From be99dbb84e41ad213dc93a2e8350bd804824ae20 Mon Sep 17 00:00:00 2001
From: Viktor Lobanov <67382631+BlazingWizard@users.noreply.github.com>
Date: Thu, 25 Jul 2024 12:15:40 +0300
Subject: [PATCH] Improve GHSA-x3m3-4wpv-5vgc

---
 .../07/GHSA-x3m3-4wpv-5vgc/GHSA-x3m3-4wpv-5vgc.json  | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/advisories/github-reviewed/2024/07/GHSA-x3m3-4wpv-5vgc/GHSA-x3m3-4wpv-5vgc.json b/advisories/github-reviewed/2024/07/GHSA-x3m3-4wpv-5vgc/GHSA-x3m3-4wpv-5vgc.json
index 469cfaa3ddb5ec..efae29d82a5064 100644
--- a/advisories/github-reviewed/2024/07/GHSA-x3m3-4wpv-5vgc/GHSA-x3m3-4wpv-5vgc.json
+++ b/advisories/github-reviewed/2024/07/GHSA-x3m3-4wpv-5vgc/GHSA-x3m3-4wpv-5vgc.json
@@ -9,10 +9,7 @@
   "summary": "jrburke requirejs vulnerable to prototype pollution",
   "details": "jrburke requirejs v2.3.6 was discovered to contain a prototype pollution via the function `s.contexts._.configure`. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.",
   "severity": [
-    {
-      "type": "CVSS_V4",
-      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P"
-    }
+
   ],
   "affected": [
     {
@@ -28,11 +25,14 @@
               "introduced": "0"
             },
             {
-              "last_affected": "2.3.6"
+              "fixed": "2.3.7"
             }
           ]
         }
-      ]
+      ],
+      "database_specific": {
+        "last_known_affected_version_range": "<= 2.3.6"
+      }
     }
   ],
   "references": [