Publish Advisories

advisory-database[bot] · advisory-database[bot] · commit dc128b75568f · 2025-12-02T00:30:58.000Z
GHSA-wp4m-7hpj-8qp8 GHSA-jqfc-9q34-prhg GHSA-hgf8-39gv-g3f2 GHSA-mj73-j457-8x9q GHSA-pq5v-rwp8-p7gm GHSA-wp4m-7hpj-8qp8 GHSA-jqfc-9q34-prhg
diff --git a/advisories/github-reviewed/2024/01/GHSA-wp4m-7hpj-8qp8/GHSA-wp4m-7hpj-8qp8.json b/advisories/github-reviewed/2024/01/GHSA-wp4m-7hpj-8qp8/GHSA-wp4m-7hpj-8qp8.json
@@ -0,0 +1,65 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-wp4m-7hpj-8qp8",
+  "modified": "2025-12-02T00:28:45Z",
+  "published": "2024-01-20T00:30:27Z",
+  "withdrawn": "2025-12-02T00:28:45Z",
+  "aliases": [],
+  "summary": "Duplicate Advisory: Discovery uses the same AES/GCM Nonce throughout the session",
+  "details": "### Duplicate Advisory\nThis advisory has been withdrawn because it is a duplicate of GHSA-w3hj-wr2q-x83g. This link is maintained to preserve external references.\n\n### Original Description\nConsensys Discovery versions less than 0.4.5 uses the same AES/GCM nonce for the entire session. which should ideally be unique for every message. The node's private key isn't compromised, only the session key generated for specific peer communication is exposed.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "Maven",
+        "name": "tech.pegasys.discovery:discovery"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "0.4.5"
+            }
+          ]
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "type": "WEB",
+      "url": "https://github.com/ConsenSys/discovery/security/advisories/GHSA-w3hj-wr2q-x83g"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23688"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://github.com/advisories/GHSA-w3hj-wr2q-x83g"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vulncheck.com/advisories/vc-advisory-GHSA-w3hj-wr2q-x83g"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-323",
+      "CWE-330"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": true,
+    "github_reviewed_at": "2025-12-02T00:28:45Z",
+    "nvd_published_at": "2024-01-19T22:15:08Z"
+  }
+}
diff --git a/advisories/github-reviewed/2025/11/GHSA-jqfc-9q34-prhg/GHSA-jqfc-9q34-prhg.json b/advisories/github-reviewed/2025/11/GHSA-jqfc-9q34-prhg/GHSA-jqfc-9q34-prhg.json
@@ -0,0 +1,122 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-jqfc-9q34-prhg",
+  "modified": "2025-12-02T00:30:16Z",
+  "published": "2025-11-30T03:30:26Z",
+  "aliases": [
+    "CVE-2025-66422"
+  ],
+  "summary": "trytond allows remote attackers to obtain sensitive trace-back (server setup) information",
+  "details": "Tryton trytond before 7.6.11 allows remote attackers to obtain sensitive trace-back (server setup) information. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "PyPI",
+        "name": "trytond"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "7.5.0"
+            },
+            {
+              "fixed": "7.6.11"
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "package": {
+        "ecosystem": "PyPI",
+        "name": "trytond"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "7.1.0"
+            },
+            {
+              "fixed": "7.4.21"
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "package": {
+        "ecosystem": "PyPI",
+        "name": "trytond"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "7.0.0"
+            },
+            {
+              "fixed": "7.0.40"
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "package": {
+        "ecosystem": "PyPI",
+        "name": "trytond"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "6.0.70"
+            }
+          ]
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66422"
+    },
+    {
+      "type": "WEB",
+      "url": "https://discuss.tryton.org/t/security-release-for-issue-14354/8950"
+    },
+    {
+      "type": "WEB",
+      "url": "https://foss.heptapod.net/tryton/tryton/-/issues/14354"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/tryton/trytond"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-402"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": true,
+    "github_reviewed_at": "2025-12-02T00:30:16Z",
+    "nvd_published_at": "2025-11-30T03:15:47Z"
+  }
+}
diff --git a/advisories/github-reviewed/2025/12/GHSA-hgf8-39gv-g3f2/GHSA-hgf8-39gv-g3f2.json b/advisories/github-reviewed/2025/12/GHSA-hgf8-39gv-g3f2/GHSA-hgf8-39gv-g3f2.json
@@ -0,0 +1,69 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-hgf8-39gv-g3f2",
+  "modified": "2025-12-02T00:27:38Z",
+  "published": "2025-12-02T00:27:38Z",
+  "aliases": [
