Improve GHSA-cjmh-96m9-g6qr

CosmicJesterX · CosmicJesterX · commit fecd6ada88b0 · 2025-12-10T06:54:58.000+01:00
diff --git a/advisories/unreviewed/2025/12/GHSA-cjmh-96m9-g6qr/GHSA-cjmh-96m9-g6qr.json b/advisories/unreviewed/2025/12/GHSA-cjmh-96m9-g6qr/GHSA-cjmh-96m9-g6qr.json
@@ -1,19 +1,37 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-cjmh-96m9-g6qr",
-  "modified": "2025-12-10T00:30:22Z",
+  "modified": "2025-12-10T00:30:30Z",
   "published": "2025-12-10T00:30:22Z",
   "aliases": [
     "CVE-2025-61810"
   ],
+  "summary": "Urgent",
   "details": "ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. A high privileged attacker could exploit this vulnerability by providing maliciously crafted serialized data to the application. Exploitation of this issue requires user interaction and scope is changed.",
   "severity": [
     {
       "type": "CVSS_V3",
       "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H"
     }
   ],
-  "affected": [],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "Packagist",
+        "name": ""
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            }
+          ]
+        }
+      ]
+    }
+  ],
   "references": [
     {
       "type": "ADVISORY",
