Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2022/05/GHSA-p53v-96v3-p5jg/GHSA-p53v-96v3-p5jg.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-p53v-96v3-p5jg",
-  "modified": "2022-05-24T19:13:01Z",
+  "modified": "2025-11-04T03:30:23Z",
   "published": "2022-05-24T19:13:01Z",
   "aliases": [
     "CVE-2021-40524"
   ],
   "details": "In Pure-FTPd 1.0.49, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbounded size, which may lead to denial of service or a server hang. This occurs because a certain greater-than-zero test does not anticipate an initial -1 value.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -25,6 +30,10 @@
     {
       "type": "WEB",
       "url": "https://github.com/jedisct1/pure-ftpd/compare/1.0.49...1.0.50"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/11/msg00003.html"
     }
   ],
   "database_specific": {

advisories/unreviewed/2025/09/GHSA-4p3m-97rg-vh4c/GHSA-4p3m-97rg-vh4c.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-4p3m-97rg-vh4c",
-  "modified": "2025-11-03T21:34:29Z",
+  "modified": "2025-11-04T03:30:25Z",
   "published": "2025-09-16T00:30:23Z",
   "aliases": [
     "CVE-2025-43292"
@@ -27,6 +27,10 @@
       "type": "WEB",
       "url": "https://support.apple.com/en-us/125111"
     },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/125635"
+    },
     {
       "type": "WEB",
       "url": "http://seclists.org/fulldisclosure/2025/Sep/53"

advisories/unreviewed/2025/09/GHSA-cv4f-xcxv-v2cp/GHSA-cv4f-xcxv-v2cp.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-cv4f-xcxv-v2cp",
-  "modified": "2025-11-03T21:34:33Z",
+  "modified": "2025-11-04T03:30:26Z",
   "published": "2025-09-16T00:30:24Z",
   "aliases": [
     "CVE-2025-43337"
@@ -23,6 +23,10 @@
       "type": "WEB",
       "url": "https://support.apple.com/en-us/125110"
     },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/125635"
+    },
     {
       "type": "WEB",
       "url": "http://seclists.org/fulldisclosure/2025/Sep/53"

advisories/unreviewed/2025/09/GHSA-f2ww-fv77-5mcx/GHSA-f2ww-fv77-5mcx.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-f2ww-fv77-5mcx",
-  "modified": "2025-11-03T21:34:34Z",
+  "modified": "2025-11-04T03:30:26Z",
   "published": "2025-09-16T00:30:25Z",
   "aliases": [
     "CVE-2025-43372"
@@ -39,6 +39,10 @@
       "type": "WEB",
       "url": "https://support.apple.com/en-us/125116"
     },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/125636"
+    },
     {
       "type": "WEB",
       "url": "http://seclists.org/fulldisclosure/2025/Sep/49"

advisories/unreviewed/2025/09/GHSA-g79w-6xp3-x2mw/GHSA-g79w-6xp3-x2mw.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-g79w-6xp3-x2mw",
-  "modified": "2025-11-03T21:34:29Z",
+  "modified": "2025-11-04T03:30:25Z",
   "published": "2025-09-16T00:30:23Z",
   "aliases": [
     "CVE-2025-43294"
@@ -23,6 +23,18 @@
       "type": "WEB",
       "url": "https://support.apple.com/en-us/125110"
     },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/125632"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/125637"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/125639"
+    },
     {
       "type": "WEB",
       "url": "http://seclists.org/fulldisclosure/2025/Sep/53"

advisories/unreviewed/2025/09/GHSA-pxpx-frfv-j88x/GHSA-pxpx-frfv-j88x.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-pxpx-frfv-j88x",
-  "modified": "2025-11-03T21:34:36Z",
+  "modified": "2025-11-04T03:30:26Z",
   "published": "2025-09-29T18:33:13Z",
   "aliases": [
     "CVE-2025-43400"
@@ -43,6 +43,14 @@
       "type": "WEB",
       "url": "https://support.apple.com/en-us/125338"
     },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/125637"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/125639"
+    },
     {
       "type": "WEB",
       "url": "http://seclists.org/fulldisclosure/2025/Sep/78"

advisories/unreviewed/2025/10/GHSA-8xx6-q3x4-3j7v/GHSA-8xx6-q3x4-3j7v.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-8xx6-q3x4-3j7v",
-  "modified": "2025-10-21T21:33:39Z",
+  "modified": "2025-11-04T03:30:26Z",
   "published": "2025-10-21T18:30:34Z",
   "aliases": [
     "CVE-2025-60751"
@@ -26,6 +26,10 @@
     {
       "type": "WEB",
       "url": "https://github.com/zer0matt/CVE-2025-60751"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/11/msg00004.html"
     }
   ],
   "database_specific": {

advisories/unreviewed/2025/10/GHSA-wv7v-cchq-8fjh/GHSA-wv7v-cchq-8fjh.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-wv7v-cchq-8fjh",
-  "modified": "2025-10-29T21:30:33Z",
+  "modified": "2025-11-04T03:30:26Z",
   "published": "2025-10-29T21:30:33Z",
   "aliases": [
     "CVE-2025-10934"
@@ -23,6 +23,10 @@
       "type": "WEB",
       "url": "https://gitlab.gnome.org/GNOME/gimp/-/commit/5c3e2122d53869599d77ef0f1bdece117b24fd7c"
     },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/11/msg00005.html"
+    },
     {
       "type": "WEB",
       "url": "https://www.zerodayinitiative.com/advisories/ZDI-25-978"

advisories/unreviewed/2025/11/GHSA-24x5-c472-vx8w/GHSA-24x5-c472-vx8w.json

@@ -0,0 +1,33 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-24x5-c472-vx8w",
+  "modified": "2025-11-04T03:30:27Z",
+  "published": "2025-11-04T03:30:27Z",
+  "aliases": [
+    "CVE-2025-43401"
+  ],
+  "details": "A denial-of-service issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.8.2, macOS Sequoia 15.7.2. A remote attacker may be able to cause a denial-of-service.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43401"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/125635"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/125636"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-04T02:15:46Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-2gfx-6fr5-5qv6/GHSA-2gfx-6fr5-5qv6.json

@@ -0,0 +1,29 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-2gfx-6fr5-5qv6",
+  "modified": "2025-11-04T03:30:27Z",
+  "published": "2025-11-04T03:30:27Z",
+  "aliases": [
+    "CVE-2025-43360"
+  ],
+  "details": "The issue was addressed with improved UI. This issue is fixed in iOS 26 and iPadOS 26. Password fields may be unintentionally revealed.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43360"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/125108"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-04T02:15:43Z"
+  }
+}