Merge pull request #5686 from github/kenhys-GHSA-wrxf-x8rm-6ggg

advisory-database[bot] · web-flow · commit c8659d158390 · 2025-06-05T20:34:11.000Z
diff --git a/advisories/github-reviewed/2023/04/GHSA-wrxf-x8rm-6ggg/GHSA-wrxf-x8rm-6ggg.json b/advisories/github-reviewed/2023/04/GHSA-wrxf-x8rm-6ggg/GHSA-wrxf-x8rm-6ggg.json
@@ -1,39 +1,20 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-wrxf-x8rm-6ggg",
-  "modified": "2025-05-22T15:44:52Z",
+  "modified": "2025-05-22T15:44:54Z",
   "published": "2023-04-04T15:30:27Z",
   "aliases": [
     "CVE-2020-21514"
   ],
   "summary": "Fluent Fluentd and Fluent-ui use default password",
-  "details": "An issue was discovered in Fluent Fluentd v.1.8.0 and Fluent-ui v.1.2.2 that allows attackers to gain escilated privileges and execute arbitrary code due to use of a default password.",
+  "details": "An issue was discovered in Fluent-ui v.1.2.2 that allows attackers to gain escilated privileges and execute arbitrary code due to use of a default password.",
   "severity": [
     {
       "type": "CVSS_V3",
       "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
     }
   ],
   "affected": [
-    {
-      "package": {
-        "ecosystem": "RubyGems",
-        "name": "fluentd"
-      },
-      "ranges": [
-        {
-          "type": "ECOSYSTEM",
-          "events": [
-            {
-              "introduced": "0"
-            },
-            {
-              "last_affected": "1.8.0"
-            }
-          ]
-        }
-      ]
-    },
     {
       "package": {
         "ecosystem": "RubyGems",
@@ -61,7 +42,7 @@
     },
     {
       "type": "WEB",
-      "url": "https://github.com/fluent/fluentd/issues/2722"
+      "url": "https://github.com/fluent/fluentd-ui/issues/2722"
     },
     {
       "type": "WEB",
