Skip to content

Commit a1304c9

Browse files
advisory-database[bot]advisory-database[bot]
committed
Advisory Database Sync
1 parent 915026a commit a1304c9

78 files changed

Lines changed: 1553 additions & 75 deletions

File tree

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

advisories/github-reviewed/2026/01/GHSA-63v5-26vq-m4vm/GHSA-63v5-26vq-m4vm.json

Lines changed: 9 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-63v5-26vq-m4vm",
4-
"modified": "2026-01-27T21:56:13Z",
4+
"modified": "2026-03-06T00:31:28Z",
55
"published": "2026-01-26T21:30:36Z",
66
"aliases": [
77
"CVE-2026-1190"
@@ -44,6 +44,14 @@
4444
"type": "WEB",
4545
"url": "https://github.com/keycloak/keycloak/issues/45646"
4646
},
47+
{
48+
"type": "WEB",
49+
"url": "https://access.redhat.com/errata/RHSA-2026:3947"
50+
},
51+
{
52+
"type": "WEB",
53+
"url": "https://access.redhat.com/errata/RHSA-2026:3948"
54+
},
4755
{
4856
"type": "WEB",
4957
"url": "https://access.redhat.com/security/cve/CVE-2026-1190"

advisories/github-reviewed/2026/02/GHSA-fjf4-6f34-w64q/GHSA-fjf4-6f34-w64q.json

Lines changed: 9 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-fjf4-6f34-w64q",
4-
"modified": "2026-02-19T22:06:37Z",
4+
"modified": "2026-03-06T00:31:28Z",
55
"published": "2026-02-19T18:31:51Z",
66
"aliases": [
77
"CVE-2026-2733"
@@ -48,6 +48,14 @@
4848
"type": "WEB",
4949
"url": "https://github.com/keycloak/keycloak/commit/743ac24081b2c6da36aac3775147ec5b80c2861e"
5050
},
51+
{
52+
"type": "WEB",
53+
"url": "https://access.redhat.com/errata/RHSA-2026:3947"
54+
},
55+
{
56+
"type": "WEB",
57+
"url": "https://access.redhat.com/errata/RHSA-2026:3948"
58+
},
5159
{
5260
"type": "WEB",
5361
"url": "https://access.redhat.com/security/cve/CVE-2026-2733"

advisories/unreviewed/2026/02/GHSA-84fx-pwf3-7777/GHSA-84fx-pwf3-7777.json

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -54,7 +54,8 @@
5454
],
5555
"database_specific": {
5656
"cwe_ids": [
57-
"CWE-74"
57+
"CWE-74",
58+
"CWE-77"
5859
],
5960
"severity": "MODERATE",
6061
"github_reviewed": false,

advisories/unreviewed/2026/03/GHSA-226g-qx73-56w6/GHSA-226g-qx73-56w6.json

Lines changed: 36 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,36 @@
1+
{
2+
"schema_version": "1.4.0",
3+
"id": "GHSA-226g-qx73-56w6",
4+
"modified": "2026-03-06T00:31:35Z",
5+
"published": "2026-03-06T00:31:35Z",
6+
"aliases": [
7+
"CVE-2026-28709"
8+
],
9+
"details": "Unauthorized resource manipulation due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.",
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"
14+
}
15+
],
16+
"affected": [],
17+
"references": [
18+
{
19+
"type": "ADVISORY",
20+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28709"
21+
},
22+
{
23+
"type": "WEB",
24+
"url": "https://security-advisory.acronis.com/advisories/SEC-5889"
25+
}
26+
],
27+
"database_specific": {
28+
"cwe_ids": [
29+
"CWE-863"
30+
],
31+
"severity": "MODERATE",
32+
"github_reviewed": false,
33+
"github_reviewed_at": null,
34+
"nvd_published_at": "2026-03-06T00:16:11Z"
35+
}
36+
}

advisories/unreviewed/2026/03/GHSA-24jx-cr55-jpm5/GHSA-24jx-cr55-jpm5.json

Lines changed: 40 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,40 @@
1+
{
2+
"schema_version": "1.4.0",
3+
"id": "GHSA-24jx-cr55-jpm5",
4+
"modified": "2026-03-06T00:31:34Z",
5+
"published": "2026-03-06T00:31:34Z",
6+
"aliases": [
7+
"CVE-2025-11790"
8+
],
9+
"details": "Credentials are not deleted from Acronis Agent after plan revocation. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 41124.",
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N"
14+
}
15+
],
16+
"affected": [],
17+
"references": [
18+
{
19+
"type": "ADVISORY",
20+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-11790"
21+
},
22+
{
23+
"type": "WEB",
24+
"url": "https://security-advisory.acronis.com/SEC-8658"
25+
},
26+
{
27+
"type": "WEB",
28+
"url": "https://security-advisory.acronis.com/advisories/SEC-9386"
29+
}
30+
],
31+
"database_specific": {
32+
"cwe_ids": [
33+
"CWE-732"
34+
],
35+
"severity": "MODERATE",
36+
"github_reviewed": false,
37+
"github_reviewed_at": null,
38+
"nvd_published_at": "2026-03-06T00:16:09Z"
39+
}
40+
}

