Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b0a902b6 by security tracker role at 2026-06-03T19:13:44+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21,7 +21,7 @@ CVE-2026-5241 (A vulnerability in the LightGlue model loading
path of huggingfac
CVE-2026-5078 (Impact: The morgan logging middleware's :remote-user token
extracts th ...)
TODO: check
CVE-2026-4035 (A vulnerability in mlflow/mlflow versions prior to 3.11.0
allows for t ...)
- TODO: check
+ NOT-FOR-US: mlflow
CVE-2026-47325 (ProjectsAndPrograms school-management-systemuses predictable
credentia ...)
TODO: check
CVE-2026-47324 (ProjectsAndPrograms school-management-system is vulnerable to
Stored C ...)
@@ -125,9 +125,9 @@ CVE-2026-26379 (An issue in Koha v.25.11 and before allows
a remote attacker to
CVE-2026-26378 (Cross Site Scripting vulnerability in Koha 25.11 and before
allows a r ...)
TODO: check
CVE-2026-20233 (A vulnerability in the web-based user interface of Cisco Webex
Meeting ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2026-20230 (A vulnerability in Cisco Unified Communications Manager
(Unified CM) a ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2026-20175 (A vulnerability in Cisco Finesse could allow an
unauthenticated, remot ...)
TODO: check
CVE-2026-10729 (An HTML injection vulnerability in the notification email for
"Slow Re ...)
@@ -143,29 +143,29 @@ CVE-2025-60477 (A NULL pointer dereference in the
gf_filter_pid_resolve_file_tem
CVE-2025-41259 (SWUpdate before 2026.05 is affected by a time-of-check
time-of-use (TO ...)
TODO: check
CVE-2025-15656 (Incorrect Privilege Assignment vulnerability in Mojoomla
School Manage ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-15655 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-15654 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-14774 (Incorrect Authorization vulnerability in ABB T-MAC Plus. This
issue a ...)
- TODO: check
+ NOT-FOR-US: ABB group
CVE-2025-14773 (Improper neutralization of input during web page generation
('cross-si ...)
- TODO: check
+ NOT-FOR-US: ABB group
CVE-2025-14772 (Authorization bypass through User-Controlled key vulnerability
in ABB ...)
- TODO: check
+ NOT-FOR-US: ABB group
CVE-2025-14771 (Files or directories accessible to external parties
vulnerability in A ...)
- TODO: check
+ NOT-FOR-US: ABB group
CVE-2024-47273 (An improper limitation of a pathname to a restricted directory
('Path ...)
- TODO: check
+ NOT-FOR-US: Synology
CVE-2024-47263 (An improper limitation of a pathname to a restricted directory
('Path ...)
- TODO: check
+ NOT-FOR-US: Synology
CVE-2023-52951 (A cleartext transmission of sensitive information
vulnerability in Syn ...)
- TODO: check
+ NOT-FOR-US: Synology
CVE-2022-49042 (An inclusion of functionality from untrusted control sphere
vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Synology
CVE-2022-49036 (An inclusion of functionality from untrusted control sphere
vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Synology
CVE-2019-25720 (Dr\xe4ger SC Monitoring devices (SC 6002XL, SC 6802XL, SC
7000, SC 800 ...)
TODO: check
CVE-2026-3276 (unicodedata.normalize() can take excessive CPU time when
processing sp ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b0a902b6ec05f4d43da3d44ab589c3086caa872d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b0a902b6ec05f4d43da3d44ab589c3086caa872d
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
