Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2025/09/GHSA-4whh-r2w5-9vf6/GHSA-4whh-r2w5-9vf6.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-4whh-r2w5-9vf6",
-  "modified": "2025-11-03T21:34:34Z",
+  "modified": "2026-03-31T15:31:52Z",
   "published": "2025-09-23T12:31:11Z",
   "aliases": [
     "CVE-2025-9963"
@@ -23,6 +23,14 @@
       "type": "WEB",
       "url": "https://cyberdanube.com/security-research/multiple-vulnerabilities-in-novakon-hmi-series"
     },
+    {
+      "type": "WEB",
+      "url": "https://www.novakon.com.tw/common/frontend/download?path=/uploads/images/support/download/NOVAKON_P-Series-HMI_Security-Advisory_CVE-2025-9962-9966_Rev2_0.pdf"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.novakon.com.tw/en/news/detail/Security_Advisory__Firmware_Update_Available_for_NOVAKON_P_Series_HMI_Products"
+    },
     {
       "type": "WEB",
       "url": "http://seclists.org/fulldisclosure/2025/Sep/70"

advisories/unreviewed/2025/09/GHSA-7f7w-xxrm-q8hm/GHSA-7f7w-xxrm-q8hm.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-7f7w-xxrm-q8hm",
-  "modified": "2025-11-03T21:34:34Z",
+  "modified": "2026-03-31T15:31:52Z",
   "published": "2025-09-23T12:31:11Z",
   "aliases": [
     "CVE-2025-9964"
@@ -23,6 +23,14 @@
       "type": "WEB",
       "url": "https://cyberdanube.com/security-research/multiple-vulnerabilities-in-novakon-hmi-series"
     },
+    {
+      "type": "WEB",
+      "url": "https://www.novakon.com.tw/common/frontend/download?path=/uploads/images/support/download/NOVAKON_P-Series-HMI_Security-Advisory_CVE-2025-9962-9966_Rev2_0.pdf"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.novakon.com.tw/en/news/detail/Security_Advisory__Firmware_Update_Available_for_NOVAKON_P_Series_HMI_Products"
+    },
     {
       "type": "WEB",
       "url": "http://seclists.org/fulldisclosure/2025/Sep/70"

advisories/unreviewed/2025/09/GHSA-95hg-hgr3-hcj6/GHSA-95hg-hgr3-hcj6.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-95hg-hgr3-hcj6",
-  "modified": "2025-11-03T21:34:35Z",
+  "modified": "2026-03-31T15:31:53Z",
   "published": "2025-09-23T12:31:11Z",
   "aliases": [
     "CVE-2025-9966"
@@ -23,6 +23,14 @@
       "type": "WEB",
       "url": "https://cyberdanube.com/security-research/multiple-vulnerabilities-in-novakon-hmi-series"
     },
+    {
+      "type": "WEB",
+      "url": "https://www.novakon.com.tw/common/frontend/download?path=/uploads/images/support/download/NOVAKON_P-Series-HMI_Security-Advisory_CVE-2025-9962-9966_Rev2_0.pdf"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.novakon.com.tw/en/news/detail/Security_Advisory__Firmware_Update_Available_for_NOVAKON_P_Series_HMI_Products"
+    },
     {
       "type": "WEB",
       "url": "http://seclists.org/fulldisclosure/2025/Sep/70"

advisories/unreviewed/2025/09/GHSA-p9qm-qcvq-mrqj/GHSA-p9qm-qcvq-mrqj.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-p9qm-qcvq-mrqj",
-  "modified": "2025-11-03T21:34:34Z",
+  "modified": "2026-03-31T15:31:52Z",
   "published": "2025-09-23T12:31:11Z",
   "aliases": [
     "CVE-2025-9962"
@@ -23,6 +23,14 @@
       "type": "WEB",
       "url": "https://cyberdanube.com/security-research/multiple-vulnerabilities-in-novakon-hmi-series"
     },
+    {
+      "type": "WEB",
+      "url": "https://www.novakon.com.tw/common/frontend/download?path=/uploads/images/support/download/NOVAKON_P-Series-HMI_Security-Advisory_CVE-2025-9962-9966_Rev2_0.pdf"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.novakon.com.tw/en/news/detail/Security_Advisory__Firmware_Update_Available_for_NOVAKON_P_Series_HMI_Products"
+    },
     {
       "type": "WEB",
       "url": "http://seclists.org/fulldisclosure/2025/Sep/70"