advisories/unreviewed/2026/03/GHSA-27mg-gqcr-w5x5/GHSA-27mg-gqcr-w5x5.json

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -30,7 +30,8 @@
3030
],
3131
"database_specific": {
3232
"cwe_ids": [
33-
"CWE-122"
33+
"CWE-122",
34+
"CWE-787"
3435
],
3536
"severity": "HIGH",
3637
"github_reviewed": false,

advisories/unreviewed/2026/03/GHSA-2cjg-466r-p8w4/GHSA-2cjg-466r-p8w4.json

Lines changed: 60 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,60 @@
1+
{
2+
"schema_version": "1.4.0",
3+
"id": "GHSA-2cjg-466r-p8w4",
4+
"modified": "2026-03-06T00:31:35Z",
5+
"published": "2026-03-06T00:31:34Z",
6+
"aliases": [
7+
"CVE-2026-3606"
8+
],
9+
"details": "A vulnerability has been found in Ettercap 0.8.4-Garofalo. Affected by this vulnerability is the function add_data_segment of the file src/ettercap/utils/etterfilter/ef_output.c of the component etterfilter. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.",
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"
14+
},
15+
{
16+
"type": "CVSS_V4",
17+
"score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
18+
}
19+
],
20+
"affected": [],
21+
"references": [
22+
{
23+
"type": "ADVISORY",
24+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3606"
25+
},
26+
{
27+
"type": "WEB",
28+
"url": "https://github.com/Ettercap/ettercap/issues/1297"
29+
},
30+
{
31+
"type": "WEB",
32+
"url": "https://github.com/Ettercap/ettercap"
33+
},
34+
{
35+
"type": "WEB",
36+
"url": "https://github.com/oneafter/0202/blob/main/et/repro"
37+
},
38+
{
39+
"type": "WEB",
40+
"url": "https://vuldb.com/?ctiid.349218"
41+
},
42+
{
43+
"type": "WEB",
44+
"url": "https://vuldb.com/?id.349218"
45+
},
46+
{
47+
"type": "WEB",
48+
"url": "https://vuldb.com/?submit.764648"
49+
}
50+
],
51+
"database_specific": {
52+
"cwe_ids": [
53+
"CWE-119"
54+
],
55+
"severity": "MODERATE",
56+
"github_reviewed": false,
57+
"github_reviewed_at": null,
58+
"nvd_published_at": "2026-03-05T22:16:25Z"
59+
}
60+
}

advisories/unreviewed/2026/03/GHSA-2qwf-43v4-fqqq/GHSA-2qwf-43v4-fqqq.json

Lines changed: 36 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,36 @@
1+
{
2+
"schema_version": "1.4.0",
3+
"id": "GHSA-2qwf-43v4-fqqq",
4+
"modified": "2026-03-06T00:31:35Z",
5+
"published": "2026-03-06T00:31:35Z",
6+
"aliases": [
7+
"CVE-2026-28727"
8+
],
9+
"details": "Local privilege escalation due to insecure Unix socket permissions. The following products are affected: Acronis Cyber Protect 17 (macOS) before build 41186, Acronis Cyber Protect Cloud Agent (macOS) before build 41124.",
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
14+
}
15+
],
16+
"affected": [],
17+
"references": [
18+
{
19+
"type": "ADVISORY",
20+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28727"
21+
},
22+
{
23+
"type": "WEB",
24+
"url": "https://security-advisory.acronis.com/advisories/SEC-9408"
25+
}
26+
],
27+
"database_specific": {
28+
"cwe_ids": [
29+
"CWE-276"
30+
],
31+
"severity": "HIGH",
32+
"github_reviewed": false,
33+
"github_reviewed_at": null,
34+
"nvd_published_at": "2026-03-06T00:16:13Z"
35+
}
36+
}

advisories/unreviewed/2026/03/GHSA-2xpv-2vp6-3v7h/GHSA-2xpv-2vp6-3v7h.json

Lines changed: 36 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,36 @@
1+
{
2+
"schema_version": "1.4.0",
3+
"id": "GHSA-2xpv-2vp6-3v7h",
4+
"modified": "2026-03-06T00:31:35Z",
5+
"published": "2026-03-06T00:31:35Z",
6+
"aliases": [
7+
"CVE-2026-28723"
8+
],
9+
"details": "Unauthorized report deletion due to insufficient access control. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.",
10+
"severity": [
11+
{
12+
"type": "CVSS_V3",
13+
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"
14+
}
15+
],
16+
"affected": [],
17+
"references": [
18+
{
19+
"type": "ADVISORY",
20+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28723"
21+
},
22+
{
23+
"type": "WEB",
24+
"url": "https://security-advisory.acronis.com/advisories/SEC-8486"
25+
}
26+
],
27+
"database_specific": {
28+
"cwe_ids": [
29+
"CWE-863"
30+
],
31+
"severity": "MODERATE",
32+
"github_reviewed": false,
33+
"github_reviewed_at": null,
34+
"nvd_published_at": "2026-03-06T00:16:13Z"
35+
}
36+
}

advisories/unreviewed/2026/03/GHSA-3cff-w54f-j96w/GHSA-3cff-w54f-j96w.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-3cff-w54f-j96w",
4-
"modified": "2026-03-05T09:30:34Z",
4+
"modified": "2026-03-06T00:31:30Z",
55
"published": "2026-03-05T09:30:34Z",
66
"aliases": [
77
"CVE-2026-28537"

0 commit comments

Comments
 (0)