Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2022/05/GHSA-3686-jjcf-4w27/GHSA-3686-jjcf-4w27.json

@@ -141,7 +141,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-1335"
+    ],
     "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,

advisories/unreviewed/2022/05/GHSA-5248-m677-h7p5/GHSA-5248-m677-h7p5.json

@@ -106,7 +106,8 @@
   ],
   "database_specific": {
     "cwe_ids": [
-      "CWE-119"
+      "CWE-119",
+      "CWE-122"
     ],
     "severity": "HIGH",
     "github_reviewed": false,

advisories/unreviewed/2022/05/GHSA-79qp-mxw3-p9vx/GHSA-79qp-mxw3-p9vx.json

@@ -54,6 +54,7 @@
   ],
   "database_specific": {
     "cwe_ids": [
+      "CWE-125",
       "CWE-835"
     ],
     "severity": "HIGH",

advisories/unreviewed/2022/05/GHSA-fm82-qvr8-64ww/GHSA-fm82-qvr8-64ww.json

@@ -50,6 +50,7 @@
   ],
   "database_specific": {
     "cwe_ids": [
+      "CWE-125",
       "CWE-835"
     ],
     "severity": "HIGH",

advisories/unreviewed/2022/05/GHSA-h7v2-cvh5-xv63/GHSA-h7v2-cvh5-xv63.json

@@ -50,6 +50,7 @@
   ],
   "database_specific": {
     "cwe_ids": [
+      "CWE-125",
       "CWE-835"
     ],
     "severity": "HIGH",

advisories/unreviewed/2022/05/GHSA-rf62-m3fm-w623/GHSA-rf62-m3fm-w623.json

@@ -50,7 +50,8 @@
   ],
   "database_specific": {
     "cwe_ids": [
-      "CWE-20"
+      "CWE-20",
+      "CWE-674"
     ],
     "severity": "HIGH",
     "github_reviewed": false,

advisories/unreviewed/2022/05/GHSA-vghw-r4fc-pgpf/GHSA-vghw-r4fc-pgpf.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-vghw-r4fc-pgpf",
-  "modified": "2022-05-13T01:39:57Z",
+  "modified": "2025-12-04T18:30:36Z",
   "published": "2022-05-13T01:39:57Z",
   "aliases": [
     "CVE-2017-0358"

advisories/unreviewed/2022/05/GHSA-w7cc-jv4p-qccr/GHSA-w7cc-jv4p-qccr.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-w7cc-jv4p-qccr",
-  "modified": "2025-04-12T12:51:09Z",
+  "modified": "2025-12-04T18:30:27Z",
   "published": "2022-05-14T02:45:32Z",
   "aliases": [
     "CVE-2015-5621"
   ],
   "details": "The snmp_pdu_parse function in snmp_api.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmp_variable_list item when parsing of the SNMP PDU fails, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -76,7 +81,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-190"
+    ],
     "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,

advisories/unreviewed/2022/05/GHSA-ww72-35h4-5v84/GHSA-ww72-35h4-5v84.json

@@ -73,7 +73,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-835"
+    ],
     "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,

advisories/unreviewed/2025/07/GHSA-q5g5-qq27-6887/GHSA-q5g5-qq27-6887.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-q5g5-qq27-6887",
-  "modified": "2025-11-12T21:31:04Z",
+  "modified": "2025-12-04T18:30:35Z",
   "published": "2025-07-25T18:30:38Z",
   "aliases": [
     "CVE-2025-34138"