Publish Advisories

GHSA-36p3-wjmg-h94x
GHSA-6v73-fgf6-w5j7
GHSA-4x9r-j582-cgr8
GHSA-v92f-jx6p-73rx

Author: advisory-database[bot]

advisories/github-reviewed/2022/03/GHSA-36p3-wjmg-h94x/GHSA-36p3-wjmg-h94x.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-36p3-wjmg-h94x",
-  "modified": "2025-01-29T18:38:36Z",
+  "modified": "2025-10-22T19:18:34Z",
   "published": "2022-03-31T18:30:50Z",
   "aliases": [
     "CVE-2022-22965"
@@ -11,7 +11,7 @@
   "severity": [
     {
       "type": "CVSS_V3",
-      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H"
     }
   ],
   "affected": [
@@ -255,6 +255,10 @@
       "type": "WEB",
       "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-java-spring-rce-Zx9GUc67"
     },
+    {
+      "type": "WEB",
+      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-22965"
+    },
     {
       "type": "WEB",
       "url": "https://www.kb.cert.org/vuls/id/970766"

advisories/github-reviewed/2022/04/GHSA-6v73-fgf6-w5j7/GHSA-6v73-fgf6-w5j7.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-6v73-fgf6-w5j7",
-  "modified": "2022-08-11T21:35:54Z",
+  "modified": "2025-10-22T19:18:02Z",
   "published": "2022-04-03T00:00:59Z",
   "aliases": [
     "CVE-2022-22963"
@@ -11,7 +11,7 @@
   "severity": [
     {
       "type": "CVSS_V3",
-      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H"
     }
   ],
   "affected": [
@@ -75,6 +75,10 @@
       "type": "WEB",
       "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-java-spring-scf-rce-DQrHhJxH"
     },
+    {
+      "type": "WEB",
+      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-22963"
+    },
     {
       "type": "WEB",
       "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"

advisories/github-reviewed/2022/07/GHSA-4x9r-j582-cgr8/GHSA-4x9r-j582-cgr8.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-4x9r-j582-cgr8",
-  "modified": "2025-07-30T11:44:29Z",
+  "modified": "2025-10-22T19:19:14Z",
   "published": "2022-07-19T00:00:29Z",
   "aliases": [
     "CVE-2022-33891"
@@ -11,11 +11,11 @@
   "severity": [
     {
       "type": "CVSS_V3",
-      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:H"
     },
     {
       "type": "CVSS_V4",
-      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N"
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:A"
     }
   ],
   "affected": [
@@ -117,6 +117,10 @@
       "type": "WEB",
       "url": "https://packetstormsecurity.com/files/168309/Apache-Spark-Unauthenticated-Command-Injection.html"
     },
+    {
+      "type": "WEB",
+      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-33891"
+    },
     {
       "type": "WEB",
       "url": "https://www.openwall.com/lists/oss-security/2023/05/02/1"

advisories/github-reviewed/2023/09/GHSA-v92f-jx6p-73rx/GHSA-v92f-jx6p-73rx.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-v92f-jx6p-73rx",
-  "modified": "2025-02-18T22:39:30Z",
+  "modified": "2025-10-22T19:17:43Z",
   "published": "2023-09-19T20:35:16Z",
   "aliases": [
     "CVE-2022-24816"
@@ -11,7 +11,7 @@
   "severity": [
     {
       "type": "CVSS_V3",
-      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H"
     }
   ],
   "affected": [
@@ -70,6 +70,10 @@
     {
       "type": "PACKAGE",
       "url": "https://github.com/geosolutions-it/jai-ext"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-24816"
     }
   ],
   "database_specific": {