Sync EUVD catalog: Sun May 3 00:48:00 UTC 2026

Signed-off-by: AboutCode Automation <automation@aboutcode.org>

Author: aboutcode-automation

advisories/2023/09/EUVD-2023-57355.json

@@ -2,12 +2,12 @@
   "id": "EUVD-2023-57355",
   "enisaUuid": "93fcbdfc-b332-3a39-9d79-937eb4a39ce0",
   "description": "An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.2.7, all versions starting from 16.3 before 16.3.4. It was possible for an attacker to run pipeline jobs as an arbitrary user via scheduled security scan policies. This was a bypass of [CVE-2023-3932](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3932) showing additional impact.",
-  "datePublished": "Sep 19, 2023, 9:30:15 AM",
-  "dateUpdated": "Apr 4, 2024, 7:43:39 AM",
+  "datePublished": "Sep 19, 2023, 7:01:14 AM",
+  "dateUpdated": "May 2, 2026, 4:05:13 AM",
   "baseScore": 9.6,
   "baseScoreVersion": "3.1",
   "baseScoreVector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
-  "references": "https://gitlab.com/gitlab-org/gitlab/-/issues/425304\nhttps://hackerone.com/reports/2147126\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-5009\n",
+  "references": "https://gitlab.com/gitlab-org/gitlab/-/issues/425304\nhttps://hackerone.com/reports/2147126\n",
   "aliases": "GHSA-g4c2-hhjc-4hgg\nCVE-2023-5009\n",
   "assigner": "GitLab",
   "epss": 0.03,

advisories/2023/12/EUVD-2023-57403.json

@@ -2,12 +2,12 @@
   "id": "EUVD-2023-57403",
   "enisaUuid": "40599168-d5b0-320d-a237-13c5d09cfd2c",
   "description": "An issue has been discovered in GitLab affecting all versions starting from 9.3 before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. In certain situations, it may have been possible for developers to override predefined CI variables via the REST API.",
-  "datePublished": "Dec 15, 2023, 6:30:28 PM",
-  "dateUpdated": "Dec 15, 2023, 6:30:28 PM",
+  "datePublished": "Dec 15, 2023, 4:03:05 PM",
+  "dateUpdated": "May 2, 2026, 4:05:18 AM",
   "baseScore": 4.3,
   "baseScoreVersion": "3.1",
   "baseScoreVector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
-  "references": "https://gitlab.com/gitlab-org/gitlab/-/issues/425521\nhttps://hackerone.com/reports/2125189\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-5061\n",
+  "references": "https://gitlab.com/gitlab-org/gitlab/-/issues/425521\nhttps://hackerone.com/reports/2125189\n",
   "aliases": "CVE-2023-5061\nGHSA-v64g-f7qf-63xm\n",
   "assigner": "GitLab",
   "epss": 0.02,

advisories/2024/04/EUVD-2024-27234.json

@@ -2,12 +2,12 @@
   "id": "EUVD-2024-27234",
   "enisaUuid": "c72aca4e-f64a-3eba-8ac8-544921ccc2ae",
   "description": "An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 to 16.8.6 all versions starting from 16.9 before 16.9.4, all versions starting from 16.10 before 16.10.2. Using the autocomplete for issues references feature a crafted payload may lead to a stored XSS, allowing attackers to perform arbitrary actions on behalf of victims.",
-  "datePublished": "Apr 12, 2024, 3:30:43 AM",
-  "dateUpdated": "Apr 12, 2024, 3:30:43 AM",
+  "datePublished": "Apr 12, 2024, 12:53:21 AM",
+  "dateUpdated": "May 2, 2026, 4:05:37 AM",
   "baseScore": 8.7,
   "baseScoreVersion": "3.1",
   "baseScoreVector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
-  "references": "https://gitlab.com/gitlab-org/gitlab/-/issues/448469\nhttps://hackerone.com/reports/2404710\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-2279\n",
+  "references": "https://gitlab.com/gitlab-org/gitlab/-/issues/448469\nhttps://hackerone.com/reports/2404710\n",
   "aliases": "CVE-2024-2279\nGHSA-4g69-rp74-jj24\n",
   "assigner": "GitLab",
   "epss": 0.51,

