Publish Advisories

GHSA-2488-c4gj-6g77
GHSA-3vrr-x6c8-rfm2
GHSA-475m-mm7r-j479
GHSA-47f7-v3jr-88mg
GHSA-9g2h-fh68-3p2v
GHSA-f7m4-f638-5p2j
GHSA-fc8g-5x2c-p65r
GHSA-frq8-587v-8qcr
GHSA-gc5g-jhc5-xh8h
GHSA-hcr2-46j7-rjhp
GHSA-m9g9-rxjq-3p3h
GHSA-x5xq-cwhv-jgjh

Author: advisory-database[bot]

advisories/unreviewed/2025/12/GHSA-2488-c4gj-6g77/GHSA-2488-c4gj-6g77.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2488-c4gj-6g77",
-  "modified": "2025-12-17T00:31:18Z",
+  "modified": "2025-12-24T18:30:17Z",
   "published": "2025-12-17T00:31:18Z",
   "aliases": [
     "CVE-2025-34288"
   ],
   "details": "Nagios XI versions prior to 2026R1.1 are vulnerable to local privilege escalation due to an unsafe interaction between sudo permissions and application file permissions. A user‑accessible maintenance script may be executed as root via sudo and includes an application file that is writable by a lower‑privileged user. A local attacker with access to the application account can modify this file to introduce malicious code, which is then executed with elevated privileges when the script is run. Successful exploitation results in arbitrary code execution as the root user.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/12/GHSA-3vrr-x6c8-rfm2/GHSA-3vrr-x6c8-rfm2.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-3vrr-x6c8-rfm2",
+  "modified": "2025-12-24T18:30:22Z",
+  "published": "2025-12-24T18:30:22Z",
+  "aliases": [
+    "CVE-2025-43876"
+  ],
+  "details": "Under certain circumstances a successful exploitation could result in access to the device.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43876"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-01"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.johnsoncontrols.com/trust-center/cybersecurity/security-advisories"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-78"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-24T16:15:48Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-475m-mm7r-j479/GHSA-475m-mm7r-j479.json

@@ -0,0 +1,57 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-475m-mm7r-j479",
+  "modified": "2025-12-24T18:30:22Z",
+  "published": "2025-12-24T18:30:22Z",
+  "aliases": [
+    "CVE-2025-68750"
+  ],
+  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: potential integer overflow in usbg_make_tpg()\n\nThe variable tpgt in usbg_make_tpg() is defined as unsigned long and is\nassigned to tpgt->tport_tpgt, which is defined as u16. This may cause an\ninteger overflow when tpgt is greater than USHRT_MAX (65535). I\nhaven't tried to trigger it myself, but it is possible to trigger it\nby calling usbg_make_tpg() with a large value for tpgt.\n\nI modified the type of tpgt to match tpgt->tport_tpgt and adjusted the\nrelevant code accordingly.\n\nThis patch is similar to commit 59c816c1f24d (\"vhost/scsi: potential\nmemory corruption\").",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68750"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/0861b9cb2ff519b7c5a3b1dd52a343e18c4efb24"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/153874010354d050f62f8ae25cbb960c17633dc5"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/358d5ba08f1609c34a054aed88c431844d09705a"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/603a83e5fee38a950bfcfb2f36449311fa00a474"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/620a5e1e84a3a7004270703a118d33eeb1c0f368"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/6722e080b5b39ab7471386c73d0c1b39572f943c"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/6f77e344515b5258edb3988188311464209b1c7c"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/a33f507f36d5881f602dab581ab0f8d22b49762c"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-24T16:15:48Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-47f7-v3jr-88mg/GHSA-47f7-v3jr-88mg.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-47f7-v3jr-88mg",
-  "modified": "2025-12-15T21:30:32Z",
+  "modified": "2025-12-24T18:30:17Z",
   "published": "2025-12-15T21:30:32Z",
   "aliases": [
     "CVE-2023-53887"
   ],
   "details": "Zomplog 3.9 contains a cross-site scripting vulnerability that allows authenticated users to inject malicious scripts when creating new pages. Attackers can craft malicious image source and onerror attributes to execute arbitrary JavaScript code in victim's browser.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/12/GHSA-9g2h-fh68-3p2v/GHSA-9g2h-fh68-3p2v.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-9g2h-fh68-3p2v",
-  "modified": "2025-12-15T21:30:32Z",
+  "modified": "2025-12-24T18:30:17Z",
   "published": "2025-12-15T21:30:32Z",
   "aliases": [
     "CVE-2023-53888"
   ],
   "details": "Zomplog 3.9 contains a remote code execution vulnerability that allows authenticated attackers to inject and execute arbitrary PHP code through file manipulation endpoints. Attackers can upload malicious JavaScript files, rename them to PHP, and execute system commands by exploiting the saveE and rename actions in the application.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2025/12/GHSA-f7m4-f638-5p2j/GHSA-f7m4-f638-5p2j.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-f7m4-f638-5p2j",
-  "modified": "2025-12-24T06:30:26Z",
+  "modified": "2025-12-24T18:30:22Z",
   "published": "2025-12-24T06:30:26Z",
   "aliases": [
     "CVE-2025-13407"
   ],
   "details": "The Gravity Forms WordPress plugin before 2.9.23.1 does not properly prevent users from uploading dangerous files through its chunked upload functionality, allowing attackers to upload PHP files to affected sites and achieve Remote Code Execution, granted they can discover or enumerate the upload path.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -21,7 +26,7 @@
   ],
   "database_specific": {
     "cwe_ids": [],
-    "severity": null,
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-12-24T06:15:43Z"

