Количество 2
Количество 2
CVE-2025-48935
Deno is a JavaScript, TypeScript, and WebAssembly runtime. Starting in version 2.2.0 and prior to versions 2.2.5, it is possible to bypass Deno's permission read/write db permission check by using `ATTACH DATABASE` statement. Version 2.2.5 contains a patch for the issue.
GHSA-8vxj-4cph-c596
Deno has --allow-read / --allow-write permission bypass in `node:sqlite`
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-48935 Deno is a JavaScript, TypeScript, and WebAssembly runtime. Starting in version 2.2.0 and prior to versions 2.2.5, it is possible to bypass Deno's permission read/write db permission check by using `ATTACH DATABASE` statement. Version 2.2.5 contains a patch for the issue. | CVSS3: 9.1 | 0% Низкий | 8 месяцев назад |
| GHSA-8vxj-4cph-c596 Deno has --allow-read / --allow-write permission bypass in `node:sqlite` | CVSS3: 9.1 | 0% Низкий | 8 месяцев назад |
Уязвимостей на страницу