advisories/2026/01/EUVD-2026-4405.json

@@ -1,11 +1,11 @@
 {
   "id": "EUVD-2026-4405",
   "enisaUuid": "91b8ca3c-bb55-3bd8-afa2-341741d0c16a",
-  "description": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: correctly handle io_poll_add() return value on update\n\nWhen the core of io_uring was updated to handle completions\nconsistently and with fixed return codes, the POLL_REMOVE opcode\nwith updates got slightly broken. If a POLL_ADD is pending and\nthen POLL_REMOVE is used to update the events of that request, if that\nupdate causes the POLL_ADD to now trigger, then that completion is lost\nand a CQE is never posted.\n\nAdditionally, ensure that if an update does cause an existing POLL_ADD\nto complete, that the completion value isn't always overwritten with\n-ECANCELED. For that case, whatever io_poll_add() set the value to\nshould just be retained.",
+  "description": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
   "datePublished": "Jan 23, 2026, 2:15:15 PM",
-  "dateUpdated": "Jan 23, 2026, 2:15:15 PM",
+  "dateUpdated": "May 2, 2026, 6:18:09 AM",
   "baseScore": 0.0,
-  "references": "https://nvd.nist.gov/vuln/detail/CVE-2025-71149\nhttps://git.kernel.org/stable/c/0126560370ed5217958b85657b590ad25e8b9c00\nhttps://git.kernel.org/stable/c/13a8f7b88c2d40c6b33f6216190478dda95d385f\nhttps://git.kernel.org/stable/c/84230ad2d2afbf0c44c32967e525c0ad92e26b4e\nhttps://git.kernel.org/stable/c/8b777ab48441b153502772ecfc78c107d4353f29\nhttps://git.kernel.org/stable/c/c1669c03bfbc2a9b5ebff4428eecebe734c646fe\n",
+  "references": "",
   "aliases": "GHSA-4g6c-c5fr-62mx\nCVE-2025-71149\n",
   "assigner": "Linux",
   "epss": 0.02,
@@ -38,6 +38,13 @@
       },
       "product_version": "patch: 6.19-rc1"
     },
+    {
+      "id": "546cc719-572a-3ffc-82e8-57d5c4fb86e2",
+      "product": {
+        "name": "Linux"
+      },
+      "product_version": "patch: 6.19"
+    },
     {
       "id": "5ce89223-136d-3415-ad09-f2f55f42d16c",
       "product": {

advisories/2026/02/EUVD-2026-8786.json

@@ -1,16 +1,16 @@
 {
   "id": "EUVD-2026-8786",
   "enisaUuid": "f16c948d-bbd4-3b01-b2c2-34f7026354e6",
-  "description": "c3p0 vulnerable to Remote Code Execution via unsafe deserialization of userOverridesAsString property",
-  "datePublished": "Feb 25, 2026, 6:35:23 PM",
-  "dateUpdated": "Feb 25, 2026, 6:35:23 PM",
+  "description": "c3p0, a JDBC Connection pooling library, is vulnerable to attack via maliciously crafted Java-serialized objects and `javax.naming.Reference` instances. Several c3p0 `ConnectionPoolDataSource` implementations have a property called `userOverridesAsString` which conceptually represents a `Map<String,Map<String,String>>`. Prior to v0.12.0, that property was maintained as a hex-encoded serialized object. Any attacker able to reset this property, on an existing `ConnectionPoolDataSource` or via maliciously crafted serialized objects or `javax.naming.Reference` instances could be tailored execute unexpected code on the application's `CLASSPATH`. The danger of this vulnerability was strongly magnified by vulnerabilities in c3p0's main dependency, mchange-commons-java. This library includes code that mirrors early implementations of JNDI functionality, including ungated support for remote `factoryClassLocation` values. Attackers could set c3p0's `userOverridesAsString` hex-encoded serialized objects that include objects \"indirectly serialized\" via JNDI references. Deserialization of those objects and dereferencing of the embedded `javax.naming.Reference` objects could provoke download and execution of malicious code from a remote `factoryClassLocation`. Although hazard presented by c3p0's vulnerabilites are exarcerbated by vulnerabilities in mchange-commons-java, use of Java-serialized-object hex as the format for a writable Java-Bean property, of objects that may be exposed across JNDI interfaces, represents a serious independent fragility. The `userOverridesAsString` property of c3p0 `ConnectionPoolDataSource` classes has been reimplemented to use a safe CSV-based format, rather than rely upon potentially dangerous Java object deserialization. c3p0-0.12.0+ and above depend upon mchange-commons-java 0.4.0+, which gates support for remote `factoryClassLocation` values by configuration parameters that default to restrictive values. c3p0 additionally enforces the new mchange-commons-java `com.mchange.v2.naming.nameGuardClassName` to prevent injection of unexpected, potentially remote JNDI names. There is no supported workaround for versions of c3p0 prior to 0.12.0.",
+  "datePublished": "Feb 26, 2026, 12:45:18 AM",
+  "dateUpdated": "May 2, 2026, 3:55:33 AM",
   "baseScore": 8.9,
   "baseScoreVersion": "4.0",
   "baseScoreVector": "CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
   "references": "https://github.com/swaldman/c3p0/security/advisories/GHSA-5476-xc4j-rqcv\nhttps://github.com/swaldman/c3p0/commit/e14cbd8166e423e2e9a9d6f08b2add3433492d6e\nhttps://mogwailabs.de/en/blog/2025/02/c3p0-you-little-rascal\nhttps://www.mchange.com/projects/c3p0/#configuring_security\nhttps://www.mchange.com/projects/c3p0/#security-note\n",
   "aliases": "GHSA-5476-xc4j-rqcv\nCVE-2026-27830\n",
   "assigner": "GitHub_M",
-  "epss": 0.24,
+  "epss": 0.17,
   "enisaIdProduct": [
     {
       "id": "febfa839-ea9a-37bb-a10f-27712f75609f",

