Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2025/03/GHSA-8wc3-h23m-8ggr/GHSA-8wc3-h23m-8ggr.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-8wc3-h23m-8ggr",
-  "modified": "2025-03-18T12:30:48Z",
+  "modified": "2025-10-21T15:30:53Z",
   "published": "2025-03-18T12:30:48Z",
   "aliases": [
     "CVE-2025-2493"
   ],
   "details": "Path Traversal vulnerability in Softdial Contact Center of Sytel Ltd. This vulnerability allows an attacker to manipulate the ‘id’ parameter of the ‘/softdial/scheduler/load.php’ endpoint to navigate beyond the intended directory. This can allow unauthorised access to sensitive files outside the expected scope, posing a security risk.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/03/GHSA-93mj-wrmx-26c6/GHSA-93mj-wrmx-26c6.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-93mj-wrmx-26c6",
-  "modified": "2025-03-18T12:30:48Z",
+  "modified": "2025-10-21T15:30:54Z",
   "published": "2025-03-18T12:30:48Z",
   "aliases": [
     "CVE-2025-2494"
   ],
   "details": "Unrestricted file upload to Softdial Contact Center of Sytel Ltd. This vulnerability could allow an attacker to upload files to the server via the ‘/softdial/phpconsole/upload.php’ endpoint, which is protected by basic HTTP authentication. The files are uploaded to a directory exposed by the web application, which could result in code execution, giving the attacker full control over the server.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/03/GHSA-cx7h-mwrp-wffc/GHSA-cx7h-mwrp-wffc.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-cx7h-mwrp-wffc",
-  "modified": "2025-03-18T12:30:48Z",
+  "modified": "2025-10-21T15:30:54Z",
   "published": "2025-03-18T12:30:48Z",
   "aliases": [
     "CVE-2025-2495"
   ],
   "details": "Stored Cross-Site Scripting (XSS) in Softdial Contact Center of Sytel Ltd. This vulnerability allows an attacker to upload XML files to the server with JavaScript code injected via the ‘/softdial/scheduler/save.php’ resource. The injected code will execute when the uploaded file is loaded via the ‘/softdial/scheduler/load.php’ resource and can redirect the victim to malicious sites or steal their login information to spoof their identity.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/05/GHSA-hg9g-m8wg-jv2x/GHSA-hg9g-m8wg-jv2x.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-hg9g-m8wg-jv2x",
-  "modified": "2025-05-14T18:30:51Z",
+  "modified": "2025-10-21T15:30:55Z",
   "published": "2025-05-14T18:30:51Z",
   "aliases": [
     "CVE-2025-4638"
   ],
   "details": "A vulnerability exists in the inftrees.c component of the zlib library, which is bundled within the PointCloudLibrary (PCL). This issue may allow context-dependent attackers to cause undefined behavior by exploiting improper pointer arithmetic.\n\nSince version 1.14.0, PCL by default uses a zlib installation from the system, unless the user sets WITH_SYSTEM_ZLIB=FALSE. So this potential vulnerability is only relevant if the PCL version is older than 1.14.0 or the user specifically requests to not use the system zlib.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:L/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:D/RE:M/U:Amber"

advisories/unreviewed/2025/08/GHSA-45m9-mh54-jw4w/GHSA-45m9-mh54-jw4w.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-45m9-mh54-jw4w",
-  "modified": "2025-09-15T18:31:06Z",
+  "modified": "2025-10-21T15:30:55Z",
   "published": "2025-08-12T18:31:30Z",
   "aliases": [
     "CVE-2025-50154"
@@ -19,6 +19,14 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-50154"
     },
+    {
+      "type": "WEB",
+      "url": "https://cymulate.com/blog/zero-click-one-ntlm-microsoft-security-patch-bypass-cve-2025-50154"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/rubenformation/CVE-2025-50154"
+    },
     {
       "type": "WEB",
       "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50154"

advisories/unreviewed/2025/10/GHSA-547f-m8pf-r989/GHSA-547f-m8pf-r989.json

@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-547f-m8pf-r989",
+  "modified": "2025-10-21T15:30:58Z",
+  "published": "2025-10-21T15:30:58Z",
+  "aliases": [
+    "CVE-2025-11624"
+  ],
+  "details": "Potential stack buffer overwrite on the SFTP server side when receiving a malicious packet that has a handle size larger than the system handle or file descriptor size, but smaller than max handle size allowed.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:L/VI:L/VA:L/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-11624"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/wolfSSL/wolfssh/pull/834"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-787"
+    ],
+    "severity": "LOW",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-10-21T14:15:46Z"
+  }
+}

advisories/unreviewed/2025/10/GHSA-6237-9hpw-gcm6/GHSA-6237-9hpw-gcm6.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-6237-9hpw-gcm6",
-  "modified": "2025-10-21T00:30:26Z",
+  "modified": "2025-10-21T15:30:56Z",
   "published": "2025-10-21T00:30:26Z",
   "aliases": [
     "CVE-2025-54764"
   ],
   "details": "Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -24,8 +29,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-208"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-10-20T22:15:37Z"

advisories/unreviewed/2025/10/GHSA-66pm-g8mp-38vm/GHSA-66pm-g8mp-38vm.json

@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-66pm-g8mp-38vm",
+  "modified": "2025-10-21T15:30:57Z",
+  "published": "2025-10-21T15:30:57Z",
+  "aliases": [
+    "CVE-2025-10020"
+  ],
+  "details": "Zohocorp ManageEngine ADManager Plus version before 8024 are vulnerable to authenticated command injection vulnerability in the Custom Script component.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-10020"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.manageengine.com/products/ad-manager/admanager-kb/cve-2025-10020.html"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-77"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-10-21T13:15:35Z"
+  }
+}

advisories/unreviewed/2025/10/GHSA-7fg2-9v2j-j792/GHSA-7fg2-9v2j-j792.json

@@ -0,0 +1,29 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-7fg2-9v2j-j792",
+  "modified": "2025-10-21T15:31:01Z",
+  "published": "2025-10-21T15:31:01Z",
+  "aliases": [
+    "CVE-2025-60933"
+  ],
+  "details": "Multiple stored cross-site scripting (XSS) vulnerabilities in the Future Goals function of HR Performance Solutions Performance Pro v3.19.17 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Goal Name, Goal Notes, Action Step Name, Action Step Description, Note Name, and Goal Description parameters. The patched version is PP-Release-6.3.2.0.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-60933"
+    },
+    {
+      "type": "WEB",
+      "url": "https://docs.offsecguy.com/cve/hr-performance-solutions/vulnerability/reflected-xss-future-goals"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-10-21T15:15:39Z"
+  }
+}

advisories/unreviewed/2025/10/GHSA-7w2m-w84v-g952/GHSA-7w2m-w84v-g952.json

@@ -0,0 +1,52 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-7w2m-w84v-g952",
+  "modified": "2025-10-21T15:30:59Z",
+  "published": "2025-10-21T15:30:59Z",
+  "aliases": [
+    "CVE-2020-36855"
+  ],
+  "details": "A security vulnerability has been detected in DCMTK up to 3.6.5. The affected element is the function parseQuota of the component dcmqrscp. The manipulation of the argument StorageQuota leads to stack-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed publicly and may be used. Upgrading to version 3.6.6 is sufficient to fix this issue. The identifier of the patch is 0fef9f02e. It is recommended to upgrade the affected component.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-36855"
+    },
+    {
+      "type": "WEB",
+      "url": "https://shimo.im/docs/rp3OMVMDPKtjn0km"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.329028"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.329028"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.673137"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-119"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-10-21T15:15:36Z"
+  }
+}