Publish GHSA-rpw6-9xfx-jvcx

Author: advisory-database[bot]

advisories/github-reviewed/2021/04/GHSA-rpw6-9xfx-jvcx/GHSA-rpw6-9xfx-jvcx.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-rpw6-9xfx-jvcx",
-  "modified": "2023-07-05T23:20:00Z",
+  "modified": "2025-10-22T18:00:26Z",
   "published": "2021-04-22T16:20:36Z",
   "aliases": [
     "CVE-2020-36193"
@@ -11,7 +11,7 @@
   "severity": [
     {
       "type": "CVSS_V3",
-      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:H"
     }
   ],
   "affected": [
@@ -53,52 +53,73 @@
     },
     {
       "type": "WEB",
-      "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/pear/archive_tar/CVE-2020-36193.yaml"
+      "url": "https://www.drupal.org/sa-core-2021-001"
     },
     {
-      "type": "PACKAGE",
-      "url": "https://github.com/pear/Archive_Tar"
+      "type": "WEB",
+      "url": "https://www.debian.org/security/2021/dsa-4894"
     },
     {
       "type": "WEB",
-      "url": "https://lists.debian.org/debian-lts-announce/2021/01/msg00018.html"
+      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-36193"
     },
     {
       "type": "WEB",
-      "url": "https://lists.debian.org/debian-lts-announce/2021/04/msg00007.html"
+      "url": "https://security.gentoo.org/glsa/202101-23"
     },
     {
       "type": "WEB",
-      "url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/42GPGVVFTLJYAKRI75IVB5R45NYQGEUR"
+      "url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/YKD5WEFA4WT6AVTMRAYBNXZNLWZHM7FH"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/VJQQYDAOWHD6RDITDRPHFW7WY6BS3V5N"
     },
     {
       "type": "WEB",
       "url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/FOZNK4FIIV7FSFCJNNFWMJZTTV7NFJV2"
     },
     {
       "type": "WEB",
-      "url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/VJQQYDAOWHD6RDITDRPHFW7WY6BS3V5N"
+      "url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/42GPGVVFTLJYAKRI75IVB5R45NYQGEUR"
     },
     {
       "type": "WEB",
-      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YKD5WEFA4WT6AVTMRAYBNXZNLWZHM7FH"
+      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YKD5WEFA4WT6AVTMRAYBNXZNLWZHM7FH"
     },
     {
       "type": "WEB",
-      "url": "https://security.gentoo.org/glsa/202101-23"
+      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VJQQYDAOWHD6RDITDRPHFW7WY6BS3V5N"
     },
     {
       "type": "WEB",
-      "url": "https://www.debian.org/security/2021/dsa-4894"
+      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FOZNK4FIIV7FSFCJNNFWMJZTTV7NFJV2"
     },
     {
       "type": "WEB",
-      "url": "https://www.drupal.org/sa-core-2021-001"
+      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/42GPGVVFTLJYAKRI75IVB5R45NYQGEUR"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2021/04/msg00007.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2021/01/msg00018.html"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/pear/Archive_Tar"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/pear/archive_tar/CVE-2020-36193.yaml"
     }
   ],
   "database_specific": {
     "cwe_ids": [
-      "CWE-22"
+      "CWE-22",
+      "CWE-59"
     ],
     "severity": "HIGH",
     "github_reviewed": true,