Publish Advisories

GHSA-6w2p-cgh8-m9q9
GHSA-v2q6-5m4m-pr58
GHSA-g3x6-r9w9-mcxx
GHSA-fcj3-9fc8-9489
GHSA-2wh3-fp99-rprg
GHSA-683j-3v25-h2qg
GHSA-6hw8-whvq-hmwp
GHSA-7525-4vpp-3gq2
GHSA-grg9-576x-5279
GHSA-h9mg-jc7j-2rr2
GHSA-jjg2-f6h2-x2p6
GHSA-p4f9-mqjc-2hrf
GHSA-qppv-c8jg-w628
GHSA-r448-hfqj-rxrc
GHSA-rwr4-qw9c-fjxm
GHSA-w5m4-587r-x2v2

Author: advisory-database[bot]

advisories/unreviewed/2023/02/GHSA-6w2p-cgh8-m9q9/GHSA-6w2p-cgh8-m9q9.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-6w2p-cgh8-m9q9",
-  "modified": "2024-03-21T03:34:45Z",
+  "modified": "2025-06-19T00:31:02Z",
   "published": "2023-02-13T21:31:04Z",
   "aliases": [
     "CVE-2023-25718"
@@ -23,6 +23,10 @@
       "type": "WEB",
       "url": "https://cybir.com/2022/cve/connectwise-control-dns-spoofing-poc"
     },
+    {
+      "type": "WEB",
+      "url": "https://m.youtube.com/watch?v=fbNVUgmstSc&pp=0gcJCf0Ao7VqN5tD"
+    },
     {
       "type": "WEB",
       "url": "https://www.connectwise.com"

advisories/unreviewed/2023/02/GHSA-v2q6-5m4m-pr58/GHSA-v2q6-5m4m-pr58.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-v2q6-5m4m-pr58",
-  "modified": "2025-03-21T15:31:09Z",
+  "modified": "2025-06-19T00:31:03Z",
   "published": "2023-02-13T21:31:04Z",
   "aliases": [
     "CVE-2023-25719"
@@ -23,6 +23,10 @@
       "type": "WEB",
       "url": "https://cybir.com/2022/cve/hijacking-connectwise-control-and-ddos"
     },
+    {
+      "type": "WEB",
+      "url": "https://m.youtube.com/watch?v=fbNVUgmstSc&pp=0gcJCf0Ao7VqN5tD"
+    },
     {
       "type": "WEB",
       "url": "https://www.connectwise.com"

advisories/unreviewed/2025/04/GHSA-g3x6-r9w9-mcxx/GHSA-g3x6-r9w9-mcxx.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-g3x6-r9w9-mcxx",
-  "modified": "2025-04-18T00:30:44Z",
+  "modified": "2025-06-19T00:31:04Z",
   "published": "2025-04-18T00:30:44Z",
   "aliases": [
     "CVE-2025-3509"
@@ -23,17 +23,37 @@
       "type": "WEB",
       "url": "https://docs.github.com/en/enterprise-server@3.13/admin/release-notes#3.13.14"
     },
+    {
+      "type": "WEB",
+      "url": "https://docs.github.com/en/enterprise-server@3.13/admin/release-notes#3.13.16"
+    },
     {
       "type": "WEB",
       "url": "https://docs.github.com/en/enterprise-server@3.14/admin/release-notes#3.14.11"
     },
+    {
+      "type": "WEB",
+      "url": "https://docs.github.com/en/enterprise-server@3.14/admin/release-notes#3.14.13"
+    },
     {
       "type": "WEB",
       "url": "https://docs.github.com/en/enterprise-server@3.15/admin/release-notes#3.15.6"
     },
+    {
+      "type": "WEB",
+      "url": "https://docs.github.com/en/enterprise-server@3.15/admin/release-notes#3.15.8"
+    },
     {
       "type": "WEB",
       "url": "https://docs.github.com/en/enterprise-server@3.16/admin/release-notes#3.16.2"
+    },
+    {
+      "type": "WEB",
+      "url": "https://docs.github.com/en/enterprise-server@3.16/admin/release-notes#3.16.4"
+    },
+    {
+      "type": "WEB",
+      "url": "https://docs.github.com/en/enterprise-server@3.17/admin/release-notes#3.17.1"
     }
   ],
   "database_specific": {

