Update CVE-2025-27221 advisory (#961)

jasnow · web-flow · commit 2954f4cbfc6f · 2026-01-15T11:26:47.000-08:00
diff --git a/gems/uri/CVE-2025-27221.yml b/gems/uri/CVE-2025-27221.yml
@@ -30,13 +30,15 @@ description: |
 
   Thanks to Tsubasa Irisawa (lambdasawa) for discovering this issue.
   Also thanks to nobu for additional fixes of this vulnerability.
-cvss_v3: 3.2
+cvss_v3: 5.3
 patched_versions:
   - "~> 0.11.3"
   - "~> 0.12.4"
   - "~> 0.13.2"
   - ">= 1.0.3"
 related:
   url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-27221
     - https://www.cve.org/CVERecord?id=CVE-2025-27221
     - https://www.ruby-lang.org/en/news/2025/02/26/security-advisories
+    - https://github.com/advisories/GHSA-22h5-pq3x-2gf2