advisories/2026/04/EUVD-2026-18746.json

@@ -1,14 +1,14 @@
 {
   "id": "EUVD-2026-18746",
   "enisaUuid": "d6406df5-dc3b-3a07-bc58-33478915bb81",
-  "description": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: fix multishot recv missing EOF on wakeup race\n\nWhen a socket send and shutdown() happen back-to-back, both fire\nwake-ups before the receiver's task_work has a chance to run. The first\nwake gets poll ownership (poll_refs=1), and the second bumps it to 2.\nWhen io_poll_check_events() runs, it calls io_poll_issue() which does a\nrecv that reads the data and returns IOU_RETRY. The loop then drains all\naccumulated refs (atomic_sub_return(2) -> 0) and exits, even though only\nthe first event was consumed. Since the shutdown is a persistent state\nchange, no further wakeups will happen, and the multishot recv can hang\nforever.\n\nCheck specifically for HUP in the poll loop, and ensure that another\nloop is done to check for status if more than a single poll activation\nis pending. This ensures we don't lose the shutdown event.",
-  "datePublished": "Apr 3, 2026, 6:31:22 PM",
-  "dateUpdated": "Apr 3, 2026, 6:31:22 PM",
+  "description": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
+  "datePublished": "Apr 3, 2026, 3:15:51 PM",
+  "dateUpdated": "May 2, 2026, 6:17:49 AM",
   "baseScore": 0.0,
-  "references": "https://git.kernel.org/stable/c/0f4ce79b8db7b040373fc664c8bc6c5fd74bd196\nhttps://git.kernel.org/stable/c/bf33554b6abf7e7faeadd8af1b82037ea755a6bb\nhttps://git.kernel.org/stable/c/a68ed2df72131447d131531a08fe4dfcf4fa4653\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-23473\n",
+  "references": "",
   "aliases": "GHSA-c5mp-x9x5-3g5v\nCVE-2026-23473\n",
   "assigner": "Linux",
-  "epss": 0.0,
+  "epss": 0.02,
   "enisaIdProduct": [
     {
       "id": "03529c8c-120e-3e5b-b095-cb8b65a0512e",
@@ -31,6 +31,13 @@
       },
       "product_version": "patch: 6.18.20"
     },
+    {
+      "id": "7a869b6a-6b49-3da9-ade2-80149ca4554c",
+      "product": {
+        "name": "Linux"
+      },
+      "product_version": "patch: 7.0"
+    },
     {
       "id": "7ab1bffa-9d46-34c5-a185-3eb86efc896a",
       "product": {

advisories/2026/04/EUVD-2026-24451.json

@@ -2,16 +2,31 @@
   "id": "EUVD-2026-24451",
   "enisaUuid": "1a70953a-f6bf-39ed-a1b4-1701c34cc075",
   "description": "Vulnerability in the Oracle Application Development Framework (ADF) product of Oracle Fusion Middleware (component: ADF Faces).  Supported versions that are affected are 12.2.1.4.0 and  14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Application Development Framework (ADF) executes to compromise Oracle Application Development Framework (ADF).  Successful attacks of this vulnerability can result in takeover of Oracle Application Development Framework (ADF). CVSS 3.1 Base Score 7.8 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).",
-  "datePublished": "Apr 21, 2026, 9:31:27 PM",
-  "dateUpdated": "Apr 21, 2026, 9:31:27 PM",
+  "datePublished": "Apr 21, 2026, 8:35:50 PM",
+  "dateUpdated": "May 2, 2026, 3:55:32 AM",
   "baseScore": 7.8,
   "baseScoreVersion": "3.1",
   "baseScoreVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
-  "references": "https://www.oracle.com/security-alerts/cpuapr2026.html\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-35243\n",
+  "references": "https://www.oracle.com/security-alerts/cpuapr2026.html\n",
   "aliases": "CVE-2026-35243\nGHSA-gcgv-7762-j94g\n",
   "assigner": "oracle",
-  "epss": 0.0,
-  "enisaIdProduct": [],
+  "epss": 0.03,
+  "enisaIdProduct": [
+    {
+      "id": "34444781-a01a-3642-99ee-cd73a4c21d31",
+      "product": {
+        "name": "Oracle Application Development Framework (ADF)"
+      },
+      "product_version": "14.1.2.0.0"
+    },
+    {
+      "id": "fdf41f30-42fd-326b-8493-eab2b46f7617",
+      "product": {
+        "name": "Oracle Application Development Framework (ADF)"
+      },
+      "product_version": "12.2.1.4.0"
+    }
+  ],
   "enisaIdVendor": [
     {
       "id": "a93795a5-e411-3829-a3b0-9f0aa3f1c21e",

