[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Mar 16 08:14:09 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b59f05e0 by security tracker role at 2026-03-16T08:14:02+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,7 +5,7 @@ CVE-2026-4226 (A weakness has been identified in LB-LINK BL-WR9000 2.4.9. The af
CVE-2026-4225 (A security flaw has been discovered in CMS Made Simple up to 2.2.21. I ...)
TODO: check
CVE-2026-4223 (A vulnerability was identified in itsourcecode Payroll Management Syst ...)
- TODO: check
+ NOT-FOR-US: itsourcecode System
CVE-2026-4222 (A vulnerability was determined in SSCMS up to 7.4.0. This vulnerabilit ...)
TODO: check
CVE-2026-4221 (A vulnerability was found in Tiandy Easy7 Integrated Management Platfo ...)
@@ -23,27 +23,27 @@ CVE-2026-4216 (A weakness has been identified in i-SENS SmartLog App up to 2.6.8
CVE-2026-4215 (A security flaw has been discovered in FlowCI flow-core-x up to 1.23.0 ...)
TODO: check
CVE-2026-4214 (A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4213 (A vulnerability was detected in D-Link DNS-120, DNR-202L, DNS-315L, DN ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4212 (A security vulnerability has been detected in D-Link DNS-120, DNR-202L ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4211 (A weakness has been identified in D-Link DNS-120, DNR-202L, DNS-315L, ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4210 (A security flaw has been discovered in D-Link DNS-120, DNR-202L, DNS-3 ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4209 (A vulnerability was identified in D-Link DNS-120, DNR-202L, DNS-315L, ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4207 (A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4206 (A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-3 ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4205 (A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4204 (A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4203 (A vulnerability was detected in D-Link DNS-120, DNR-202L, DNS-315L, DN ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4201 (A weakness has been identified in glowxq glowxq-oj up to 6f7c723090472 ...)
TODO: check
CVE-2026-4200 (A security flaw has been discovered in glowxq glowxq-oj up to 6f7c7230 ...)
@@ -53,15 +53,15 @@ CVE-2026-4199 (A vulnerability was identified in bazinga012 mcp_code_executor up
CVE-2026-4198 (A vulnerability was determined in hypermodel-labs mcp-server-auto-comm ...)
TODO: check
CVE-2026-4197 (A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-3 ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4196 (A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4195 (A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4194 (A vulnerability was detected in D-Link DNS-120, DNR-202L, DNS-315L, DN ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4193 (A security vulnerability has been detected in D-Link DIR-823G 1.0.2B05 ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4192 (A vulnerability has been found in AvinashBole quip-mcp-server 1.0.0. A ...)
TODO: check
CVE-2026-4191 (A flaw has been found in JawherKl node-api-postgres up to 2.5. Affecte ...)
@@ -71,7 +71,7 @@ CVE-2026-4190 (A vulnerability was detected in JawherKl node-api-postgres up to
CVE-2026-4189 (A weakness has been identified in phpipam up to 1.7.4. The impacted el ...)
TODO: check
CVE-2026-4188 (A security flaw has been discovered in D-Link DIR-619L 2.06B01. The af ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4187 (A vulnerability was identified in Tiandy Easy7 Integrated Management P ...)
TODO: check
CVE-2026-4186 (A vulnerability was determined in UEditor up to 1.4.3.2. This issue af ...)
@@ -79,15 +79,15 @@ CVE-2026-4186 (A vulnerability was determined in UEditor up to 1.4.3.2. This iss
CVE-2026-4185 (A vulnerability was found in GPAC up to 2.5-DEV-rev2167-gcc9d617c0-mas ...)
TODO: check
CVE-2026-4184 (A vulnerability was detected in D-Link DIR-816 1.10CNB05. Affected by ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4183 (A security vulnerability has been detected in D-Link DIR-816 1.10CNB05 ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4182 (A weakness has been identified in D-Link DIR-816 1.10CNB05. This impac ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4181 (A security flaw has been discovered in D-Link DIR-816 1.10CNB05. This ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4180 (A vulnerability was identified in D-Link DIR-816 1.10CNB05. The impact ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-4175 (A vulnerability was determined in Aureus ERP up to 1.3.0-BETA2. The af ...)
