From d0bc289e728c39835177a4aa29cd118de5c46726 Mon Sep 17 00:00:00 2001
From: Wenxin Jiang <wenxin_jiang@outlook.com>
Date: Mon, 20 Apr 2026 12:24:52 -0400
Subject: [PATCH] Improve GHSA-mwv9-gp5h-frr4

---
 .../2026/03/GHSA-mwv9-gp5h-frr4/GHSA-mwv9-gp5h-frr4.json  | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/advisories/github-reviewed/2026/03/GHSA-mwv9-gp5h-frr4/GHSA-mwv9-gp5h-frr4.json b/advisories/github-reviewed/2026/03/GHSA-mwv9-gp5h-frr4/GHSA-mwv9-gp5h-frr4.json
index 2c38763242cce..eb58d58fa943a 100644
--- a/advisories/github-reviewed/2026/03/GHSA-mwv9-gp5h-frr4/GHSA-mwv9-gp5h-frr4.json
+++ b/advisories/github-reviewed/2026/03/GHSA-mwv9-gp5h-frr4/GHSA-mwv9-gp5h-frr4.json
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-mwv9-gp5h-frr4",
-  "modified": "2026-03-12T16:38:15Z",
+  "modified": "2026-03-12T19:41:57Z",
   "published": "2026-03-12T16:38:15Z",
   "aliases": [],
   "summary": "Sveltejs devalue's `devalue.parse` and `devalue.unflatten` emit objects with `__proto__` own properties",
@@ -9,7 +9,7 @@
   "severity": [
     {
       "type": "CVSS_V4",
-      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U"
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N"
     }
   ],
   "affected": [
@@ -23,7 +23,7 @@
           "type": "ECOSYSTEM",
           "events": [
             {
-              "introduced": "0"
+              "introduced": "4.0.0"
             },
             {
               "fixed": "5.6.4"
@@ -54,7 +54,7 @@
     "cwe_ids": [
       "CWE-1321"
     ],
-    "severity": "LOW",
+    "severity": "MODERATE",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-12T16:38:15Z",
     "nvd_published_at": null