Lucene search
K

9 matches found

OSV
OSV
added 2026/06/10 12:43 p.m.4 views

ROOT-APP-NPM-CVE-2025-12758 CVE-2025-12758 in @rootio/validator - Patched by Root

Root has patched CVE-2025-12758 in the @rootio/validator package for Root:npm. Multiple fixed versions available...

8.7CVSS5.4AI score0.00454EPSS
Exploits2
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/10 7:18 a.m.11 views

Security Bulletin: IBM Event Endpoint Management is vulnerable to improper input validation( CVE-2025-12758)

Summary IBM Event Endpoint Management is vulnerable to improper input validation due to incorrect Unicode string length calculation. Vulnerability Details CVEID:CVE-2025-12758 DESCRIPTION: Versions of the package validator before 13.15.22 are vulnerable to Incomplete Filtering of One or More...

8.7CVSS5.8AI score0.00454EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/01/28 3:35 p.m.18 views

Security Bulletin: User Entity Behavior Analytics App for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. User Entity Behavior Analytics App for IBM QRadar SIEM has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2025-12758 DESCRIPTION: Versions of t...

8.7CVSS6.2AI score0.03307EPSS
Exploits7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/19 4:34 a.m.5 views

Security Bulletin: IBM App Connect Enterprise is vulnerable to Incomplete Filtering of One or More Instances of Special Elements due to node module validator (CVE-2025-12758)

Summary IBM App Connect Enterprise Connector Discovery and OpenAPI Editor, IBM App Connect Enterprise Discovery Connectors and IBM App Connect Enterprise runtime are vulnerable to Incomplete Filtering of One or More Instances of Special Elements due to node module validator. Vulnerability Details...

8.7CVSS6.8AI score0.00454EPSS
Exploits2Affected Software1
GithubExploit
GithubExploit
added 2025/12/11 3:10 a.m.436 views

Exploit for CVE-2025-12758

CVE-2025-12758: Validator.js isLength Unicode Variation Sele...

8.7CVSS6.8AI score0.00454EPSS
Exploits2
Wolfi
Wolfi
added 2025/12/08 7:48 p.m.8 views

CVE-2025-12758 vulnerabilities

Vulnerabilities for packages: sqlpad, saf...

8.7CVSS7AI score0.00454EPSS
Exploits2
Circl
Circl
added 2025/11/27 6:39 a.m.4 views

CVE-2025-12758

creationtimestamp| type| source ---|---|--- 2025-11-27 06:39:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6lr4xnlmd2j 2026-01-28 15:05:42+00:00| seen| https://bsky.app/profile/echojs.bsky.social/post/3mdikdhgfka22 2026-01-28 18:05:08+00:00| seen|...

8.7CVSS6.4AI score0.00454EPSS
Exploits2References4
vulnersOsv
vulnersOsv
added 2025/11/27 6:31 a.m.5 views

01homework (>=1.0.0 <=1.0.1), 0xauth (>=0.0.2 <=0.0.6) +7182 more potentially affected by CVE-2025-12758 via validator (>=0.1.8 <=13.15.20)

validator NPM version =0.1.8, =1.0.0, =0.0.2, =0.0.6, =0.0.1, =1.0.0, =4.11.0, =0.0.0-canary.0, =0.0.2, =0.0.1, =0.1.0, =0.8.0, =1.0.17, =1.0.33 and more Source cves: CVE-2025-12758 Source advisory: OSV:GHSA-VGHF-HV5Q-VC2G...

8.7CVSS7AI score0.00454EPSS
Exploits2
NVD
NVD
added 2025/11/27 5:16 a.m.4 views

CVE-2025-12758

Versions of the package validator before 13.15.22 are vulnerable to Incomplete Filtering of One or More Instances of Special Elements in the isLength function that does not take into account Unicode variation selectors \uFE0F, \uFE0E appearing in a sequence which lead to improper string length...

8.7CVSS0.00454EPSS
Exploits2References4
Rows per page
Query Builder