advisories/2026/04/EUVD-2026-24639.json

@@ -3,14 +3,15 @@
   "enisaUuid": "1dc3181e-4971-3818-b455-134c98a54c14",
   "description": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: algif_aead - Revert to operating out-of-place\n\nThis mostly reverts commit 72548b093ee3 except for the copying of\nthe associated data.\n\nThere is no benefit in operating in-place in algif_aead since the\nsource and destination come from different mappings.  Get rid of\nall the complexity added for in-place operation and just copy the\nAD directly.",
   "datePublished": "Apr 22, 2026, 8:15:10 AM",
-  "dateUpdated": "Apr 30, 2026, 9:41:45 AM",
+  "dateUpdated": "May 2, 2026, 9:14:52 PM",
   "baseScore": 7.8,
   "baseScoreVersion": "3.1",
   "baseScoreVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
   "references": "https://git.kernel.org/stable/c/893d22e0135fa394db81df88697fba6032747667\nhttps://git.kernel.org/stable/c/19d43105a97be0810edbda875f2cd03f30dc130c\nhttps://git.kernel.org/stable/c/961cfa271a918ad4ae452420e7c303149002875b\nhttps://git.kernel.org/stable/c/3115af9644c342b356f3f07a4dd1c8905cd9a6fc\nhttps://git.kernel.org/stable/c/8b88d99341f139e23bdeb1027a2a3ae10d341d82\nhttps://git.kernel.org/stable/c/fafe0fa2995a0f7073c1c358d7d3145bcc9aedd8\nhttps://git.kernel.org/stable/c/ce42ee423e58dffa5ec03524054c9d8bfd4f6237\nhttps://git.kernel.org/stable/c/a664bf3d603dc3bdcf9ae47cc21e0daec706d7a5\n",
   "aliases": "GHSA-2274-3hgr-wxv6\nCVE-2026-31431\n",
   "assigner": "Linux",
-  "epss": 0.01,
+  "epss": 2.25,
+  "exploitedSince": "May 1, 2026, 12:00:00 AM",
   "enisaIdProduct": [
     {
       "id": "0fedda32-230f-38f4-8244-ef6a08f38661",

advisories/2026/04/EUVD-2026-26440.json

@@ -3,14 +3,14 @@
   "enisaUuid": "4aad9033-f703-33a5-8a7c-c02dc674c948",
   "description": "IBM i 7.6, 7.5, 7.4, 7.3, and 7.2 s vulnerable to privilege escalation caused by an invalid IBM i Web Administration GUI authorization check. \u00a0A malicious actor could cause user-controlled code to run with administrator privilege.",
   "datePublished": "Apr 30, 2026, 9:45:08 PM",
-  "dateUpdated": "Apr 30, 2026, 9:45:08 PM",
+  "dateUpdated": "May 2, 2026, 3:55:31 AM",
   "baseScore": 6.4,
   "baseScoreVersion": "3.1",
   "baseScoreVector": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H",
   "references": "https://www.ibm.com/support/pages/node/7269560\n",
   "aliases": "CVE-2026-2311\n",
   "assigner": "ibm",
-  "epss": 0.0,
+  "epss": 0.04,
   "enisaIdProduct": [
     {
       "id": "4b84bbfc-b7f1-3be2-8223-ec54717512ed",

advisories/2026/04/EUVD-2026-26448.json

@@ -3,14 +3,14 @@
   "enisaUuid": "78bd254b-7e9a-3276-b3d4-0448ec31dca2",
   "description": "IBM Langflow Desktop 1.0.0 through 1.8.4 Langflow allows an attacker to execute arbitrary commands with the privileges of the process running Langflow. This allows reading sensitive environment variables (API keys, DB credentials), modifying files, or launching further attacks on the internal network.",
   "datePublished": "Apr 30, 2026, 9:11:54 PM",
-  "dateUpdated": "Apr 30, 2026, 9:11:54 PM",
+  "dateUpdated": "May 2, 2026, 3:55:24 AM",
   "baseScore": 8.8,
   "baseScoreVersion": "3.1",
   "baseScoreVector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
   "references": "https://www.ibm.com/support/pages/node/7271092\n",
   "aliases": "CVE-2026-6543\n",
   "assigner": "ibm",
-  "epss": 0.0,
+  "epss": 0.04,
   "enisaIdProduct": [
     {
       "id": "4d051890-f6f2-3436-939e-a40a70fe2de0",