advisories/unreviewed/2025/05/GHSA-fcj3-9fc8-9489/GHSA-fcj3-9fc8-9489.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-fcj3-9fc8-9489",
-  "modified": "2025-05-27T21:32:17Z",
+  "modified": "2025-06-19T00:31:04Z",
   "published": "2025-05-27T21:32:17Z",
   "aliases": [
     "CVE-2025-5198"

advisories/unreviewed/2025/06/GHSA-2wh3-fp99-rprg/GHSA-2wh3-fp99-rprg.json

@@ -0,0 +1,34 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-2wh3-fp99-rprg",
+  "modified": "2025-06-19T00:31:05Z",
+  "published": "2025-06-19T00:31:05Z",
+  "aliases": [
+    "CVE-2025-23121"
+  ],
+  "details": "A vulnerability allowing remote code execution (RCE) on the Backup Server by an authenticated domain user",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-23121"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.veeam.com/kb4743"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-06-19T00:15:21Z"
+  }
+}

advisories/unreviewed/2025/06/GHSA-683j-3v25-h2qg/GHSA-683j-3v25-h2qg.json

@@ -0,0 +1,50 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-683j-3v25-h2qg",
+  "modified": "2025-06-19T00:31:06Z",
+  "published": "2025-06-19T00:31:06Z",
+  "aliases": [
+    "CVE-2025-23172"
+  ],
+  "details": "The Versa Director SD-WAN orchestration platform includes a Webhook feature for sending notifications to external HTTP endpoints. However, the \"Add Webhook\" and \"Test Webhook\" functionalities can be abused by an authenticated user to send crafted HTTP requests to localhost. This can be leveraged to execute commands on behalf of the versa user, who has sudo privileges, potentially leading to privilege escalation or remote code execution.  \n \nExploitation Status: \n\nVersa Networks is not aware of any reported instance where this vulnerability was exploited. Proof of concept for this vulnerability has been disclosed by third party security researchers.  \n\nWorkarounds or Mitigation: \n\nThere are no workarounds to disable the GUI option. Versa recommends that Director be upgraded to one of the remediated software versions.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-23172"
+    },
+    {
+      "type": "WEB",
+      "url": "https://security-portal.versa-networks.com/emailbulletins/68526e7bdc94d6b9f2faf71b"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000024323-release-21-2-3"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000025680-release-22-1-2"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000026033-release-22-1-3"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000026708-release-22-1-4"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-06-19T00:15:21Z"
+  }
+}

advisories/unreviewed/2025/06/GHSA-6hw8-whvq-hmwp/GHSA-6hw8-whvq-hmwp.json

@@ -0,0 +1,50 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-6hw8-whvq-hmwp",
+  "modified": "2025-06-19T00:31:06Z",
+  "published": "2025-06-19T00:31:06Z",
+  "aliases": [
+    "CVE-2025-23170"
+  ],
+  "details": "The Versa Director SD-WAN orchestration platform includes functionality to initiate SSH sessions to remote CPEs and the Director shell via Shell-In-A-Box. The underlying Python script, shell-connect.py, is vulnerable to command injection through the user argument. This allows an attacker to execute arbitrary commands on the system. \n\nExploitation Status: \n\nVersa Networks is not aware of any reported instance where this vulnerability was exploited. Proof of concept for this vulnerability has been disclosed by third party security researchers.  \n\nWorkarounds or Mitigation: \n\nThere are no workarounds to disable the GUI option. Versa recommends that Director be upgraded to one of the remediated software versions.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-23170"
+    },
+    {
+      "type": "WEB",
+      "url": "https://security-portal.versa-networks.com/emailbulletins/68526bc7dc94d6b9f2faf717"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000024323-release-21-2-3"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000025680-release-22-1-2"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000026033-release-22-1-3"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000026708-release-22-1-4"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-06-19T00:15:21Z"
+  }
+}

