Advisory Database Sync

Author: advisory-database[bot]

advisories/github-reviewed/2022/03/GHSA-ffmm-5ww2-g3q4/GHSA-ffmm-5ww2-g3q4.json

@@ -0,0 +1,96 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-ffmm-5ww2-g3q4",
+  "modified": "2025-07-15T18:32:01Z",
+  "published": "2022-03-04T00:00:20Z",
+  "aliases": [
+    "CVE-2021-38263"
+  ],
+  "summary": "Liferay Portal and Liferay DXP cross-site scripting (XSS) vulnerability via the script console",
+  "details": "Liferay Server Admin Web before 4.0.12 from Liferay Portal v7.3.2 and below and Liferay DXP v7.0 and below were discovered to contain a cross-site scripting (XSS) vulnerability via the script console under the Server module.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "Maven",
+        "name": "com.liferay:com.liferay.server.admin.web"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "4.0.12"
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "package": {
+        "ecosystem": "Maven",
+        "name": "com.liferay.portal:release.dxp.bom"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "last_affected": "7.0"
+            }
+          ]
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-38263"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/liferay/liferay-portal/commit/1abb1bfc96242065f97c2828a02350ea2174f5f6"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/liferay/liferay-portal/commit/771d99805b7ca69fecfcf67be5e24f2c1af1d0bb"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/liferay/liferay-portal"
+    },
+    {
+      "type": "WEB",
+      "url": "https://issues.liferay.com/browse/LPE-17061"
+    },
+    {
+      "type": "WEB",
+      "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2021-38263-reflected-xss-with-script-page?p_r_p_assetEntryId=121611737&_com_liferay_asset_publisher_web_portlet_AssetPublisherPortlet_INSTANCE_jekt_redirect=https%3A%2F%2Fliferay.dev%3A443%2Fportal%2Fsecurity%2Fknown-vulnerabilities%3Fp_p_id%3Dcom_liferay_asset_publisher_web_portlet_AssetPublisherPortlet_INSTANCE_jekt%26p_p_lifecycle%3D0%26p_p_state%3Dnormal%26p_p_mode%3Dview%26p_r_p_assetEntryId%3D121611737%26_com_liferay_asset_publisher_web_portlet_AssetPublisherPortlet_INSTANCE_jekt_cur%3D0%26p_r_p_resetCur%3Dfalse"
+    },
+    {
+      "type": "WEB",
+      "url": "http://liferay.com"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-79"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": true,
+    "github_reviewed_at": "2025-07-15T18:32:01Z",
+    "nvd_published_at": "2022-03-03T00:15:00Z"
+  }
+}

advisories/unreviewed/2022/03/GHSA-ffmm-5ww2-g3q4/GHSA-ffmm-5ww2-g3q4.json

@@ -1,12 +1,12 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2q7f-pr29-qfh5",
-  "modified": "2024-07-03T18:44:41Z",
+  "modified": "2025-07-15T18:31:10Z",
   "published": "2024-06-11T00:30:40Z",
   "aliases": [
     "CVE-2024-36471"
   ],
-  "details": "Import functionality is vulnerable to DNS rebinding attacks between verification and processing of the URL.  Project administrators can run these imports, which could cause Allura to read from internal services and expose them.\n\nThis issue affects Apache Allura from 1.0.1 through 1.16.0.\n\nUsers are recommended to upgrade to version 1.17.0, which fixes the issue.  If you are unable to upgrade, set \"disable_entry_points.allura.importers = forge-tracker, forge-discussion\" in your .ini config file.\n\n",
+  "details": "Import functionality is vulnerable to DNS rebinding attacks between verification and processing of the URL.  Project administrators can run these imports, which could cause Allura to read from internal services and expose them.\n\nThis issue affects Apache Allura from 1.0.1 through 1.16.0.\n\nUsers are recommended to upgrade to version 1.17.0, which fixes the issue.  If you are unable to upgrade, set \"disable_entry_points.allura.importers = forge-tracker, forge-discussion\" in your .ini config file.",
   "severity": [
     {
       "type": "CVSS_V3",
@@ -22,6 +22,10 @@
     {
       "type": "WEB",
       "url": "https://lists.apache.org/thread/g43164t4bcp0tjwt4opxyks4svm8kvbh"
+    },
+    {
+      "type": "WEB",
+      "url": "http://www.openwall.com/lists/oss-security/2024/06/10/1"
     }
   ],
   "database_specific": {

