Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bcbb9007 by Salvatore Bonaccorso at 2026-02-20T22:05:56+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -51,13 +51,13 @@ CVE-2026-26745 (OpenSourcePOS 3.4.1 has a second order SQL
Injection vulnerabili
CVE-2026-26725 (An issue in edu Business Solutions Print Shop Pro WebDesk
v.18.34 allo ...)
NOT-FOR-US: edu Business Solutions Print Shop Pro WebDesk
CVE-2026-26724 (Cross Site Scripting vulnerability in Key Systems Inc Global
Facilitie ...)
- TODO: check
+ NOT-FOR-US: Key Systems Inc Global Facilities Management Software
CVE-2026-26723 (Cross Site Scripting vulnerability in Key Systems Inc Global
Facilitie ...)
- TODO: check
+ NOT-FOR-US: Key Systems Inc Global Facilities Management Software
CVE-2026-26722 (An issue in Key Systems Inc Global Facilities Management
Software v.20 ...)
- TODO: check
+ NOT-FOR-US: Key Systems Inc Global Facilities Management Software
CVE-2026-26721 (An issue in Key Systems Inc Global Facilities Management
Software v.20 ...)
- TODO: check
+ NOT-FOR-US: Key Systems Inc Global Facilities Management Software
CVE-2026-26102 (Incorrect Permission Assignment for Critical Resource in Owl
opds 2.2. ...)
TODO: check
CVE-2026-26101 (Incorrect Permission Assignment for Critical Resource in Owl
opds 2.2. ...)
@@ -77,7 +77,7 @@ CVE-2026-26095 (Incorrect Permission Assignment for Critical
Resource in Owl opd
CVE-2026-26093 (Improper Neutralization of Special Elements used in a Command
('Comman ...)
TODO: check
CVE-2026-26050 (The installer for
\u30b8\u30e7\u30d6\u30ed\u30b0\u96c6\u8a08/\u5206\u6 ...)
- TODO: check
+ NOT-FOR-US: Ricoh
CVE-2026-26049 (The web management interface of the device renders the
passwords in a ...)
TODO: check
CVE-2026-26048 (The Wi-Fi router is vulnerable to de-authentication attacks
due to the ...)
@@ -107,7 +107,7 @@ CVE-2026-24943 (Improper Neutralization of Input During Web
Page Generation ('Cr
CVE-2026-24941 (Missing Authorization vulnerability in wpjobportal WP Job
Portal wp-jo ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2026-24891 (openITCOCKPIT is an open source monitoring tool built for
different mo ...)
- TODO: check
+ NOT-FOR-US: openITCOCKPIT
CVE-2026-24790 (The underlying PLC of the device can be remotely influenced,
without p ...)
TODO: check
CVE-2026-24455 (The embedded web interface of the device does not support
HTTPS/TLS fo ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bcbb9007ccf9abaa17ab75bbb36d9df7caedc90d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bcbb9007ccf9abaa17ab75bbb36d9df7caedc90d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
