[Git][security-tracker-team/security-tracker][master] auto-nfu: Add Ping CNA

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Jun 12 10:25:16 BST 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b3dcc4ae by Moritz Muehlenhoff at 2026-06-12T11:24:32+02:00
auto-nfu: Add Ping CNA

Total CVEs from Ping Identity: 50
Total CVEs from Ping Identity with packages assigned: 0

Scope: All Ping Identity and ForgeRock products (supported products
and end-of-life/end-of-service products), as well as vulnerabilities
in third-party software discovered by Ping Identity or ForgeRock that
are not in another CNA’s scope.

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -119,7 +119,7 @@ CVE-2026-41005 (Cloud Foundry UAA incorrectly treated XML encryption to the Serv
 CVE-2026-39494 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2026-20746 (Virtual attribute handling in Ping Identity PingDirectory in affected  ...)
-	TODO: check
+	NOT-FOR-US: Ping Identity Corporation
 CVE-2026-12060 (Heptabase developed by Hepta Platforms has a Exposed Dangerous Method  ...)
 	NOT-FOR-US: Heptabase
 CVE-2026-12059 (The SSH service of CelloOS developed by Cellopoint has an Improper Acc ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -211,6 +211,8 @@
   cna: PandoraFMS
 - reason: Pure Storage
   cna: PureStorage
+- reason: Ping Identity Corporation
+  cna: Ping Identity
 - reason: QNAP
   cna: qnap
 - reason: Qualcomm



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b3dcc4aed5ec5a0c68aec150c6b95283b1cf6693

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b3dcc4aed5ec5a0c68aec150c6b95283b1cf6693
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260612/002e4b04/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list