Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2025/05/GHSA-9v5v-3jhc-pffj/GHSA-9v5v-3jhc-pffj.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-9v5v-3jhc-pffj",
-  "modified": "2025-05-11T03:30:28Z",
+  "modified": "2025-11-10T15:31:00Z",
   "published": "2025-05-11T03:30:28Z",
   "aliases": [
     "CVE-2025-4528"

advisories/unreviewed/2025/05/GHSA-jwx6-c8mf-mg73/GHSA-jwx6-c8mf-mg73.json

@@ -46,7 +46,8 @@
   ],
   "database_specific": {
     "cwe_ids": [
-      "CWE-74"
+      "CWE-74",
+      "CWE-89"
     ],
     "severity": "MODERATE",
     "github_reviewed": false,

advisories/unreviewed/2025/06/GHSA-2w2m-wpx9-m69r/GHSA-2w2m-wpx9-m69r.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2w2m-wpx9-m69r",
-  "modified": "2025-11-03T21:34:02Z",
+  "modified": "2025-11-10T15:31:02Z",
   "published": "2025-06-17T15:31:09Z",
   "aliases": [
     "CVE-2025-49175"
@@ -21,127 +21,135 @@
     },
     {
       "type": "WEB",
-      "url": "https://lists.debian.org/debian-lts-announce/2025/06/msg00028.html"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10376"
     },
     {
       "type": "WEB",
-      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369947"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10377"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/security/cve/CVE-2025-49175"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10378"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:9964"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10381"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:9392"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10410"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:9306"
+      "url": "https://access.redhat.com/errata/RHSA-2025:9303"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2025:9304"
     },
     {
       "type": "WEB",
       "url": "https://access.redhat.com/errata/RHSA-2025:9305"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:9304"
+      "url": "https://access.redhat.com/errata/RHSA-2025:9306"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:9303"
+      "url": "https://access.redhat.com/errata/RHSA-2025:9392"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10410"
+      "url": "https://access.redhat.com/errata/RHSA-2025:9964"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10381"
+      "url": "https://access.redhat.com/security/cve/CVE-2025-49175"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10378"
+      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369947"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10377"
+      "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/0885e0b26225c90534642fe911632ec0779eebee"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10376"
+      "url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/2024"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10375"
+      "url": "https://lists.debian.org/debian-lts-announce/2025/06/msg00028.html"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10374"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10258"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10370"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10342"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10360"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10343"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10356"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10344"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10355"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10346"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10352"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10347"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10351"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10348"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2025:10349"
     },
     {
       "type": "WEB",
       "url": "https://access.redhat.com/errata/RHSA-2025:10350"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10349"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10351"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10348"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10352"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10347"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10355"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10346"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10356"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10344"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10360"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10343"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10370"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10342"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10374"
     },
     {
       "type": "WEB",
-      "url": "https://access.redhat.com/errata/RHSA-2025:10258"
+      "url": "https://access.redhat.com/errata/RHSA-2025:10375"
     }
   ],
   "database_specific": {

advisories/unreviewed/2025/10/GHSA-2pxm-j656-vm6g/GHSA-2pxm-j656-vm6g.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2pxm-j656-vm6g",
-  "modified": "2025-10-31T18:31:14Z",
+  "modified": "2025-11-10T15:31:03Z",
   "published": "2025-10-31T18:31:14Z",
   "aliases": [
     "CVE-2025-12552"
   ],
   "details": "Insufficient Password Policy.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/10/GHSA-44vv-qwrx-c34r/GHSA-44vv-qwrx-c34r.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-44vv-qwrx-c34r",
-  "modified": "2025-10-30T18:31:08Z",
+  "modified": "2025-11-10T15:31:03Z",
   "published": "2025-10-30T18:31:08Z",
   "aliases": [
     "CVE-2025-12517"
   ],
   "details": "Credits Page not Matching Versions in Use in the FirmwareThis issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/10/GHSA-5p2h-wm97-rcm6/GHSA-5p2h-wm97-rcm6.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-5p2h-wm97-rcm6",
-  "modified": "2025-10-27T18:31:13Z",
+  "modified": "2025-11-10T15:31:03Z",
   "published": "2025-10-27T18:31:13Z",
   "aliases": [
     "CVE-2025-12364"
   ],
   "details": "Weak Password Policy.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/10/GHSA-5pqq-993m-xpc4/GHSA-5pqq-993m-xpc4.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-5pqq-993m-xpc4",
-  "modified": "2025-10-30T18:31:08Z",
+  "modified": "2025-11-10T15:31:03Z",
   "published": "2025-10-30T18:31:08Z",
   "aliases": [
     "CVE-2025-12516"
   ],
   "details": "Lack of Graceful Error Handling - HTTP 5xx ErrorThis issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/10/GHSA-5pvj-27wv-7mqc/GHSA-5pvj-27wv-7mqc.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-5pvj-27wv-7mqc",
-  "modified": "2025-10-26T18:30:16Z",
+  "modified": "2025-11-10T15:31:03Z",
   "published": "2025-10-26T18:30:16Z",
   "aliases": [
     "CVE-2025-12285"
   ],
   "details": "Missing Initial Password Change.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
@@ -26,7 +30,8 @@
   ],
   "database_specific": {
     "cwe_ids": [
-      "CWE-20"
+      "CWE-20",
+      "CWE-521"
     ],
     "severity": "CRITICAL",
     "github_reviewed": false,

advisories/unreviewed/2025/10/GHSA-6v8w-33wg-8gw2/GHSA-6v8w-33wg-8gw2.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-6v8w-33wg-8gw2",
-  "modified": "2025-10-25T18:30:11Z",
+  "modified": "2025-11-10T15:31:02Z",
   "published": "2025-10-25T18:30:11Z",
   "aliases": [
     "CVE-2025-12216"
   ],
   "details": "Malicious / Malformed App can be Installed but not Uninstalled/may lead to unavailability.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/10/GHSA-72pv-qvjj-jq58/GHSA-72pv-qvjj-jq58.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-72pv-qvjj-jq58",
-  "modified": "2025-10-26T18:30:16Z",
+  "modified": "2025-11-10T15:31:03Z",
   "published": "2025-10-26T18:30:16Z",
   "aliases": [
     "CVE-2025-12278"
   ],
   "details": "Logout Functionality not Working.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
@@ -26,7 +30,8 @@
   ],
   "database_specific": {
     "cwe_ids": [
-      "CWE-20"
+      "CWE-20",
+      "CWE-613"
     ],
     "severity": "MODERATE",
     "github_reviewed": false,