Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2026/03/GHSA-64fw-jx9p-5j24/GHSA-64fw-jx9p-5j24.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-64fw-jx9p-5j24",
-  "modified": "2026-03-12T21:34:40Z",
+  "modified": "2026-04-17T18:31:41Z",
   "published": "2026-03-10T18:31:23Z",
   "aliases": [
     "CVE-2026-3854"
@@ -27,25 +27,49 @@
       "type": "WEB",
       "url": "https://docs.github.com/en/enterprise-server@3.14/admin/release-notes#3.14.24"
     },
+    {
+      "type": "WEB",
+      "url": "https://docs.github.com/en/enterprise-server@3.14/admin/release-notes#3.14.25"
+    },
     {
       "type": "WEB",
       "url": "https://docs.github.com/en/enterprise-server@3.15/admin/release-notes#3.15.19"
     },
+    {
+      "type": "WEB",
+      "url": "https://docs.github.com/en/enterprise-server@3.15/admin/release-notes#3.15.20"
+    },
     {
       "type": "WEB",
       "url": "https://docs.github.com/en/enterprise-server@3.16/admin/release-notes#3.16.15"
     },
+    {
+      "type": "WEB",
+      "url": "https://docs.github.com/en/enterprise-server@3.16/admin/release-notes#3.16.16"
+    },
     {
       "type": "WEB",
       "url": "https://docs.github.com/en/enterprise-server@3.17/admin/release-notes#3.17.12"
     },
+    {
+      "type": "WEB",
+      "url": "https://docs.github.com/en/enterprise-server@3.17/admin/release-notes#3.17.13"
+    },
     {
       "type": "WEB",
       "url": "https://docs.github.com/en/enterprise-server@3.18/admin/release-notes#3.18.6"
     },
+    {
+      "type": "WEB",
+      "url": "https://docs.github.com/en/enterprise-server@3.18/admin/release-notes#3.18.7"
+    },
     {
       "type": "WEB",
       "url": "https://docs.github.com/en/enterprise-server@3.19/admin/release-notes#3.19.3"
+    },
+    {
+      "type": "WEB",
+      "url": "https://docs.github.com/en/enterprise-server@3.19/admin/release-notes#3.19.4"
     }
   ],
   "database_specific": {

advisories/unreviewed/2026/03/GHSA-c76v-r5mr-9fpq/GHSA-c76v-r5mr-9fpq.json

@@ -29,7 +29,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-89"
+    ],
     "severity": "CRITICAL",
     "github_reviewed": false,
     "github_reviewed_at": null,

advisories/unreviewed/2026/03/GHSA-cm99-m826-vgg7/GHSA-cm99-m826-vgg7.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-cm99-m826-vgg7",
-  "modified": "2026-03-24T15:30:29Z",
+  "modified": "2026-04-17T18:31:42Z",
   "published": "2026-03-24T15:30:29Z",
   "aliases": [
     "CVE-2026-4775"
@@ -26,6 +26,10 @@
     {
       "type": "WEB",
       "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450768"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2026/04/msg00016.html"
     }
   ],
   "database_specific": {

advisories/unreviewed/2026/03/GHSA-h68h-qcxp-qv6v/GHSA-h68h-qcxp-qv6v.json

@@ -29,7 +29,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-538"
+    ],
     "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,

advisories/unreviewed/2026/04/GHSA-28p4-5j5m-924h/GHSA-28p4-5j5m-924h.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-28p4-5j5m-924h",
+  "modified": "2026-04-17T18:31:50Z",
+  "published": "2026-04-17T18:31:50Z",
+  "aliases": [
+    "CVE-2025-40899"
+  ],
+  "details": "A Stored Cross-Site Scripting vulnerability was discovered in the Assets and Nodes functionality due to improper validation of an input parameter. An authenticated user with custom fields privileges can define a malicious custom field containing a JavaScript payload. When the victim views the Assets or Nodes pages, the XSS executes in their browser context, allowing the attacker to perform unauthorized actions as the victim, such as modify application data, disrupt application availability, and access limited sensitive information.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-40899"
+    },
+    {
+      "type": "WEB",
+      "url": "https://security.nozominetworks.com/NN-2026:2-01"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-79"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-04-15T09:16:30Z"
+  }
+}

