From 544b1d983b60002b6105b98941794dd5260a0647 Mon Sep 17 00:00:00 2001
From: Al Snow <43523+jasnow@users.noreply.github.com>
Date: Sat, 16 May 2026 07:57:03 -0400
Subject: [PATCH] Added cvss_v3 field/value

---
 gems/decidim-core/CVE-2026-23891.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/gems/decidim-core/CVE-2026-23891.yml b/gems/decidim-core/CVE-2026-23891.yml
index ea0392327b..d9e82716ca 100644
--- a/gems/decidim-core/CVE-2026-23891.yml
+++ b/gems/decidim-core/CVE-2026-23891.yml
@@ -31,6 +31,7 @@ description: |
   [octree](https://octree.ch/) and made by
   [Secu Labs](https://seculabs.ch/) against Decidim financed
   by the city of Lausanne (Switzerland).
+cvss_v3: 8.7
 patched_versions:
   - "~> 0.30.5"
   - ">= 0.31.1"