[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jun 3 08:14:03 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a7d4feb4 by security tracker role at 2026-06-03T07:13:56+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,21 +1,21 @@
CVE-2026-9732 (The EmergencyWP \u2013 Dead Man's switch & legacy deliverance plugin f ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2026-8936 (Fixed a VM panic caused by unbounded recursion in the grpcfuse kernel ...)
- TODO: check
+ NOT-FOR-US: Docker products not packaged in Debian
CVE-2026-8036 (Improper input validation in NI-PAL may allow a local authenticated us ...)
- TODO: check
+ NOT-FOR-US: National Instruments
CVE-2026-8035 (Improper input validation in the NI-PAL kernel driver may allow a loca ...)
- TODO: check
+ NOT-FOR-US: National Instruments
CVE-2026-7421 (The Passeum Ticketing plugin for WordPress is vulnerable to Stored Cro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2026-5385 (An unauthenticated user with write access to the knowledge base can st ...)
TODO: check
CVE-2026-5076 (The ARMember Premium plugin for WordPress is vulnerable to an insecure ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2026-5074 (The ARMember Premium plugin for WordPress is vulnerable to SQL Injecti ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2026-5073 (The ARMember Premium plugin for WordPress is vulnerable to SQL Injecti ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2026-50052 (In Vinyl Cache before 9.0.1 and Varnish Cache before 9.0.3, a deficien ...)
TODO: check
CVE-2026-50031 (ipmi-oem in FreeIPMI before 1.6.18 has exploitable buffer overflows on ...)
@@ -95,27 +95,27 @@ CVE-2026-31942 (LibreChat is an enhanced ChatGPT clone that supports multiple AI
CVE-2026-30586 (Cross Site Scripting vulnerability in usememos Memos v.0.26.0 allows a ...)
TODO: check
CVE-2026-28299 (SolarWinds Web Help Desk is found to be affected by a denial-of-servic ...)
- TODO: check
+ NOT-FOR-US: SolarWinds
CVE-2026-25861 (QloApps through 1.7.0, fixed in commit 64e9722, contains a weak crypto ...)
TODO: check
CVE-2026-1829 (The Content Visibility for Divi Builder plugin for WordPress is vulner ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2026-10719 (Out of bounds write in openSeaChest\u2019s --showSupportedFormats in S ...)
- TODO: check
+ NOT-FOR-US: Seagate
CVE-2026-10718 (Out of bounds write in openSeaChest\u2019s Trim/Unmap operation in Sea ...)
- TODO: check
+ NOT-FOR-US: Seagate
CVE-2026-10717 (Out of bounds write and reads inopenSeaChest\u2019s--showSCSIDefectsin ...)
- TODO: check
+ NOT-FOR-US: Seagate
CVE-2026-10705 (A flaw has been found in dask up to 3.0. Affected by this issue is the ...)
TODO: check
CVE-2026-10704 (A vulnerability was detected in SourceCodester Pizzafy E-Commerce Syst ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2026-10703 (A security vulnerability has been detected in EIPStackGroup OpENer up ...)
TODO: check
CVE-2026-10694 (A vulnerability was detected in SourceCodester Online Food Ordering Sy ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2026-10693 (A security vulnerability has been detected in SourceCodester Online Bo ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2026-10692 (A weakness has been identified in johnhuang316 code-index-mcp up to 2. ...)
TODO: check
CVE-2026-10691 (A security flaw has been discovered in wonderwhy-er DesktopCommanderMC ...)
@@ -131,9 +131,9 @@ CVE-2026-10661 (A vulnerability has been found in ahujasid blender-mcp up to 763
CVE-2026-10650 (A flaw has been found in warmcat libwebsockets up to 4.5.8. This issue ...)
TODO: check
CVE-2026-10624 (A vulnerability has been found in SourceCodester Human Resource Manage ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2026-10620 (A flaw has been found in code-projects Student Admission System 1.0. A ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2026-10619 (A vulnerability was detected in sayan365 student-management-system up ...)
TODO: check
CVE-2026-10617 (A security vulnerability has been detected in nextlevelbuilder GoClaw ...)
@@ -141,11 +141,11 @@ CVE-2026-10617 (A security vulnerability has been detected in nextlevelbuilder G
CVE-2026-10616 (A weakness has been identified in nextlevelbuilder GoClaw up to 3.11.3 ...)
TODO: check
CVE-2026-10608 (A security flaw has been discovered in DedeCMS 5.7.88. This affects th ...)
- TODO: check
+ NOT-FOR-US: DedeCMS
CVE-2026-10607 (A vulnerability was identified in DedeCMS 5.7.88. The impacted element ...)
- TODO: check
+ NOT-FOR-US: DedeCMS
CVE-2026-10584 (Proxy server in Graph Explorer before 3.0.1 falls back to HTTP when ce ...)
- TODO: check
+ NOT-FOR-US: Amazon
CVE-2025-64390 (A privilege escalation vulnerability exists in PlayStation 4 firmware ...)
TODO: check
CVE-2025-15653 (Dr\xe4ger Zeus Infinity Empowered (Zeus IE) and Zeus RS C500 anesthesi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a7d4feb4b1f0c400582514f537c27c71e37a5057
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a7d4feb4b1f0c400582514f537c27c71e37a5057
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260603/6bc73ae1/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list