Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2023/10/GHSA-398q-w43p-26hx/GHSA-398q-w43p-26hx.json

@@ -1,12 +1,12 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-398q-w43p-26hx",
-  "modified": "2024-04-04T08:29:34Z",
+  "modified": "2025-11-28T18:30:16Z",
   "published": "2023-10-10T15:30:51Z",
   "aliases": [
     "CVE-2023-30805"
   ],
-  "details": "The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary commands by sending a crafted HTTP POST request to the /LogInOut.php endpoint. This is due to mishandling of shell meta-characters in the \"un\" parameter.\n\n\n",
+  "details": "The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary commands by sending a crafted HTTP POST request to the /LogInOut.php endpoint. This is due to mishandling of shell meta-characters in the \"un\" parameter.",
   "severity": [
     {
       "type": "CVSS_V3",

advisories/unreviewed/2023/10/GHSA-59w3-fc6m-5c93/GHSA-59w3-fc6m-5c93.json

@@ -1,12 +1,12 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-59w3-fc6m-5c93",
-  "modified": "2024-04-04T08:29:35Z",
+  "modified": "2025-11-28T18:30:16Z",
   "published": "2023-10-10T15:30:51Z",
   "aliases": [
     "CVE-2023-30804"
   ],
-  "details": "The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authenticated file disclosure vulnerability. A remote and authenticated attacker can read arbitrary system files using the svpn_html/loadfile.php endpoint. This issue is exploitable by a remote and unauthenticated attacker when paired with CVE-2023-30803.\n\n\n",
+  "details": "The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authenticated file disclosure vulnerability. A remote and authenticated attacker can read arbitrary system files using the svpn_html/loadfile.php endpoint. This issue is exploitable by a remote and unauthenticated attacker when paired with CVE-2023-30803.",
   "severity": [
     {
       "type": "CVSS_V3",

advisories/unreviewed/2023/10/GHSA-9j86-wqqw-j67h/GHSA-9j86-wqqw-j67h.json

@@ -1,12 +1,12 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-9j86-wqqw-j67h",
-  "modified": "2024-04-04T08:29:25Z",
+  "modified": "2025-11-28T18:30:16Z",
   "published": "2023-10-10T15:30:51Z",
   "aliases": [
     "CVE-2023-30802"
   ],
-  "details": "The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code disclosure vulnerability. A remote and unauthenticated attacker can obtain PHP source code by sending an HTTP request with an invalid Content-Length field.\n\n\n",
+  "details": "The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code disclosure vulnerability. A remote and unauthenticated attacker can obtain PHP source code by sending an HTTP request with an invalid Content-Length field.",
   "severity": [
     {
       "type": "CVSS_V3",

advisories/unreviewed/2023/10/GHSA-rch9-592x-rrw8/GHSA-rch9-592x-rrw8.json

@@ -1,12 +1,12 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-rch9-592x-rrw8",
-  "modified": "2024-04-04T08:29:27Z",
+  "modified": "2025-11-28T18:30:16Z",
   "published": "2023-10-10T15:30:51Z",
   "aliases": [
     "CVE-2023-30803"
   ],
-  "details": "The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can bypass authentication and access administrative functionality by sending HTTP requests using a crafted Y-forwarded-for header.\n\n\n",
+  "details": "The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can bypass authentication and access administrative functionality by sending HTTP requests using a crafted Y-forwarded-for header.",
   "severity": [
     {
       "type": "CVSS_V3",

