From 89d7652fb2a9b2525b1459285da765df25cdd006 Mon Sep 17 00:00:00 2001
From: Al Snow <jasnow@hotmail.com>
Date: Sun, 9 Mar 2025 15:21:44 -0400
Subject: [PATCH] GHSA SYNC: 1 modified advisory

---
 gems/actionpack/CVE-2024-41128.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/gems/actionpack/CVE-2024-41128.yml b/gems/actionpack/CVE-2024-41128.yml
index 75f8877cfd..d762438264 100644
--- a/gems/actionpack/CVE-2024-41128.yml
+++ b/gems/actionpack/CVE-2024-41128.yml
@@ -33,6 +33,7 @@ description: |
   ## Credits
 
   Thanks to [scyoon](https://hackerone.com/scyoon) for the report and patches!
+cvss_v4: 6.6
 unaffected_versions:
   - "< 3.1.0"
 patched_versions:
@@ -42,5 +43,7 @@ patched_versions:
   - ">= 7.2.1.1"
 related:
   url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-41128
     - https://github.com/rails/rails/security/advisories/GHSA-x76w-6vjr-8xgj
+    - https://hackerone.com/reports/2872502
     - https://github.com/advisories/GHSA-x76w-6vjr-8xgj