Skip to content

Commit c1dca7d

Browse files
Advisory Database Sync
1 parent 73bebfd commit c1dca7d

52 files changed

Lines changed: 1034 additions & 74 deletions

File tree

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

advisories/github-reviewed/2026/03/GHSA-p44q-vqpr-4xmg/GHSA-p44q-vqpr-4xmg.json

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-p44q-vqpr-4xmg",
4-
"modified": "2026-04-06T17:13:44Z",
4+
"modified": "2026-05-28T18:30:24Z",
55
"published": "2026-03-31T23:48:02Z",
66
"aliases": [
77
"CVE-2026-34531"
@@ -58,6 +58,10 @@
5858
{
5959
"type": "WEB",
6060
"url": "https://github.com/miguelgrinberg/Flask-HTTPAuth/releases/tag/v4.8.1"
61+
},
62+
{
63+
"type": "WEB",
64+
"url": "https://lists.debian.org/debian-lts-announce/2026/05/msg00049.html"
6165
}
6266
],
6367
"database_specific": {

advisories/unreviewed/2022/04/GHSA-3fwm-5x3q-64xf/GHSA-3fwm-5x3q-64xf.json

Lines changed: 10 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,18 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-3fwm-5x3q-64xf",
4-
"modified": "2022-04-30T18:10:45Z",
4+
"modified": "2026-05-28T18:30:23Z",
55
"published": "2022-04-30T18:10:45Z",
66
"aliases": [
77
"CVE-1999-0511"
88
],
99
"details": "IP forwarding is enabled on a machine which is not a router or firewall.",
10-
"severity": [],
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"
14+
}
15+
],
1116
"affected": [],
1217
"references": [
1318
{
@@ -20,7 +25,9 @@
2025
}
2126
],
2227
"database_specific": {
23-
"cwe_ids": [],
28+
"cwe_ids": [
29+
"CWE-200"
30+
],
2431
"severity": "HIGH",
2532
"github_reviewed": false,
2633
"github_reviewed_at": null,

advisories/unreviewed/2022/04/GHSA-5626-39p4-q29v/GHSA-5626-39p4-q29v.json

Lines changed: 10 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,18 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-5626-39p4-q29v",
4-
"modified": "2022-04-30T18:10:54Z",
4+
"modified": "2026-05-28T18:30:24Z",
55
"published": "2022-04-30T18:10:54Z",
66
"aliases": [
77
"CVE-1999-0632"
88
],
99
"details": "The RPC portmapper service is running.",
10-
"severity": [],
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
14+
}
15+
],
1116
"affected": [],
1217
"references": [
1318
{
@@ -20,7 +25,9 @@
2025
}
2126
],
2227
"database_specific": {
23-
"cwe_ids": [],
28+
"cwe_ids": [
29+
"CWE-200"
30+
],
2431
"severity": "LOW",
2532
"github_reviewed": false,
2633
"github_reviewed_at": null,

advisories/unreviewed/2022/04/GHSA-5qg4-5cpf-4r9p/GHSA-5qg4-5cpf-4r9p.json

Lines changed: 7 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,18 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-5qg4-5cpf-4r9p",
4-
"modified": "2025-03-17T15:31:34Z",
4+
"modified": "2026-05-28T18:30:24Z",
55
"published": "2022-04-30T18:10:45Z",
66
"aliases": [
77
"CVE-1999-0524"
88
],
99
"details": "ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.",
10-
"severity": [],
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
14+
}
15+
],
1116
"affected": [],
1217
"references": [
1318
{

advisories/unreviewed/2022/04/GHSA-wvmj-jgmg-4ghq/GHSA-wvmj-jgmg-4ghq.json

Lines changed: 10 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,18 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-wvmj-jgmg-4ghq",
4-
"modified": "2025-03-17T15:31:33Z",
4+
"modified": "2026-05-28T18:30:24Z",
55
"published": "2022-04-30T18:10:43Z",
66
"aliases": [
77
"CVE-1999-0517"
88
],
99
"details": "An SNMP community name is the default (e.g. public), null, or missing.",
10-
"severity": [],
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
14+
}
15+
],
1116
"affected": [],
1217
"references": [
1318
{
@@ -24,7 +29,9 @@
2429
}
2530
],
2631
"database_specific": {
27-
"cwe_ids": [],
32+
"cwe_ids": [
33+
"CWE-200"
34+
],
2835
"severity": "HIGH",
2936
"github_reviewed": false,
3037
"github_reviewed_at": null,

advisories/unreviewed/2022/05/GHSA-49v5-h84x-33xp/GHSA-49v5-h84x-33xp.json

Lines changed: 7 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,18 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-49v5-h84x-33xp",
4-
"modified": "2025-09-19T21:31:14Z",
4+
"modified": "2026-05-28T18:30:24Z",
55
"published": "2022-05-17T04:51:34Z",
66
"aliases": [
77
"CVE-2014-0759"
88
],
99
"details": "Unquoted Windows search path vulnerability in Schneider Electric Floating License Manager 1.0.0 through 1.4.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character.",
10-
"severity": [],
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
14+
}
15+
],
1116
"affected": [],
1217
"references": [
1318
{

advisories/unreviewed/2022/05/GHSA-52r2-7jx8-c8gc/GHSA-52r2-7jx8-c8gc.json

Lines changed: 7 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,18 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-52r2-7jx8-c8gc",
4-
"modified": "2022-05-17T03:06:08Z",
4+
"modified": "2026-05-28T18:30:24Z",
55
"published": "2022-05-17T03:06:08Z",
66
"aliases": [
77
"CVE-2014-2653"
88
],
99
"details": "The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.",
10-
"severity": [],
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
14+
}
15+
],
1116
"affected": [],
1217
"references": [
1318
{

advisories/unreviewed/2022/05/GHSA-mww5-q78w-ffpv/GHSA-mww5-q78w-ffpv.json

Lines changed: 7 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,18 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-mww5-q78w-ffpv",
4-
"modified": "2022-05-13T01:26:11Z",
4+
"modified": "2026-05-28T18:30:24Z",
55
"published": "2022-05-13T01:26:11Z",
66
"aliases": [
77
"CVE-2014-5455"
88
],
99
"details": "Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel version 3.0 (Windows) and OpenVPN Connect version 3.1 (Windows) allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder.",
10-
"severity": [],
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"
14+
}
15+
],
1116
"affected": [],
1217
"references": [
1318
{

advisories/unreviewed/2022/05/GHSA-pxrc-fqc7-h5rw/GHSA-pxrc-fqc7-h5rw.json

Lines changed: 7 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,18 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-pxrc-fqc7-h5rw",
4-
"modified": "2022-05-13T01:28:41Z",
4+
"modified": "2026-05-28T18:30:24Z",
55
"published": "2022-05-13T01:28:41Z",
66
"aliases": [
77
"CVE-2014-1692"
88
],
99
"details": "The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via vectors that trigger an error condition.",
10-
"severity": [],
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
14+
}
15+
],
1116
"affected": [],
1217
"references": [
1318
{

advisories/unreviewed/2022/05/GHSA-qf84-3fjj-8852/GHSA-qf84-3fjj-8852.json

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -113,7 +113,9 @@
113113
}
114114
],
115115
"database_specific": {
116-
"cwe_ids": [],
116+
"cwe_ids": [
117+
"CWE-20"
118+
],
117119
"severity": "MODERATE",
118120
"github_reviewed": false,
119121
"github_reviewed_at": null,

0 commit comments

Comments
 (0)