From 395c160482823c78db681c9774cb0c31b2cabc96 Mon Sep 17 00:00:00 2001 From: RespectTHz Date: Sun, 5 Jul 2026 07:11:48 +0000 Subject: [PATCH] Improve GHSA-mm5h-w49f-qxp5 --- .../GHSA-mm5h-w49f-qxp5.json | 27 ++++++++++++++----- 1 file changed, 20 insertions(+), 7 deletions(-) diff --git a/advisories/unreviewed/2026/07/GHSA-mm5h-w49f-qxp5/GHSA-mm5h-w49f-qxp5.json b/advisories/unreviewed/2026/07/GHSA-mm5h-w49f-qxp5/GHSA-mm5h-w49f-qxp5.json index af7e49a7db0e0..d1deeb5d6da4d 100644 --- a/advisories/unreviewed/2026/07/GHSA-mm5h-w49f-qxp5/GHSA-mm5h-w49f-qxp5.json +++ b/advisories/unreviewed/2026/07/GHSA-mm5h-w49f-qxp5/GHSA-mm5h-w49f-qxp5.json @@ -1,22 +1,35 @@ { "schema_version": "1.4.0", "id": "GHSA-mm5h-w49f-qxp5", - "modified": "2026-07-03T21:31:40Z", + "modified": "2026-07-03T21:31:47Z", "published": "2026-07-03T21:31:40Z", "aliases": [ "CVE-2026-58293" ], + "summary": "create a pull request", "details": "External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.", - "severity": [ + "severity": [], + "affected": [ { - "type": "CVSS_V3", - "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" + "package": { + "ecosystem": "Packagist", + "name": "Ecosystem" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "0" + } + ] + } + ] } ], - "affected": [], "references": [ { - "type": "ADVISORY", + "type": "PACKAGE", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-58293" }, { @@ -28,7 +41,7 @@ "cwe_ids": [ "CWE-73" ], - "severity": "HIGH", + "severity": null, "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2026-07-03T21:17:04Z"