advisories/unreviewed/2026/04/GHSA-4h67-fm2h-4qrp/GHSA-4h67-fm2h-4qrp.json

@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-4h67-fm2h-4qrp",
+  "modified": "2026-04-17T18:31:52Z",
+  "published": "2026-04-17T18:31:52Z",
+  "aliases": [
+    "CVE-2026-21733"
+  ],
+  "details": "Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permission to read-only wrapped user-mode memory and files.\n\nThis is caused by improper handling of GPU memory reservation protections.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-21733"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.imaginationtech.com/gpu-driver-vulnerabilities"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-280"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-04-17T17:16:35Z"
+  }
+}

advisories/unreviewed/2026/04/GHSA-54pv-34f9-m4mq/GHSA-54pv-34f9-m4mq.json

@@ -0,0 +1,48 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-54pv-34f9-m4mq",
+  "modified": "2026-04-17T18:31:53Z",
+  "published": "2026-04-17T18:31:53Z",
+  "aliases": [
+    "CVE-2026-40518"
+  ],
+  "details": "ByteDance DeerFlow before commit 2176b2b contains a path traversal and arbitrary file write vulnerability in bootstrap-mode custom-agent creation where the agent name validation is bypassed. Attackers can supply traversal-style values or absolute paths as the agent name to influence directory creation and write files outside the intended custom-agent directory, potentially achieving arbitrary file write on the system subject to filesystem permissions.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40518"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/bytedance/deer-flow/pull/2274"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/bytedance/deer-flow/commit/2176b2bbfccfce25ceee08318813f96d843a13fd"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/bytedance-deerflow-path-traversal-and-arbitrary-file-write-via-bootstrap-mode"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-22"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-04-17T17:17:09Z"
+  }
+}

advisories/unreviewed/2026/04/GHSA-574f-3g2m-x479/GHSA-574f-3g2m-x479.json

@@ -0,0 +1,44 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-574f-3g2m-x479",
+  "modified": "2026-04-17T18:31:50Z",
+  "published": "2026-04-17T18:31:50Z",
+  "aliases": [
+    "CVE-2025-14813"
+  ],
+  "details": "Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcprov on all (core modules). This vulnerability is associated with program files G3413CTRBlockCipher.\n\nGOSTCTR implementation unable to process more than 255 blocks correctly.\n\n\nThis issue affects BC-JAVA: from 1.59 before 1.84.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:M/U:Red"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14813"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/bcgit/bc-java/commit/701686cb0184cd9ae103c801b3581fdf95c6d4f3"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/bcgit/bc-java/commit/b42574345414e4b7c8051b16fa1fafe01c29871f"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902025%E2%80%9014813"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-327"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-04-15T10:16:38Z"
+  }
+}

advisories/unreviewed/2026/04/GHSA-57pr-fgr5-wqvx/GHSA-57pr-fgr5-wqvx.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-57pr-fgr5-wqvx",
+  "modified": "2026-04-17T18:31:50Z",
+  "published": "2026-04-17T18:31:50Z",
+  "aliases": [
+    "CVE-2025-40897"
+  ],
+  "details": "An access control vulnerability was discovered in the Threat Intelligence functionality due to a specific access restriction not being properly enforced for users with view-only privileges. An authenticated user with view-only privileges for the Threat Intelligence functionality can perform administrative actions on it, altering the rules configuration, and/or affecting their availability.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-40897"
+    },
+    {
+      "type": "WEB",
+      "url": "https://security.nozominetworks.com/NN-2026:1-01"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-863"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-04-15T09:16:29Z"
+  }
+}

advisories/unreviewed/2026/04/GHSA-785m-9q28-jp3m/GHSA-785m-9q28-jp3m.json

@@ -0,0 +1,48 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-785m-9q28-jp3m",
+  "modified": "2026-04-17T18:31:53Z",
+  "published": "2026-04-17T18:31:53Z",
+  "aliases": [
+    "CVE-2026-40516"
+  ],
+  "details": "OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the web_fetch and web_search tools that allows attackers to access private and localhost HTTP services by manipulating tool parameters without proper validation of target addresses. Attackers can influence an agent session to invoke these tools against loopback, RFC1918, link-local, or other non-public addresses to read response bodies from local development services, cloud metadata endpoints, admin panels, or other private HTTP services reachable from the victim host.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:H/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40516"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/HKUDS/OpenHarness/pull/92"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/HKUDS/OpenHarness/commit/bd4df81f634f8c7cddcc3fdf7f561a13dcbf03ae"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/openharness-ssrf-via-web-fetch-and-web-search"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-918"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-04-17T17:17:09Z"
+  }
+}