CVE-2025-9288

Опубликовано: 03 сент. 2025

Источник: msrc

CVSS3: 7.7

EPSS Низкий

Описание

Missing type checks leading to hash rewind and passing on crafted data

EPSS

Процентиль: 17%

0.00053

Низкий

7.7 High

CVSS3

CVE-2025-9288

CVSS3: 9.1

ubuntu

2 месяца назад

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11.

CVE-2025-9288

CVSS3: 7.7

redhat

2 месяца назад

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11.

CVE-2025-9288

CVSS3: 9.1

nvd

2 месяца назад

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11.

CVE-2025-9288

CVSS3: 9.1

debian

2 месяца назад

Improper Input Validation vulnerability in sha.js allows Input Data Ma ...

GHSA-95m3-7q98-8xr5

CVSS3: 9.1

github

2 месяца назад

sha.js is missing type checks leading to hash rewind and passing on crafted data

EPSS

Процентиль: 17%

0.00053

Низкий

7.7 High

CVSS3