TODO: check
CVE-2026-4174 (A vulnerability has been found in Radare2 5.9.9. This issue affects th ...)
@@ -95,7 +95,7 @@ CVE-2026-4174 (A vulnerability has been found in Radare2 5.9.9. This issue affec
CVE-2026-4173 (A flaw has been found in CodePhiliaX Chat2DB up to 0.3.7. This vulnera ...)
TODO: check
CVE-2026-4172 (A vulnerability was detected in TRENDnet TEW-632BRP 1.010B32. This aff ...)
- TODO: check
+ NOT-FOR-US: TRENDnet
CVE-2026-4171 (A security vulnerability has been detected in CodeGenieApp serverless- ...)
TODO: check
CVE-2026-32778 (libexpat before 2.7.5 allows a NULL pointer dereference in the functio ...)
@@ -119,55 +119,55 @@ CVE-2026-28519 (arduino-TuyaOpen before version 1.2.1 contains a heap-based buff
CVE-2026-25083 (GROWI OpenAI thread/message API endpoints do not perform authorization ...)
TODO: check
CVE-2026-21005 (Path traversal in Smart Switch prior to version 3.7.69.15 allows adjac ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-21004 (Improper authentication in Smart Switch prior to version 3.7.69.15 all ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-21002 (Improper verification of cryptographic signature in Galaxy Store prior ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-21001 (Path traversal in Galaxy Store prior to version 4.6.03.8 allows local ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-21000 (Improper access control in Galaxy Store prior to version 4.6.03.8 allo ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20999 (Authentication bypass by replay in Smart Switch prior to version 3.7.6 ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20998 (Improper authentication in Smart Switch prior to version 3.7.69.15 all ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20997 (Improper verification of cryptographic signature in Smart Switch prior ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20996 (Use of a broken or risky cryptographic algorithm in Smart Switch prior ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20995 (Exposure of sensitive functionality to an unauthorized actor in Smart ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20994 (URL redirection in Samsung Account prior to version 15.5.01.1 allows r ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20993 (Improper export of android application components in Samsung Assistant ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20992 (Improper authorization in Settings prior to SMR Mar-2026 Release 1 all ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20991 (Improper privilege management in ThemeManager prior to SMR Mar-2026 Re ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20990 (Improper export of android application components in Secure Folder pri ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20989 (Improper verification of cryptographic signature in Font Settings prio ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-20988 (Improper verification of intent by broadcast receiver in Settings prio ...)
- TODO: check
+ NOT-FOR-US: Samsung Mobile
CVE-2026-0639 (in OpenHarmony v6.0 and prior versions allow a local attacker case DOS ...)
- TODO: check
+ NOT-FOR-US: OpenHarmony
CVE-2025-6969 (in OpenHarmony v5.1.0 and prior versions allow a local attacker cause ...)
- TODO: check
+ NOT-FOR-US: OpenHarmony
CVE-2025-52458 (in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitr ...)
- TODO: check
+ NOT-FOR-US: OpenHarmony
CVE-2025-41432 (in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitr ...)
- TODO: check
+ NOT-FOR-US: OpenHarmony
CVE-2025-26474 (in OpenHarmony v5.0.3 and prior versions allow a local attacker cause ...)
- TODO: check
+ NOT-FOR-US: OpenHarmony
CVE-2025-25277 (in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitr ...)
- TODO: check
+ NOT-FOR-US: OpenHarmony
CVE-2025-14287 (A command injection vulnerability exists in mlflow/mlflow versions bef ...)
- TODO: check
+ NOT-FOR-US: mlflow
CVE-2025-12736 (in OpenHarmony v5.0.3 and prior versions allow a local attacker case s ...)
- TODO: check
+ NOT-FOR-US: OpenHarmony
CVE-2017-20224 (Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains an arbitrar ...)
TODO: check
CVE-2017-20223 (Telesquare SKT LTE Router SDT-CS3B1 firmware version 1.2.0 contains an ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b59f05e05f0134f627717ad6ed87e3b112859fd3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b59f05e05f0134f627717ad6ed87e3b112859fd3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260316/b5c24b00/attachment.htm>
More information about the debian-security-tracker-commits
mailing list