Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2026/01/GHSA-7ff9-hxc6-hrqm/GHSA-7ff9-hxc6-hrqm.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-7ff9-hxc6-hrqm",
-  "modified": "2026-01-27T18:32:18Z",
+  "modified": "2026-03-12T00:31:15Z",
   "published": "2026-01-27T18:32:17Z",
   "aliases": [
     "CVE-2026-0919"
   ],
   "details": "The HTTP parser of Tapo C220 v1 and C520WS v2 cameras improperly handles requests containing an excessively long URL path. An invalid‑URL error path continues into cleanup code that assumes allocated buffers exist, leading to a crash and service restart. An unauthenticated attacker can force repeated service crashes or device reboots, causing denial of service.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2026/01/GHSA-ffwx-rgqv-xv4m/GHSA-ffwx-rgqv-xv4m.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-ffwx-rgqv-xv4m",
-  "modified": "2026-02-10T00:30:28Z",
+  "modified": "2026-03-12T00:31:15Z",
   "published": "2026-01-27T18:32:17Z",
   "aliases": [
     "CVE-2026-0918"
   ],
   "details": "The Tapo C220 v1 and C520WS v2 cameras’ HTTP service does not safely handle POST requests containing an excessively large Content-Length header. The resulting failed memory allocation triggers a NULL pointer dereference, causing the main service process to crash. An unauthenticated attacker can repeatedly crash the service, causing temporary denial of service. The device restarts automatically, and repeated requests can keep it unavailable.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2026/01/GHSA-g9c2-p6j5-8cv4/GHSA-g9c2-p6j5-8cv4.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-g9c2-p6j5-8cv4",
-  "modified": "2026-01-27T18:32:17Z",
+  "modified": "2026-03-12T00:31:15Z",
   "published": "2026-01-27T18:32:17Z",
   "aliases": [
     "CVE-2026-1315"
   ],
   "details": "By sending crafted files to the firmware update endpoint of Tapo C220 v1 and C520WS v2, the device terminates core system services before verifying authentication or firmware integrity. An unauthenticated attacker can trigger a persistent denial of service, requiring a manual reboot or application initiated restart to restore normal device operation.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2026/01/GHSA-grjh-4c57-c7g8/GHSA-grjh-4c57-c7g8.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-grjh-4c57-c7g8",
-  "modified": "2026-01-26T21:30:36Z",
+  "modified": "2026-03-12T00:31:15Z",
   "published": "2026-01-26T21:30:36Z",
   "aliases": [
     "CVE-2025-9522"
   ],
   "details": "Blind Server-Side Request Forgery (SSRF) in Omada Controllers through webhook functionality, enabling crafted requests to internal services, which may lead to enumeration of information.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2026/01/GHSA-h7vf-8q5x-gvc3/GHSA-h7vf-8q5x-gvc3.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-h7vf-8q5x-gvc3",
-  "modified": "2026-01-26T21:30:36Z",
+  "modified": "2026-03-12T00:31:15Z",
   "published": "2026-01-26T21:30:36Z",
   "aliases": [
     "CVE-2025-9521"
   ],
   "details": "Password Confirmation Bypass vulnerability in Omada Controllers, allowing an attacker with a valid session token to bypass secondary verification, and change the user’s password without proper confirmation, leading to weakened account security.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2026/01/GHSA-q7gm-8832-99rj/GHSA-q7gm-8832-99rj.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-q7gm-8832-99rj",
-  "modified": "2026-01-26T21:30:36Z",
+  "modified": "2026-03-12T00:31:15Z",
   "published": "2026-01-26T21:30:36Z",
   "aliases": [
     "CVE-2025-9520"
   ],
   "details": "An IDOR vulnerability exists in Omada Controllers that allows an attacker with Administrator permissions to manipulate requests and potentially hijack the Owner account.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"

advisories/unreviewed/2026/03/GHSA-385g-f3h5-22xh/GHSA-385g-f3h5-22xh.json

@@ -0,0 +1,35 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-385g-f3h5-22xh",
+  "modified": "2026-03-12T00:31:17Z",
+  "published": "2026-03-12T00:31:17Z",
+  "aliases": [
+    "CVE-2026-3936"
+  ],
+  "details": "Use after free in WebView in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3936"
+    },
+    {
+      "type": "WEB",
+      "url": "https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop_10.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://issues.chromium.org/issues/481920229"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-416"
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-11T22:16:36Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-3grg-fgcc-7f3v/GHSA-3grg-fgcc-7f3v.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-3grg-fgcc-7f3v",
-  "modified": "2026-03-11T21:31:01Z",
+  "modified": "2026-03-12T00:31:16Z",
   "published": "2026-03-11T21:31:01Z",
   "aliases": [
     "CVE-2019-25468"
@@ -27,6 +27,10 @@
       "type": "WEB",
       "url": "https://www.exploit-db.com/exploits/47391"
     },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/netgain-em-plus-remote-code-execution-via-script-test-jsp"
+    },
     {
       "type": "WEB",
       "url": "https://www.vulncheck.com/advisories/netgain-em-plus-remote-code-execution-via-script-testjsp"

advisories/unreviewed/2026/03/GHSA-43w8-4q7x-65hj/GHSA-43w8-4q7x-65hj.json

@@ -0,0 +1,35 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-43w8-4q7x-65hj",
+  "modified": "2026-03-12T00:31:17Z",
+  "published": "2026-03-12T00:31:17Z",
+  "aliases": [
+    "CVE-2026-3917"
+  ],
+  "details": "Use after free in Agents in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3917"
+    },
+    {
+      "type": "WEB",
+      "url": "https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop_10.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://issues.chromium.org/issues/483569512"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-416"
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-11T22:16:34Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-48cq-3q6q-vxm7/GHSA-48cq-3q6q-vxm7.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-48cq-3q6q-vxm7",
-  "modified": "2026-03-11T21:31:02Z",
+  "modified": "2026-03-12T00:31:16Z",
   "published": "2026-03-11T21:31:02Z",
   "aliases": [
     "CVE-2019-25485"
@@ -30,6 +30,10 @@
     {
       "type": "WEB",
       "url": "https://www.vulncheck.com/advisories/r-windows-x-buffer-overflow-seh-dep-aslr-bypass"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/r-windows-x64-buffer-overflow-seh-dep-aslr-bypass"
     }
   ],
   "database_specific": {