[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri May 8 08:35:48 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a9a9a133 by Moritz Muehlenhoff at 2026-05-08T09:35:30+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -29,45 +29,45 @@ CVE-2026-8126 (A flaw has been found in SourceCodester Comment System 1.0. This
CVE-2026-8125 (A vulnerability was detected in code-projects Simple Chat System 1.0. ...)
NOT-FOR-US: code-projects
CVE-2026-8124 (A security vulnerability has been detected in GPAC up to 26.02.0. This ...)
- TODO: check
+ - gpac <removed>
CVE-2026-8123 (A vulnerability was determined in Open5GS up to 2.7.7. This impacts th ...)
- TODO: check
+ - open5gs <itp> (bug #1094791)
CVE-2026-8122 (A vulnerability was found in Open5GS up to 2.7.7. This affects the fun ...)
- TODO: check
+ - open5gs <itp> (bug #1094791)
CVE-2026-8121 (A vulnerability has been found in Open5GS up to 2.7.7. The impacted el ...)
- TODO: check
+ - open5gs <itp> (bug #1094791)
CVE-2026-8120 (A flaw has been found in Open5GS up to 2.7.7. The affected element is ...)
- TODO: check
+ - open5gs <itp> (bug #1094791)
CVE-2026-8119 (A vulnerability was detected in Open5GS up to 2.7.7. Impacted is the f ...)
- TODO: check
+ - open5gs <itp> (bug #1094791)
CVE-2026-8117 (A security vulnerability has been detected in SourceCodester Pizzafy E ...)
NOT-FOR-US: SourceCodester
CVE-2026-8116 (A weakness has been identified in huangjunsen0406 xiaozhi-mcphub up to ...)
- TODO: check
+ NOT-FOR-US: xiaozhi-mcphub
CVE-2026-8115 (A security flaw has been discovered in gyoridavid short-video-maker up ...)
- TODO: check
+ NOT-FOR-US: short-video-maker
CVE-2026-8114 (A vulnerability was identified in JeecgBoot up to 3.9.1. Affected by t ...)
- TODO: check
+ NOT-FOR-US: JeecgBoot
CVE-2026-8113 (A vulnerability was determined in 8421bit MiniClaw up to 43905b934cf76 ...)
- TODO: check
+ NOT-FOR-US: MiniClaw
CVE-2026-8112 (A vulnerability was found in 8421bit MiniClaw up to 223c16a1088e138838 ...)
- TODO: check
+ NOT-FOR-US: MiniClaw
CVE-2026-8106 (A reflected HTML injection vulnerability was identified in the GitHub ...)
NOT-FOR-US: Github Enterprise Server
CVE-2026-8098 (A security vulnerability has been detected in code-projects Feedback S ...)
NOT-FOR-US: code-projects
CVE-2026-8097 (A security flaw has been discovered in CodeAstro Online Classroom 1.0. ...)
- TODO: check
+ NOT-FOR-US: CodeAstro
CVE-2026-8088 (A weakness has been identified in OSGeo gdal up to 3.13.0dev-4. The af ...)
TODO: check
CVE-2026-8087 (A security flaw has been discovered in OSGeo gdal up to 3.13.0dev-4. I ...)
TODO: check
CVE-2026-8069 (PredatorSense version 3.00.3136 to 3.00.3196 contain Local Privilege E ...)
- TODO: check
+ NOT-FOR-US: PredatorSense
CVE-2026-8034 (A server-side request forgery (SSRF) vulnerability was identified in t ...)
NOT-FOR-US: Github Enterprise Server
CVE-2026-7891 (The VerySecureApp made by DIVD using Mendix Studio Pro 11.8.0 Beta all ...)
- TODO: check
+ NOT-FOR-US: VerySecureApp
CVE-2026-7541 (A denial of service vulnerability was identified in GitHub Enterprise ...)
NOT-FOR-US: Github Enterprise Server
CVE-2026-6737 (An Exposed IOCTL with Insufficient Access Control vulnerability in Asu ...)
@@ -75,7 +75,7 @@ CVE-2026-6737 (An Exposed IOCTL with Insufficient Access Control vulnerability i
CVE-2026-6736 (An authentication bypass vulnerability was identified in GitHub Enterp ...)
NOT-FOR-US: Github Enterprise Server
CVE-2026-6411 (This vulnerability, in the MAXHUB Pivot client application versions p ...)
- TODO: check
+ NOT-FOR-US: MAXHUB Pivot
CVE-2026-4935 (The OttoKit: All-in-One Automation Platform WordPress plugin before 1. ...)
NOT-FOR-US: WordPress plugin
CVE-2026-44916 (In OpenStack Ironic through 35.x, instance_info['ks_template'] is rend ...)
@@ -83,19 +83,19 @@ CVE-2026-44916 (In OpenStack Ironic through 35.x, instance_info['ks_template'] i
CVE-2026-44365
REJECTED
CVE-2026-44298 (Kimai is an open-source time tracking application. From version 2.32.0 ...)
- TODO: check
+ NOT-FOR-US: Kimai
CVE-2026-43944 (electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VN ...)
- TODO: check
+ NOT-FOR-US: electerm
CVE-2026-43943 (electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VN ...)
- TODO: check
+ NOT-FOR-US: electerm
CVE-2026-43942 (electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VN ...)
- TODO: check
+ NOT-FOR-US: electerm
CVE-2026-43941 (electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VN ...)
- TODO: check
+ NOT-FOR-US: electerm
CVE-2026-43940 (electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VN ...)
- TODO: check
+ NOT-FOR-US: electerm
CVE-2026-43510 (manage.get.gov is the .gov TLD registrar maintained by CISA. manage.ge ...)
- TODO: check
+ NOT-FOR-US: manage.get.gov
CVE-2026-42880 (Argo CD is a declarative, GitOps continuous delivery tool for Kubernet ...)
NOT-FOR-US: Argo CD
CVE-2026-42826 (Exposure of sensitive information to an unauthorized actor in Azure De ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a9a9a13314b11eec76d01a546c7c3f25742eccee
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a9a9a13314b11eec76d01a546c7c3f25742eccee
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260508/fb163ed3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list