+    "CVE-2025-66221"
+  ],
+  "summary": "Werkzeug safe_join() allows Windows special device names",
+  "details": "Werkzeug's `safe_join` function allows path segments with Windows device names. On Windows, there are special device names such as `CON`, `AUX`, etc that are implicitly present and readable in every directory. `send_from_directory` uses `safe_join` to safely serve files at user-specified paths under a directory. If the application is running on Windows, and the requested path ends with a special device name, the file will be opened successfully, but reading will hang indefinitely.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "PyPI",
+        "name": "werkzeug"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "3.1.4"
+            }
+          ]
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "type": "WEB",
+      "url": "https://github.com/pallets/werkzeug/security/advisories/GHSA-hgf8-39gv-g3f2"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66221"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/pallets/werkzeug/commit/4b833376a45c323a189cd11d2362bcffdb1c0c13"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/pallets/werkzeug"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/pallets/werkzeug/releases/tag/3.1.4"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-67"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": true,
+    "github_reviewed_at": "2025-12-02T00:27:38Z",
+    "nvd_published_at": "2025-11-29T03:16:00Z"
+  }
+}
diff --git a/advisories/github-reviewed/2025/12/GHSA-mj73-j457-8x9q/GHSA-mj73-j457-8x9q.json b/advisories/github-reviewed/2025/12/GHSA-mj73-j457-8x9q/GHSA-mj73-j457-8x9q.json
@@ -0,0 +1,63 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-mj73-j457-8x9q",
+  "modified": "2025-12-02T00:29:11Z",
+  "published": "2025-12-02T00:29:11Z",
+  "aliases": [],
+  "summary": "maxminddb's `Reader::open_mmap` unsoundly marks unsafe memmap operation as safe",
+  "details": "maxminddb prior to version 0.27 declared `Reader::open_mmap` as safe despite wrapping an inherently unsafe memmap2 operation with no extra step done to guarantee safety. This could have led to undefined behaviour if the file were to be modified on disk while the memory map was still active.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "crates.io",
+        "name": "maxminddb"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0.11.0"
+            },
+            {
+              "fixed": "0.27.0"
+            }
+          ]
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "type": "WEB",
+      "url": "https://github.com/oschwald/maxminddb-rust/issues/86"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/oschwald/maxminddb-rust/commit/98f0e4fff9678c841ed33f3b8a46322f6163c32a"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/oschwald/maxminddb-rust"
+    },
+    {
+      "type": "WEB",
+      "url": "https://rustsec.org/advisories/RUSTSEC-2025-0132.html"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-915"
+    ],
+    "severity": "LOW",
+    "github_reviewed": true,
+    "github_reviewed_at": "2025-12-02T00:29:11Z",
+    "nvd_published_at": null
+  }
+}
diff --git a/advisories/github-reviewed/2025/12/GHSA-pq5v-rwp8-p7gm/GHSA-pq5v-rwp8-p7gm.json b/advisories/github-reviewed/2025/12/GHSA-pq5v-rwp8-p7gm/GHSA-pq5v-rwp8-p7gm.json
@@ -0,0 +1,51 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-pq5v-rwp8-p7gm",
+  "modified": "2025-12-02T00:27:10Z",
+  "published": "2025-12-02T00:27:10Z",
+  "aliases": [],
+  "summary": " rtvm-interpreter lacks sufficient checks in public API",
+  "details": "The affected function is unsound due to insufficient checks on public struct field.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "crates.io",
+        "name": "rtvm-interpreter"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "last_affected": "4.0.0"
+            }
+          ]
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "type": "WEB",
+      "url": "https://rustsec.org/advisories/RUSTSEC-2025-0131.html"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-475"
+    ],
+    "severity": "LOW",
+    "github_reviewed": true,
+    "github_reviewed_at": "2025-12-02T00:27:10Z",
+    "nvd_published_at": null
+  }
+}
diff --git a/advisories/unreviewed/2024/01/GHSA-wp4m-7hpj-8qp8/GHSA-wp4m-7hpj-8qp8.json b/advisories/unreviewed/2024/01/GHSA-wp4m-7hpj-8qp8/GHSA-wp4m-7hpj-8qp8.json
diff --git a/advisories/unreviewed/2025/11/GHSA-jqfc-9q34-prhg/GHSA-jqfc-9q34-prhg.json b/advisories/unreviewed/2025/11/GHSA-jqfc-9q34-prhg/GHSA-jqfc-9q34-prhg.json