advisories/unreviewed/2025/06/GHSA-7525-4vpp-3gq2/GHSA-7525-4vpp-3gq2.json

@@ -0,0 +1,34 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-7525-4vpp-3gq2",
+  "modified": "2025-06-19T00:31:07Z",
+  "published": "2025-06-19T00:31:07Z",
+  "aliases": [
+    "CVE-2025-24287"
+  ],
+  "details": "A vulnerability allowing local system users to modify directory contents, allowing for arbitrary code execution on the local system with elevated permissions.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24287"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.veeam.com/kb4743"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-06-19T00:15:22Z"
+  }
+}

advisories/unreviewed/2025/06/GHSA-grg9-576x-5279/GHSA-grg9-576x-5279.json

@@ -0,0 +1,50 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-grg9-576x-5279",
+  "modified": "2025-06-19T00:31:05Z",
+  "published": "2025-06-19T00:31:05Z",
+  "aliases": [
+    "CVE-2025-23169"
+  ],
+  "details": "The Versa Director SD-WAN orchestration platform allows customization of the user interface, including the header, footer, and logo. However, the input provided for these customizations is not properly validated or sanitized, allowing a malicious user to inject and store cross-site scripting (XSS) payloads. \n\nExploitation Status: \n\nVersa Networks is not aware of any reported instance where this vulnerability was exploited. Proof of concept for this vulnerability has been disclosed by third party security researchers.  \n\nWorkarounds or Mitigation: \n\nThere are no workarounds to disable the GUI option. Versa recommends that Director be upgraded to one of the remediated software versions.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-23169"
+    },
+    {
+      "type": "WEB",
+      "url": "https://security-portal.versa-networks.com/emailbulletins/68526a08dc94d6b9f2faf716"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000024323-release-21-2-3"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000025680-release-22-1-2"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000026033-release-22-1-3"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000026708-release-22-1-4"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-06-19T00:15:21Z"
+  }
+}

advisories/unreviewed/2025/06/GHSA-h9mg-jc7j-2rr2/GHSA-h9mg-jc7j-2rr2.json

@@ -0,0 +1,58 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-h9mg-jc7j-2rr2",
+  "modified": "2025-06-19T00:31:05Z",
+  "published": "2025-06-19T00:31:05Z",
+  "aliases": [
+    "CVE-2024-45208"
+  ],
+  "details": "The Versa Director SD-WAN orchestration platform which makes use of Cisco NCS application service. Active and Standby Directors communicate over TCP ports 4566 and 4570 to exchange High Availability (HA) information using a shared password. Affected versions of Versa Director bound to these ports on all interfaces. An attacker that can access the Versa Director could access the NCS service on port 4566 and exploit it to perform unauthorized administrative actions and perform remote code execution. Customers are recommended to follow the hardening guide.\n\nVersa Networks is not aware of any reported instance where this vulnerability was exploited. Proof of concept for this vulnerability has been disclosed by third party security researchers.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45208"
+    },
+    {
+      "type": "WEB",
+      "url": "https://docs.versa-networks.com/Solutions/System_Hardening/Perform_Manual_Hardening_for_Versa_Director#Harden_Port_4566"
+    },
+    {
+      "type": "WEB",
+      "url": "https://security-portal.versa-networks.com/emailbulletins/68526c3cdc94d6b9f2faf718"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000024323-release-21-2-3"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000025680-release-22-1-2"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000026033-release-22-1-3"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000026708-release-22-1-4"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.versa-networks.com/support/solutions/articles/23000026724-versa-director-ha-port-exploit-discovery-remediation"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-06-19T00:15:21Z"
+  }
+}