[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) Fri, 13 Feb 2026 02:19:48 -0800


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
bb255c7c by Moritz Muehlenhoff at 2026-02-13T11:19:09+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -63,7 +63,7 @@ CVE-2025-9292 (A permissive web security configuration may 
allow cross-origin re
 CVE-2025-70845 (lty628 aidigu v1.9.1 is vulnerable to Cross Site Scripting 
(XSS) exist ...)
        NOT-FOR-US: lty628 aidigu
 CVE-2025-70092 (A cross-site scripting (XSS) vulnerability in the Item Kits 
function o ...)
-       TODO: check
+       NOT-FOR-US: OpenSourcePOS
 CVE-2025-48023 (A vulnerability has been found in Vnet/IP Interface Package 
provided b ...)
        NOT-FOR-US: Yokogawa
 CVE-2025-48022 (A vulnerability has been found in Vnet/IP Interface Package 
provided b ...)
@@ -79,57 +79,57 @@ CVE-2025-1924 (A vulnerability has been found in Vnet/IP 
Interface Package provi
 CVE-2025-15520 (The RegistrationMagic  WordPress plugin before 6.0.7.2 checks 
nonces b ...)
        NOT-FOR-US: WordPress plugin
 CVE-2024-21961 (Improper restriction of operations within the bounds of a 
memory buffe ...)
-       TODO: check
+       NOT-FOR-US: AMD
 CVE-2020-37167 (ClamAV ClamBC bytecode interpreter contains a vulnerability in 
functio ...)
        TODO: check
 CVE-2019-25342 (Centova Cast 3.2.12 contains a denial of service vulnerability 
that al ...)
-       TODO: check
+       NOT-FOR-US: Centova Cast
 CVE-2019-25341 (iNetTools for iOS 8.20 contains a denial of service 
vulnerability in t ...)
-       TODO: check
+       NOT-FOR-US: iNetTools
 CVE-2019-25340 (SpotAuditor 5.3.2 contains a denial of service vulnerability 
in its Ba ...)
-       TODO: check
+       NOT-FOR-US: SpotAuditor
 CVE-2019-25339 (GHIA CamIP 1.2 for iOS contains a denial of service 
vulnerability in t ...)
-       TODO: check
+       NOT-FOR-US: GHIA CamIP
 CVE-2019-25338 (DokuWiki 2018-04-22b contains a username enumeration 
vulnerability in  ...)
        TODO: check
 CVE-2019-25337 (OwnCloud 8.1.8 contains a username enumeration vulnerability 
that allo ...)
-       TODO: check
+       NOT-FOR-US: OwnCloud
 CVE-2019-25336 (SpotAuditor 5.3.2 contains a local buffer overflow 
vulnerability in th ...)
-       TODO: check
+       NOT-FOR-US: SpotAuditor
 CVE-2019-25335 (PRO-7070 Haz\u0131r Profesyonel Web Sitesi version 1.0 
contains an aut ...)
-       TODO: check
+       NOT-FOR-US: Profesyonel Web Sitesi
 CVE-2019-25334 (Product Key Explorer 4.2.0.0 contains a denial of service 
vulnerabilit ...)
-       TODO: check
+       NOT-FOR-US: (Product Key Explorer
 CVE-2019-25333 (Bullwark Momentum Series JAWS 1.0 contains a directory 
traversal vulne ...)
-       TODO: check
+       NOT-FOR-US: Bullwark Momentum Series JAWS
 CVE-2019-25332 (FTP Commander Pro 8.03 contains a local stack overflow 
vulnerability t ...)
-       TODO: check
+       NOT-FOR-US: FTP Commander Pro
 CVE-2019-25331 (AVS Audio Converter 9.1 contains a local buffer overflow 
vulnerability ...)
-       TODO: check
+       NOT-FOR-US: AVS Audio Converter
 CVE-2019-25330 (SurfOffline Professional 2.2.0.103 contains a structured 
exception han ...)
-       TODO: check
+       NOT-FOR-US: SurfOffline Professional
