Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2022/05/GHSA-326j-j9mx-gf84/GHSA-326j-j9mx-gf84.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-326j-j9mx-gf84",
-  "modified": "2022-10-01T00:00:27Z",
+  "modified": "2026-04-14T09:30:36Z",
   "published": "2022-05-24T19:01:58Z",
   "aliases": [
     "CVE-2020-26139"
@@ -19,6 +19,14 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26139"
     },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-913875.html"
+    },
     {
       "type": "WEB",
       "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf"

advisories/unreviewed/2022/05/GHSA-89fj-xvf5-gc78/GHSA-89fj-xvf5-gc78.json

@@ -1,19 +1,32 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-89fj-xvf5-gc78",
-  "modified": "2022-05-24T19:01:57Z",
+  "modified": "2026-04-14T09:30:37Z",
   "published": "2022-05-24T19:01:57Z",
   "aliases": [
     "CVE-2020-26144"
   ],
   "details": "An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC1042 (i.e., LLC/SNAP) header for EAPOL. An adversary can abuse this to inject arbitrary network packets independent of the network configuration.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26144"
     },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-913875.html"
+    },
     {
       "type": "WEB",
       "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf"

advisories/unreviewed/2022/05/GHSA-c49c-jx24-458g/GHSA-c49c-jx24-458g.json

@@ -1,19 +1,32 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-c49c-jx24-458g",
-  "modified": "2022-05-24T19:01:57Z",
+  "modified": "2026-04-14T09:30:37Z",
   "published": "2022-05-24T19:01:57Z",
   "aliases": [
     "CVE-2020-26143"
   ],
   "details": "An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26143"
     },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-913875.html"
+    },
     {
       "type": "WEB",
       "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf"

advisories/unreviewed/2022/05/GHSA-c6qp-cf89-h54c/GHSA-c6qp-cf89-h54c.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-c6qp-cf89-h54c",
-  "modified": "2022-05-24T19:01:57Z",
+  "modified": "2026-04-14T09:30:37Z",
   "published": "2022-05-24T19:01:57Z",
   "aliases": [
     "CVE-2020-26145"
@@ -19,6 +19,10 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26145"
     },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-913875.html"
+    },
     {
       "type": "WEB",
       "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf"

advisories/unreviewed/2022/05/GHSA-mq8v-785f-4pmx/GHSA-mq8v-785f-4pmx.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-mq8v-785f-4pmx",
-  "modified": "2022-05-24T19:01:58Z",
+  "modified": "2026-04-14T09:30:37Z",
   "published": "2022-05-24T19:01:58Z",
   "aliases": [
     "CVE-2020-26141"
@@ -19,6 +19,14 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26141"
     },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-913875.html"
+    },
     {
       "type": "WEB",
       "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf"

advisories/unreviewed/2022/05/GHSA-pwgj-jw9h-pg74/GHSA-pwgj-jw9h-pg74.json

@@ -1,19 +1,32 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-pwgj-jw9h-pg74",
-  "modified": "2022-05-24T19:01:57Z",
+  "modified": "2026-04-14T09:30:38Z",
   "published": "2022-05-24T19:01:57Z",
   "aliases": [
     "CVE-2020-26146"
   ],
   "details": "An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfiltrate selected fragments. This vulnerability is exploitable when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used. Note that WEP is vulnerable to this attack by design.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26146"
     },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-913875.html"
+    },
     {
       "type": "WEB",
       "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf"

advisories/unreviewed/2022/05/GHSA-px4f-q3pw-j682/GHSA-px4f-q3pw-j682.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-px4f-q3pw-j682",
-  "modified": "2022-07-13T00:00:50Z",
+  "modified": "2026-04-14T09:30:37Z",
   "published": "2022-05-24T19:01:58Z",
   "aliases": [
     "CVE-2020-26140"
@@ -19,6 +19,14 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26140"
     },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-913875.html"
+    },
     {
       "type": "WEB",
       "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf"
@@ -46,6 +54,7 @@
   ],
   "database_specific": {
     "cwe_ids": [
+      "CWE-327",
       "CWE-74"
     ],
     "severity": "MODERATE",

advisories/unreviewed/2022/05/GHSA-qrgr-qfr9-4xfh/GHSA-qrgr-qfr9-4xfh.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-qrgr-qfr9-4xfh",
-  "modified": "2022-07-13T00:00:49Z",
+  "modified": "2026-04-14T09:30:33Z",
   "published": "2022-05-24T19:01:58Z",
   "aliases": [
     "CVE-2020-24588"
@@ -19,6 +19,14 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-24588"
     },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-913875.html"
+    },
     {
       "type": "WEB",
       "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf"

advisories/unreviewed/2022/08/GHSA-9r25-j996-8h38/GHSA-9r25-j996-8h38.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-9r25-j996-8h38",
-  "modified": "2022-08-18T00:00:18Z",
+  "modified": "2026-04-14T09:30:41Z",
   "published": "2022-08-11T00:00:43Z",
   "aliases": [
     "CVE-2022-36325"
@@ -19,6 +19,14 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-36325"
     },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-710008.html"
+    },
     {
       "type": "WEB",
       "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-710008.pdf"

advisories/unreviewed/2022/08/GHSA-hm3h-qvm3-r8qv/GHSA-hm3h-qvm3-r8qv.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-hm3h-qvm3-r8qv",
-  "modified": "2022-08-18T00:00:18Z",
+  "modified": "2026-04-14T09:30:41Z",
   "published": "2022-08-11T00:00:42Z",
   "aliases": [
     "CVE-2022-36324"
@@ -19,6 +19,14 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-36324"
     },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://cert-portal.siemens.com/productcert/html/ssa-710008.html"
+    },
     {
       "type": "WEB",
       "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-710008.pdf"