158ed17d27884804a4fce5a2edd25f9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4b576cd01158ed17d27884804a4fce5a2edd25f9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260131/7f2a779a/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list