Publish Advisories

advisory-database[bot] · advisory-database[bot] · commit d2cf2c6b2f4f · 2025-11-18T06:32:32.000Z
GHSA-c3q2-jc4g-3q9g GHSA-46hf-65mw-6fg3 GHSA-9567-rh6q-rf53 GHSA-9jpw-f7gq-pv94 GHSA-frwr-8p82-qrjm GHSA-r4wh-whpg-rc2q
diff --git a/advisories/unreviewed/2025/09/GHSA-c3q2-jc4g-3q9g/GHSA-c3q2-jc4g-3q9g.json b/advisories/unreviewed/2025/09/GHSA-c3q2-jc4g-3q9g/GHSA-c3q2-jc4g-3q9g.json
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-c3q2-jc4g-3q9g",
-  "modified": "2025-09-04T21:31:39Z",
+  "modified": "2025-11-18T06:30:25Z",
   "published": "2025-09-04T21:31:38Z",
   "aliases": [
     "CVE-2025-48581"
@@ -19,9 +19,25 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48581"
     },
+    {
+      "type": "WEB",
+      "url": "https://android.googlesource.com/platform/build/+/cda08bfbf55aed1e4c79efe6a66bb930d19a8a13"
+    },
+    {
+      "type": "WEB",
+      "url": "https://android.googlesource.com/platform/system/apex/+/13bbfe3ef2953e9805d57d3219cc122e485ba90f"
+    },
+    {
+      "type": "WEB",
+      "url": "https://android.googlesource.com/platform/system/apex/+/5a33fa4202cb5f06d7f02f3a2b8d13780d7cb3f5"
+    },
     {
       "type": "WEB",
       "url": "https://source.android.com/security/bulletin/2025-09-01"
+    },
+    {
+      "type": "WEB",
+      "url": "https://source.android.com/security/bulletin/2025-11-01"
     }
   ],
   "database_specific": {
diff --git a/advisories/unreviewed/2025/11/GHSA-46hf-65mw-6fg3/GHSA-46hf-65mw-6fg3.json b/advisories/unreviewed/2025/11/GHSA-46hf-65mw-6fg3/GHSA-46hf-65mw-6fg3.json
@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-46hf-65mw-6fg3",
+  "modified": "2025-11-18T06:30:25Z",
+  "published": "2025-11-18T06:30:25Z",
+  "aliases": [
+    "CVE-2025-52457"
+  ],
+  "details": "Observable Timing Discrepancy (CWE-208) in HBUS devices may allow an attacker with physical access to the device to extract device-specific keys, potentially compromising further site security. \n\nThis issue affects Command Centre Server:\n\n9.30 prior to vCR9.30.251028a (distributed in 9.30.2881 (MR3)), 9.20 prior to vCR9.20.251028a (distributed in 9.20.3265 (MR5)), 9.10 prior to vCR9.10.251028a (distributed in 9.10.4135 (MR8)), all versions of 9.00 and prior.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52457"
+    },
+    {
+      "type": "WEB",
+      "url": "https://security.gallagher.com/en-NZ/Security-Advisories/CVE-2025-52457"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-208"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-18T04:15:44Z"
+  }
+}
diff --git a/advisories/unreviewed/2025/11/GHSA-9567-rh6q-rf53/GHSA-9567-rh6q-rf53.json b/advisories/unreviewed/2025/11/GHSA-9567-rh6q-rf53/GHSA-9567-rh6q-rf53.json
@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-9567-rh6q-rf53",
+  "modified": "2025-11-18T06:30:25Z",
+  "published": "2025-11-18T06:30:25Z",
+  "aliases": [
+    "CVE-2025-52578"
+  ],
+  "details": "Incorrect Usage of Seeds in Pseudo-Random Number Generator (CWE- 335) vulnerability in the High Sec ELM may allow a sophisticated attacker with physical access, to compromise internal device communications.\n\nThis issue affects Command Centre Server: \n\n9.30 prior to vCR9.30.251028a (distributed in 9.30.2881 (MR3)), 9.20 prior to vCR9.20.251028a (distributed in 9.20.3265 (MR5)), 9.10 prior to vCR9.10.251028a (distributed in 9.10.4135 (MR8)), all versions of 9.00 and prior.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52578"
+    },
+    {
+      "type": "WEB",
+      "url": "https://security.gallagher.com/en-NZ/Security-Advisories/CVE-2025-52578"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-335"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-18T04:15:44Z"
+  }
+}
diff --git a/advisories/unreviewed/2025/11/GHSA-9jpw-f7gq-pv94/GHSA-9jpw-f7gq-pv94.json b/advisories/unreviewed/2025/11/GHSA-9jpw-f7gq-pv94/GHSA-9jpw-f7gq-pv94.json