 CVE-2019-25329 (FTP Navigator 8.03 contains a denial of service vulnerability 
that all ...)
-       TODO: check
+       NOT-FOR-US: FTP Navigator
 CVE-2019-25328 (XnConvert 1.82 contains a denial of service vulnerability in 
its regis ...)
-       TODO: check
+       NOT-FOR-US: XnConvert
 CVE-2019-25327 (Prime95 version 29.8 build 6 contains a buffer overflow 
vulnerability  ...)
-       TODO: check
+       NOT-FOR-US: Prime95
 CVE-2019-25325 (Thrive Smart Home 1.1 contains an SQL injection vulnerability 
in the c ...)
-       TODO: check
+       NOT-FOR-US: Thrive Smart Home
 CVE-2019-25324 (RICOH Web Image Monitor 1.09 contains an HTML injection 
vulnerability  ...)
-       TODO: check
+       NOT-FOR-US: RICOH
 CVE-2019-25323 (Heatmiser Netmonitor v3.03 contains an HTML injection 
vulnerability in ...)
-       TODO: check
+       NOT-FOR-US: Heatmiser
 CVE-2019-25322 (Heatmiser Netmonitor 3.03 contains a hardcoded credentials 
vulnerabili ...)
-       TODO: check
+       NOT-FOR-US: Heatmiser
 CVE-2019-25321 (FTP Navigator 8.03 contains a stack overflow vulnerability 
that allows ...)
-       TODO: check
+       NOT-FOR-US: FTP Navigator
 CVE-2019-25320 (E Learning Script 1.0 contains an authentication bypass 
vulnerability  ...)
-       TODO: check
+       NOT-FOR-US: E Learning Script
 CVE-2019-25319 (Domain Quester Pro 6.02 contains a stack overflow 
vulnerability that a ...)
-       TODO: check
+       NOT-FOR-US: Domain Quester Pro
 CVE-2019-25318 (AVS Audio Converter 9.1.2.600 contains a stack overflow 
vulnerability  ...)
-       TODO: check
+       NOT-FOR-US: AVS Audio Converter
 CVE-2025-40905 (WWW::OAuth 1.000 and earlier for Perl uses the rand() function 
as the  ...)
        - libwww-oauth-perl 1.001-1
        [bookworm] - libwww-oauth-perl <no-dsa> (Minor issue)
@@ -240,7 +240,7 @@ CVE-2025-10969 (Improper Neutralization of Special Elements 
used in an SQL Comma
 CVE-2024-36319 (Debug code left active in AMD's Video Decoder Engine Firmware 
(VCN FW) ...)
        NOT-FOR-US: AMD
 CVE-2023-31323 (Type confusion in the AMD Secure Processor (ASP) could allow 
an attack ...)
-       TODO: check
+       NOT-FOR-US: AMD
 CVE-2023-31313 (An unintended proxy or intermediary in the AMD power 
management firmwa ...)
        TODO: check
 CVE-2019-25348 (Computrols CBAS-Web 19.0.0 contains a boolean-based blind SQL 
injectio ...)
@@ -648,7 +648,7 @@ CVE-2020-37180 (GTalk Password Finder 2.2.1 contains a 
denial of service vulnera
 CVE-2020-37179 (APKF Product Key Finder 2.5.8.0 contains a denial of service 
vulnerabi ...)
        NOT-FOR-US: APKF Product Key Finder
 CVE-2020-37178 (KeePass Password Safe versions before 2.44 contain a denial of 
service ...)
-       TODO: check
+       NOTE: Bogus CVE issue, no security impact
 CVE-2020-37177 (BOOTP Turbo 2.0 contains a denial of service vulnerability 
that allows ...)
        NOT-FOR-US: BOOTP Turbo
 CVE-2020-37176 (Torrent 3GP Converter 1.51 contains a stack overflow 
vulnerability tha ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bb255c7cb35f1858b9d1dea91a0119bb15eb2420

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bb255c7cb35f1858b9d1dea91a0119bb15eb2420
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] NFUs

Reply via email to