advisories/unreviewed/2025/09/GHSA-v985-h9j9-wv32/GHSA-v985-h9j9-wv32.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-v985-h9j9-wv32",
-  "modified": "2025-11-03T21:34:34Z",
+  "modified": "2026-03-31T15:31:52Z",
   "published": "2025-09-23T12:31:11Z",
   "aliases": [
     "CVE-2025-9965"
@@ -23,6 +23,14 @@
       "type": "WEB",
       "url": "https://cyberdanube.com/security-research/multiple-vulnerabilities-in-novakon-hmi-series"
     },
+    {
+      "type": "WEB",
+      "url": "https://www.novakon.com.tw/common/frontend/download?path=/uploads/images/support/download/NOVAKON_P-Series-HMI_Security-Advisory_CVE-2025-9962-9966_Rev2_0.pdf"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.novakon.com.tw/en/news/detail/Security_Advisory__Firmware_Update_Available_for_NOVAKON_P_Series_HMI_Products"
+    },
     {
       "type": "WEB",
       "url": "http://seclists.org/fulldisclosure/2025/Sep/70"

advisories/unreviewed/2026/03/GHSA-22vj-v4r3-878v/GHSA-22vj-v4r3-878v.json

@@ -25,7 +25,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-862"
+    ],
     "severity": "LOW",
     "github_reviewed": false,
     "github_reviewed_at": null,

advisories/unreviewed/2026/03/GHSA-27rm-rrv9-67mv/GHSA-27rm-rrv9-67mv.json

@@ -0,0 +1,33 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-27rm-rrv9-67mv",
+  "modified": "2026-03-31T15:31:56Z",
+  "published": "2026-03-31T15:31:56Z",
+  "aliases": [
+    "CVE-2026-30311"
+  ],
+  "details": "Ridvay Code's command auto-approval module contains a critical OS command injection vulnerability that renders its whitelist security mechanism completely ineffective. The system relies on fragile regular expressions to parse command structures; while it attempts to intercept dangerous operations, it fails to account for standard Shell command substitution Ridvay Code (specifically$(...)and backticks ...). An attacker can construct a command such as git log --grep=\"$(malicious_command)\", forcing Syntx to misidentify it as a safe git operation and automatically approve it. The underlying Shell prioritizes the execution of the malicious code injected within the arguments, resulting in Remote Code Execution without any user interaction.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-30311"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/Secsys-FDU/LLM-Tool-Calling-CVEs/issues/8"
+    },
+    {
+      "type": "WEB",
+      "url": "https://ridvay.com"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-31T15:16:12Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-2vwv-vqpv-v8vc/GHSA-2vwv-vqpv-v8vc.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2vwv-vqpv-v8vc",
-  "modified": "2026-03-30T09:31:29Z",
+  "modified": "2026-03-31T15:31:55Z",
   "published": "2026-03-30T09:31:29Z",
   "aliases": [
     "CVE-2026-5121"
   ],
   "details": "A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -24,8 +29,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-190"
+    ],
+    "severity": "CRITICAL",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2026-03-30T08:16:18Z"

advisories/unreviewed/2026/03/GHSA-35cq-wv6v-88xf/GHSA-35cq-wv6v-88xf.json

@@ -0,0 +1,48 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-35cq-wv6v-88xf",
+  "modified": "2026-03-31T15:31:56Z",
+  "published": "2026-03-31T15:31:56Z",
+  "aliases": [
+    "CVE-2026-34504"
+  ],
+  "details": "OpenClaw before 2026.3.28 contains a server-side request forgery vulnerability in the fal provider image-generation-provider.ts component that allows attackers to fetch internal URLs. A malicious or compromised fal relay can exploit unguarded image download fetches to expose internal service metadata and responses through the image pipeline.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "WEB",
+      "url": "https://github.com/openclaw/openclaw/security/advisories/GHSA-qxgf-hmcj-3xw3"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34504"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/openclaw/openclaw/commit/80d1e8a11a2ac118c7f7a70bba9c862b6141d928"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/openclaw-server-side-request-forgery-via-unguarded-image-download-in-fal-provider"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-918"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-31T15:16:19Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-3gr8-2752-h46q/GHSA-3gr8-2752-h46q.json

@@ -0,0 +1,48 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-3gr8-2752-h46q",
+  "modified": "2026-03-31T15:31:56Z",
+  "published": "2026-03-31T15:31:56Z",
+  "aliases": [
+    "CVE-2026-33581"
+  ],
+  "details": "OpenClaw before 2026.3.24 contains a sandbox bypass vulnerability in the message tool that allows attackers to read arbitrary local files by using mediaUrl and fileUrl alias parameters that bypass localRoots validation. Remote attackers can exploit this by routing file requests through unvalidated alias parameters to access files outside the intended sandbox directory.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "WEB",
+      "url": "https://github.com/openclaw/openclaw/security/advisories/GHSA-v8wv-jg3q-qwpq"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33581"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/openclaw/openclaw/commit/1d7cb6fc03552bbba00e7cffb3aa9741f5556416"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/openclaw-arbitrary-file-read-via-mediaurl-and-fileurl-parameters"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-22"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-31T15:16:15Z"
+  }
+}