@@ -0,0 +1,48 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-9jpw-f7gq-pv94",
+  "modified": "2025-11-18T06:30:25Z",
+  "published": "2025-11-18T06:30:25Z",
+  "aliases": [
+    "CVE-2025-12974"
+  ],
+  "details": "The Gravity Forms plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the legacy chunked upload mechanism in all versions up to, and including, 2.9.21.1. This is due to the extension blacklist not including .phar files, which can be uploaded through the chunked upload mechanism. This makes it possible for unauthenticated attackers to upload executable .phar files and achieve remote code execution on the server, granted they can discover or enumerate the upload path. In order for an attacker to achieve RCE, the web server needs to be set up to process .phar file as PHP via file handler mapping or similar.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12974"
+    },
+    {
+      "type": "WEB",
+      "url": "https://docs.gravityforms.com/gravityforms-change-log"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/pronamic/gravityforms/blob/06de1b7e169e4f073e9d0d491e17b89365b48c20/common/common.php#L4178"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/pronamic/gravityforms/blob/06de1b7e169e4f073e9d0d491e17b89365b48c20/includes/upload.php#L97"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/b6395439-da45-4b64-8e30-b106dffd46c1?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-434"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-18T04:15:43Z"
+  }
+}
diff --git a/advisories/unreviewed/2025/11/GHSA-frwr-8p82-qrjm/GHSA-frwr-8p82-qrjm.json b/advisories/unreviewed/2025/11/GHSA-frwr-8p82-qrjm/GHSA-frwr-8p82-qrjm.json
@@ -0,0 +1,37 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-frwr-8p82-qrjm",
+  "modified": "2025-11-18T06:30:25Z",
+  "published": "2025-11-18T06:30:25Z",
+  "aliases": [
+    "CVE-2025-48593"
+  ],
+  "details": "In bta_hf_client_cb_init of bta_hf_client_main.cc, there is a possible remote code execution due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48593"
+    },
+    {
+      "type": "WEB",
+      "url": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/5ed63461b44198c80d5aff7e1af1df812f782abb"
+    },
+    {
+      "type": "WEB",
+      "url": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/c69c78d7c4f623201f35831d32e6c401156e76cc"
+    },
+    {
+      "type": "WEB",
+      "url": "https://source.android.com/security/bulletin/2025-11-01"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-18T05:16:10Z"
+  }
+}
diff --git a/advisories/unreviewed/2025/11/GHSA-r4wh-whpg-rc2q/GHSA-r4wh-whpg-rc2q.json b/advisories/unreviewed/2025/11/GHSA-r4wh-whpg-rc2q/GHSA-r4wh-whpg-rc2q.json
@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-r4wh-whpg-rc2q",
+  "modified": "2025-11-18T06:30:25Z",
+  "published": "2025-11-18T06:30:25Z",
+  "aliases": [
+    "CVE-2025-64734"
+  ],
+  "details": "Missing Release of Resource after Effective Lifetime (CWE-772) in the T21 Reader allows an attacker with physical access to the Reader to perform a denial-of-service attack against that specific reader, preventing cardholders from badging for entry. \n\nThis issue affects Command Centre Server: \n\n9.30 prior to vCR9.30.251028a (distributed in 9.30.2881 (MR3)), 9.20 prior to vCR9.20.251028a (distributed in 9.20.3265 (MR5)), 9.10 prior to vCR9.10.251028a (distributed in 9.10.4135 (MR8)),  all versions of 9.00 and prior.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-64734"
+    },
+    {
+      "type": "WEB",
+      "url": "https://security.gallagher.com/en-NZ/Security-Advisories/CVE-2025-64734"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-772"
+    ],
+    "severity": "LOW",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-18T04:15:44Z"
+  }
+}