advisories/unreviewed/2025/12/GHSA-fc8g-5x2c-p65r/GHSA-fc8g-5x2c-p65r.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-fc8g-5x2c-p65r",
-  "modified": "2025-12-24T15:30:44Z",
+  "modified": "2025-12-24T18:30:22Z",
   "published": "2025-12-24T15:30:44Z",
   "aliases": [
     "CVE-2025-60935"
   ],
   "details": "An open redirect vulnerability in the login endpoint of Blitz Panel v1.17.0 allows attackers to redirect users to malicious domains via a crafted URL. This issue affects the next_url parameter in the login endpoint and could lead to phishing or token theft after successful authentication.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -24,8 +29,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-601"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-12-24T15:16:01Z"

advisories/unreviewed/2025/12/GHSA-frq8-587v-8qcr/GHSA-frq8-587v-8qcr.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-frq8-587v-8qcr",
+  "modified": "2025-12-24T18:30:22Z",
+  "published": "2025-12-24T18:30:22Z",
+  "aliases": [
+    "CVE-2025-43875"
+  ],
+  "details": "Under certain circumstances a successful exploitation could result in access to the device.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43875"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-01"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.johnsoncontrols.com/trust-center/cybersecurity/security-advisories"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-78"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-24T16:15:48Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-gc5g-jhc5-xh8h/GHSA-gc5g-jhc5-xh8h.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-gc5g-jhc5-xh8h",
+  "modified": "2025-12-24T18:30:22Z",
+  "published": "2025-12-24T18:30:22Z",
+  "aliases": [
+    "CVE-2024-40317"
+  ],
+  "details": "A reflected cross-site scripting (XSS) vulnerability in MyNET up to v26.08 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the parameter HTTP.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40317"
+    },
+    {
+      "type": "WEB",
+      "url": "https://miguelsantareno.github.io/airc_exploit.txt"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.airc.pt/solucoes-servicos/solucoes?segment=MYN"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-79"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-24T16:15:47Z"
+  }
+}

advisories/unreviewed/2025/12/GHSA-hcr2-46j7-rjhp/GHSA-hcr2-46j7-rjhp.json

@@ -0,0 +1,52 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-hcr2-46j7-rjhp",
+  "modified": "2025-12-24T18:30:22Z",
+  "published": "2025-12-24T18:30:22Z",
+  "aliases": [
+    "CVE-2025-2515"
+  ],
+  "details": "A vulnerability was found in BlueChi, a multi-node systemd service controller used in RHIVOS. This flaw allows a user with root privileges on a managed node (qm) to create or override systemd service unit files that affect the host node. This issue can lead to privilege escalation, unauthorized service execution, and potential system compromise.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-2515"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/eclipse-bluechi/bluechi/issues/1069"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/eclipse-bluechi/bluechi/pull/1073"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/eclipse-bluechi/bluechi/commit/fe0d28301ce2bd45f0b1d8a98a94efef799fbc73#diff-64140c83db42a8888f346a40de293b80f79ebf7d75ce4137b22567e360bce607"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/security/cve/CVE-2025-2515"
+    },
+    {
+      "type": "WEB",
+      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2353313"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-863"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-24T17:15:47Z"
+  }
+}