Skip to content

[GHSA-25qh-j22f-pwp8] ACE vulnerability in conditional configuration file...#6336

Merged
advisory-database[bot] merged 2 commits intochrismcmacken/advisory-improvement-6336from
chrismcmacken-GHSA-25qh-j22f-pwp8
Oct 21, 2025
Merged

[GHSA-25qh-j22f-pwp8] ACE vulnerability in conditional configuration file...#6336
advisory-database[bot] merged 2 commits intochrismcmacken/advisory-improvement-6336from
chrismcmacken-GHSA-25qh-j22f-pwp8

Conversation

@chrismcmacken
Copy link

@chrismcmacken chrismcmacken commented Oct 20, 2025

Updates

  • Affected products
  • CVSS v3
  • CVSS v4
  • Severity
  • Summary

Comments
No linked package to the CVE

Copilot AI review requested due to automatic review settings October 20, 2025 21:03
Copilot AI reviewed Oct 20, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

Updates a security advisory (GHSA-25qh-j22f-pwp8) for an ACE vulnerability in logback-core by adding critical metadata that was previously missing.

  • Added summary, affected package information, and updated CVSS scoring
  • Changed severity rating from MODERATE to LOW
  • Replaced CVSS v4 scoring with CVSS v3.1 scoring

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@github-actions github-actions bot changed the base branch from main to chrismcmacken/advisory-improvement-6336 October 20, 2025 21:04
@chrismcmacken chrismcmacken requested a review from Copilot October 20, 2025 21:37
Copilot AI reviewed Oct 20, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

Copilot reviewed 1 out of 1 changed files in this pull request and generated no new comments.

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@advisory-database advisory-database bot merged commit 0861ee3 into chrismcmacken/advisory-improvement-6336 Oct 21, 2025
3 checks passed
@advisory-database
Copy link
Contributor

advisory-database bot commented Oct 21, 2025

Hi @chrismcmacken! Thank you so much for contributing to the GitHub Advisory Database. This database is free, open, and accessible to all, and it's people like you who make it great. Thanks for choosing to help others. We hope you send in more contributions in the future!

@advisory-database advisory-database bot deleted the chrismcmacken-GHSA-25qh-j22f-pwp8 branch October 21, 2025 21:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@chrismcmacken