advisories/unreviewed/2024/06/GHSA-2q7f-pr29-qfh5/GHSA-2q7f-pr29-qfh5.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-rmx6-3w23-whmj",
-  "modified": "2025-05-13T18:30:53Z",
+  "modified": "2025-07-15T18:31:15Z",
   "published": "2025-05-13T18:30:53Z",
   "aliases": [
     "CVE-2024-6364"
   ],
   "details": "A vulnerability in Absolute Persistence® versions before 2.8 exists when it is not activated. This may allow a skilled attacker with both physical access to the device, and full hostile network control, to initiate OS commands on the device.  To remediate this vulnerability, update the device firmware to the latest available version. Please contact the device manufacturer for upgrade instructions or contact Absolute Security, see reference below.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:P/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/05/GHSA-rmx6-3w23-whmj/GHSA-rmx6-3w23-whmj.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-cw23-897m-qmhx",
-  "modified": "2025-06-06T09:30:25Z",
+  "modified": "2025-07-15T18:31:16Z",
   "published": "2025-06-06T09:30:25Z",
   "aliases": [
     "CVE-2025-5703"

advisories/unreviewed/2025/06/GHSA-cw23-897m-qmhx/GHSA-cw23-897m-qmhx.json

@@ -0,0 +1,29 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-25r2-9vcc-j43c",
+  "modified": "2025-07-15T18:31:26Z",
+  "published": "2025-07-15T18:31:26Z",
+  "aliases": [
+    "CVE-2025-52080"
+  ],
+  "details": "In Netgear XR300 V1.0.3.38_10.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usb_device.cgi endpoint. The vulnerability occurs when processing POST requests containing the share_name parameter.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52080"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/lafdrew/IOT/blob/main/Netgear%20XR300/share_name%20of%20usb_device.cgi/buffer%20overflow%20in%20share_neme%20of%20usb_device.cgi.md"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-07-15T16:15:37Z"
+  }
+}

advisories/unreviewed/2025/07/GHSA-25r2-9vcc-j43c/GHSA-25r2-9vcc-j43c.json

@@ -0,0 +1,37 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-2w98-h9rr-xfqq",
+  "modified": "2025-07-15T18:31:26Z",
+  "published": "2025-07-15T18:31:26Z",
+  "aliases": [
+    "CVE-2024-42650"
+  ],
+  "details": "NanoMQ 0.17.5 was discovered to contain a segmentation fault via the component /nanomq/pub_handler.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted PUBLISH message.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-42650"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/emqx/nanomq/issues/1168"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/nanomq/nanomq/pull/1170"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/nanomq/nanomq"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-07-15T16:15:36Z"
+  }
+}

advisories/unreviewed/2025/07/GHSA-2w98-h9rr-xfqq/GHSA-2w98-h9rr-xfqq.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-43hc-f4q4-g3vc",
+  "modified": "2025-07-15T18:31:26Z",
+  "published": "2025-07-15T18:31:26Z",
+  "aliases": [
+    "CVE-2025-26186"
+  ],
+  "details": "SQL Injection vulnerability in openSIS v.9.1 allows a remote attacker to execute arbitrary code via the id parameter in Ajax.php",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-26186"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/OS4ED/openSIS-Classic/pull/330"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.os4ed.com"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-89"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-07-15T17:15:26Z"
+  }
+}

advisories/unreviewed/2025/07/GHSA-43hc-f4q4-g3vc/GHSA-43hc-f4q4-g3vc.json

@@ -46,7 +46,8 @@
   ],
   "database_specific": {
     "cwe_ids": [
-      "CWE-119"
+      "CWE-119",
+      "CWE-120"
     ],
     "severity": "HIGH",
     "github_reviewed": false,

advisories/unreviewed/2025/07/GHSA-56rg-32wr-38cm/GHSA-56rg-32wr-38cm.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-577h-64qr-v55r",
-  "modified": "2025-07-14T12:30:28Z",
+  "modified": "2025-07-15T18:31:23Z",
   "published": "2025-07-14T12:30:28Z",
   "aliases": [
     "CVE-2024-51770"
   ],
   "details": "An information disclosure vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.17.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -20,8 +25,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-497"
+    ],
+    "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-07-14T11:15:22Z"