Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2024/01/GHSA-22fh-qg4g-69gx/GHSA-22fh-qg4g-69gx.json

@@ -1,12 +1,12 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-22fh-qg4g-69gx",
-  "modified": "2024-01-03T03:30:33Z",
+  "modified": "2025-06-18T18:30:21Z",
   "published": "2024-01-03T03:30:33Z",
   "aliases": [
     "CVE-2023-50346"
   ],
-  "details": "HCL DRYiCE MyXalytics is impacted by an information disclosure vulnerability. Certain endpoints within the application disclose detailed file information.\n",
+  "details": "HCL DRYiCE MyXalytics is impacted by an information disclosure vulnerability. Certain endpoints within the application disclose detailed file information.",
   "severity": [
     {
       "type": "CVSS_V3",
@@ -25,7 +25,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-200"
+    ],
     "severity": "LOW",
     "github_reviewed": false,
     "github_reviewed_at": null,

advisories/unreviewed/2024/01/GHSA-27qg-h9vp-x2xp/GHSA-27qg-h9vp-x2xp.json

@@ -1,12 +1,12 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-27qg-h9vp-x2xp",
-  "modified": "2024-01-03T03:30:33Z",
+  "modified": "2025-06-18T18:30:21Z",
   "published": "2024-01-03T03:30:33Z",
   "aliases": [
     "CVE-2023-45724"
   ],
-  "details": "HCL DRYiCE MyXalytics product is impacted by unauthenticated file upload vulnerability. The web application permits the upload of a certain file without requiring user authentication.\n",
+  "details": "HCL DRYiCE MyXalytics product is impacted by unauthenticated file upload vulnerability. The web application permits the upload of a certain file without requiring user authentication.",
   "severity": [
     {
       "type": "CVSS_V3",

advisories/unreviewed/2024/01/GHSA-3xxx-9v43-6x26/GHSA-3xxx-9v43-6x26.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-3xxx-9v43-6x26",
-  "modified": "2024-01-09T21:30:35Z",
+  "modified": "2025-06-18T18:30:22Z",
   "published": "2024-01-03T15:30:26Z",
   "aliases": [
     "CVE-2023-50093"

advisories/unreviewed/2024/01/GHSA-59j2-44h9-8h98/GHSA-59j2-44h9-8h98.json

@@ -25,7 +25,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-200"
+    ],
     "severity": "CRITICAL",
     "github_reviewed": false,
     "github_reviewed_at": null,

advisories/unreviewed/2024/01/GHSA-83wx-v283-85g9/GHSA-83wx-v283-85g9.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-83wx-v283-85g9",
-  "modified": "2024-01-08T21:30:33Z",
+  "modified": "2025-06-18T18:30:22Z",
   "published": "2024-01-04T03:30:39Z",
   "aliases": [
     "CVE-2024-0224"

advisories/unreviewed/2024/01/GHSA-844c-7qx4-7g9v/GHSA-844c-7qx4-7g9v.json

@@ -1,12 +1,12 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-844c-7qx4-7g9v",
-  "modified": "2024-01-03T03:30:33Z",
+  "modified": "2025-06-18T18:30:21Z",
   "published": "2024-01-03T03:30:33Z",
   "aliases": [
     "CVE-2023-50350"
   ],
-  "details": "HCL DRYiCE MyXalytics is impacted by the use of a broken cryptographic algorithm for encryption, potentially giving an attacker ability to decrypt sensitive information. \n",
+  "details": "HCL DRYiCE MyXalytics is impacted by the use of a broken cryptographic algorithm for encryption, potentially giving an attacker ability to decrypt sensitive information.",
   "severity": [
     {
       "type": "CVSS_V3",

advisories/unreviewed/2024/01/GHSA-85fq-cwc3-mp4q/GHSA-85fq-cwc3-mp4q.json

@@ -1,12 +1,12 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-85fq-cwc3-mp4q",
-  "modified": "2024-01-11T18:31:23Z",
+  "modified": "2025-06-18T18:30:23Z",
   "published": "2024-01-05T18:30:25Z",
   "aliases": [
     "CVE-2023-34323"
   ],
-  "details": "When a transaction is committed, C Xenstored will first check\nthe quota is correct before attempting to commit any nodes.  It would\nbe possible that accounting is temporarily negative if a node has\nbeen removed outside of the transaction.\n\nUnfortunately, some versions of C Xenstored are assuming that the\nquota cannot be negative and are using assert() to confirm it.  This\nwill lead to C Xenstored crash when tools are built without -DNDEBUG\n(this is the default).\n",
+  "details": "When a transaction is committed, C Xenstored will first check\nthe quota is correct before attempting to commit any nodes.  It would\nbe possible that accounting is temporarily negative if a node has\nbeen removed outside of the transaction.\n\nUnfortunately, some versions of C Xenstored are assuming that the\nquota cannot be negative and are using assert() to confirm it.  This\nwill lead to C Xenstored crash when tools are built without -DNDEBUG\n(this is the default).",
   "severity": [
     {
       "type": "CVSS_V3",

advisories/unreviewed/2024/01/GHSA-877p-v8mm-jqg9/GHSA-877p-v8mm-jqg9.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-877p-v8mm-jqg9",
-  "modified": "2024-01-11T21:31:17Z",
+  "modified": "2025-06-18T18:30:25Z",
   "published": "2024-01-08T21:30:33Z",
   "aliases": [
     "CVE-2023-6627"

advisories/unreviewed/2024/01/GHSA-9243-gh96-v7h6/GHSA-9243-gh96-v7h6.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-9243-gh96-v7h6",
-  "modified": "2024-01-12T18:30:20Z",
+  "modified": "2025-06-18T18:30:26Z",
   "published": "2024-01-08T21:30:34Z",
   "aliases": [
     "CVE-2023-49961"
@@ -25,7 +25,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-284"
+    ],
     "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,

advisories/unreviewed/2024/01/GHSA-95jv-pcxp-g9qj/GHSA-95jv-pcxp-g9qj.json

@@ -26,7 +26,8 @@
   ],
   "database_specific": {
     "cwe_ids": [
-      "CWE-352"
+      "CWE-352",
+      "CWE-79"
     ],
     "severity": "MODERATE",
     "github_reviewed": false,