Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2025/09/GHSA-25qr-xf4w-7m3j/GHSA-25qr-xf4w-7m3j.json

@@ -42,7 +42,8 @@
   ],
   "database_specific": {
     "cwe_ids": [
-      "CWE-74"
+      "CWE-74",
+      "CWE-89"
     ],
     "severity": "MODERATE",
     "github_reviewed": false,

advisories/unreviewed/2025/10/GHSA-5mxh-q367-rc3m/GHSA-5mxh-q367-rc3m.json

@@ -29,7 +29,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-89"
+    ],
     "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,

advisories/unreviewed/2025/11/GHSA-2hjg-83v5-q3mf/GHSA-2hjg-83v5-q3mf.json

@@ -0,0 +1,50 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-2hjg-83v5-q3mf",
+  "modified": "2025-11-15T00:30:26Z",
+  "published": "2025-11-15T00:30:26Z",
+  "aliases": [
+    "CVE-2025-13187"
+  ],
+  "details": "A security vulnerability has been detected in Intelbras ICIP 2.0.20. Affected is an unknown function of the file /xml/sistema/acessodeusuario.xml. Such manipulation of the argument NomeUsuario/SenhaAcess leads to unprotected storage of credentials. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13187"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.332475"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.332475"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?submit.685522"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.notion.so/eldruin/Intelbras-ICIP-Plaintext-Admin-Credentials-Disclosure-29b27474cccb80ff943ff2776d03d7cd"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-14T22:15:45Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-2xcq-fmvr-mmpw/GHSA-2xcq-fmvr-mmpw.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2xcq-fmvr-mmpw",
-  "modified": "2025-11-14T18:31:40Z",
+  "modified": "2025-11-15T00:30:26Z",
   "published": "2025-11-14T18:31:40Z",
   "aliases": [
     "CVE-2025-63830"
   ],
   "details": "CKFinder 1.4.3 is vulnerable to Cross Site Scripting (XSS) in the File Upload function. An attacker can upload a crafted SVG containing active content.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -24,8 +29,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-79"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-11-14T18:15:51Z"

advisories/unreviewed/2025/11/GHSA-392p-wm2f-p96x/GHSA-392p-wm2f-p96x.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-392p-wm2f-p96x",
-  "modified": "2025-11-14T18:31:39Z",
+  "modified": "2025-11-15T00:30:25Z",
   "published": "2025-11-14T18:31:39Z",
   "aliases": [
     "CVE-2025-54345"
   ],
   "details": "An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. Sensitive Information is exposed to an Unauthorized Actor.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -24,8 +29,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-200"
+    ],
+    "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-11-14T18:15:48Z"

advisories/unreviewed/2025/11/GHSA-3cvf-5chq-5r99/GHSA-3cvf-5chq-5r99.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-3cvf-5chq-5r99",
-  "modified": "2025-11-14T21:30:29Z",
+  "modified": "2025-11-15T00:30:26Z",
   "published": "2025-11-14T21:30:29Z",
   "aliases": [
     "CVE-2025-63291"
   ],
   "details": "When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission to access the specified MongoDB object ID. By specifying particlar MongoDB object IDs, callers could obtain records for other users without proper authorization. Records retrievable using this attack included administrative API keys and private studio api keys.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -28,8 +33,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-648"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-11-14T19:16:01Z"

advisories/unreviewed/2025/11/GHSA-3fh5-63gr-xqxc/GHSA-3fh5-63gr-xqxc.json

@@ -0,0 +1,48 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-3fh5-63gr-xqxc",
+  "modified": "2025-11-15T00:30:26Z",
+  "published": "2025-11-15T00:30:26Z",
+  "aliases": [
+    "CVE-2018-25125"
+  ],
+  "details": "Netis ADSL Router DL4322D firmware RTK 2.1.1 contains a buffer overflow vulnerability in the embedded FTP service that allows an authenticated remote user to trigger a denial of service. After logging in to the FTP service, sending an FTP command such as ABOR with an excessively long argument causes the service, and in practice the router, to crash or become unresponsive, resulting in a loss of availability for the device and connected users.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-25125"
+    },
+    {
+      "type": "WEB",
+      "url": "https://web.archive.org/web/20180731191918/http://www.netis-systems.com/Home/detail/id/74.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.exploit-db.com/exploits/45424"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.netis-systems.com"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/netis-dl4322d-ftp-service-dos"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-120"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-14T23:15:41Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-3hfj-mrxp-x3v9/GHSA-3hfj-mrxp-x3v9.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-3hfj-mrxp-x3v9",
-  "modified": "2025-11-14T21:30:30Z",
+  "modified": "2025-11-15T00:30:26Z",
   "published": "2025-11-14T21:30:30Z",
   "aliases": [
     "CVE-2025-63744"
   ],
   "details": "A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the load() function of bin_dyldcache.c. Processing a crafted file can cause a segmentation fault and crash the program.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -32,8 +37,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-476"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-11-14T21:15:44Z"

advisories/unreviewed/2025/11/GHSA-3mr8-x6wp-2wc6/GHSA-3mr8-x6wp-2wc6.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-3mr8-x6wp-2wc6",
+  "modified": "2025-11-15T00:30:25Z",
+  "published": "2025-11-15T00:30:25Z",
+  "aliases": [
+    "CVE-2024-28988"
+  ],
+  "details": "SolarWinds Web Help Desk was found to be susceptible to a Java Deserialization Remote Code Execution vulnerability that, if exploited, would allow an attacker to run commands on the host machine. This vulnerability was found by the ZDI team after researching a previous vulnerability and providing this report. The ZDI team was able to discover an unauthenticated attack during their research. \n\n\n\n\n\nWe recommend all Web Help Desk customers apply the patch, which is now available. \n\n\n\n\n\nWe thank Trend Micro Zero Day Initiative (ZDI) for its ongoing partnership in coordinating with SolarWinds on responsible disclosure of this and other potential vulnerabilities.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28988"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.solarwinds.com/SuccessCenter/s/article/WHD-12-8-3-Hotfix-3"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-28988"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-502"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-09-01T22:15:30Z"
+  }
+}

advisories/unreviewed/2025/11/GHSA-4w9w-pqwx-pfqr/GHSA-4w9w-pqwx-pfqr.json

@@ -0,0 +1,48 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-4w9w-pqwx-pfqr",
+  "modified": "2025-11-15T00:30:26Z",
+  "published": "2025-11-15T00:30:26Z",
+  "aliases": [
+    "CVE-2021-4468"
+  ],
+  "details": "PLANEX CS-QP50F-ING2 smart cameras expose a configuration backup interface over HTTP that does not require authentication. A remote, unauthenticated attacker can directly retrieve a compressed configuration backup file from the device. The backup contains sensitive configuration information, including credentials, allowing an attacker to obtain administrative access to the camera and compromise the confidentiality of the monitored environment.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4468"
+    },
+    {
+      "type": "WEB",
+      "url": "https://cxsecurity.com/issue/WLB-2021010050"
+    },
+    {
+      "type": "WEB",
+      "url": "https://packetstorm.news/files/id/160805"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.planex.co.jp/products/cs-qp50f"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/planex-cs-qp50f-ing2-smart-camera-remote-configuration-disclosure"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-306"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-14T23:15:42Z"
+  }
+}