advisories/unreviewed/2025/10/GHSA-3r6w-f62x-hc2h/GHSA-3r6w-f62x-hc2h.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-3r6w-f62x-hc2h",
-  "modified": "2025-10-29T21:30:33Z",
+  "modified": "2025-11-28T18:30:21Z",
   "published": "2025-10-29T21:30:33Z",
   "aliases": [
     "CVE-2018-25120"
   ],
   "details": "D-Link DNS-343 ShareCenter devices running firmware versions up to and including 1.05 contain a command injection vulnerability in the Mail Test functionality. The web maintenance script posts to the internal goForm endpoint '/goform/Mail_Test' and uses several form parameters directly in a call to a system email utility without proper input validation. An unauthenticated remote attacker can supply crafted form data that injects shell commands, resulting in execution as root on the device. NOTE: The DNS-343 product line has been declared end-of-life.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/11/GHSA-24q7-5rc2-3hrp/GHSA-24q7-5rc2-3hrp.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-24q7-5rc2-3hrp",
-  "modified": "2025-11-28T15:30:30Z",
+  "modified": "2025-11-28T18:30:23Z",
   "published": "2025-11-28T15:30:30Z",
   "aliases": [
     "CVE-2025-59790"
   ],
   "details": "Improper Privilege Management vulnerability in Apache Kvrocks.\n\nThis issue affects Apache Kvrocks: from v2.9.0 through v2.13.0.\n\nUsers are recommended to upgrade to version 2.14.0, which fixes the issue.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -17,13 +22,17 @@
     {
       "type": "WEB",
       "url": "https://lists.apache.org/thread/dlbz5hmm4ts3npzqnvhofxmqg9w9zt0o"
+    },
+    {
+      "type": "WEB",
+      "url": "http://www.openwall.com/lists/oss-security/2025/11/28/2"
     }
   ],
   "database_specific": {
     "cwe_ids": [
       "CWE-269"
     ],
-    "severity": null,
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-11-28T15:16:02Z"

advisories/unreviewed/2025/11/GHSA-2949-r76x-4vc4/GHSA-2949-r76x-4vc4.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2949-r76x-4vc4",
-  "modified": "2025-11-24T18:31:11Z",
+  "modified": "2025-11-28T18:30:22Z",
   "published": "2025-11-24T15:30:29Z",
   "aliases": [
     "CVE-2025-12969"
@@ -22,6 +22,14 @@
     {
       "type": "WEB",
       "url": "https://fluentbit.io/announcements/v4.1.0"
+    },
+    {
+      "type": "WEB",
+      "url": "https://fluentbit.io/blog/2025/10/28/security-vulnerabilities-addressed-in-fluent-bit-v4.1-and-backported-to-v4.0"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.oligo.security/blog/critical-vulnerabilities-in-fluent-bit-expose-cloud-environments-to-remote-takeover"
     }
   ],
   "database_specific": {

advisories/unreviewed/2025/11/GHSA-2mm6-624x-fqrr/GHSA-2mm6-624x-fqrr.json

@@ -25,7 +25,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-116"
+    ],
     "severity": "LOW",
     "github_reviewed": false,
     "github_reviewed_at": null,

advisories/unreviewed/2025/11/GHSA-458g-vvmf-jfgq/GHSA-458g-vvmf-jfgq.json

@@ -0,0 +1,31 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-458g-vvmf-jfgq",
+  "modified": "2025-11-28T18:30:23Z",
+  "published": "2025-11-28T18:30:23Z",
+  "aliases": [
+    "CVE-2025-13683"
+  ],
+  "details": "Exposure of credentials in unintended requests in Devolutions Server, Remote Desktop Manager on Windows.This issue affects Devolutions Server: through 2025.3.8.0; Remote Desktop Manager: through 2025.3.23.0.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13683"
+    },
+    {
+      "type": "WEB",
+      "url": "https://devolutions.net/security/advisories/DEVO-2025-0017"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-200"
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-28T17:16:08Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-4j92-6j9c-j5g7/GHSA-4j92-6j9c-j5g7.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-4j92-6j9c-j5g7",
-  "modified": "2025-11-06T21:31:31Z",
+  "modified": "2025-11-28T18:30:22Z",
   "published": "2025-11-06T21:31:31Z",
   "aliases": [
     "CVE-2025-34247"
   ],
   "details": "Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in NetworksController.addNetworkAction() that allows an authenticated low-privileged observer user to inject SQL via datatable search parameters, leading to disclosure of database information.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"