Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/01 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-9308

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been found in yarnpkg Yarn up to 1.22.22. This impacts the function setOptions of the file src/util/request-manager.js. Such manipulation...

5.5CVSS5.5AI score0.00188EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2025/08/21 4:15 p.m.1 views

CVE-2025-9308

A vulnerability has been found in yarnpkg Yarn up to 1.22.22. This impacts the function setOptions of the file src/util/request-manager.js. Such manipulation leads to inefficient regular expression complexity. Local access is required to approach this attack. This vulnerability only affects...

5.5CVSS5.6AI score0.00188EPSS
Exploits1References5
AlpineLinux
AlpineLinux
added 2025/08/21 4:2 p.m.4 views

CVE-2025-9308

A vulnerability has been found in yarnpkg Yarn up to 1.22.22. This impacts the function setOptions of the file src/util/request-manager.js. Such manipulation leads to inefficient regular expression complexity. Local access is required to approach this attack. This vulnerability only affects...

5.5CVSS7.2AI score0.00188EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/08/21 4:2 p.m.2 views

CVE-2025-9308 yarnpkg Yarn request-manager.js setOptions redos

A vulnerability has been found in yarnpkg Yarn up to 1.22.22. This impacts the function setOptions of the file src/util/request-manager.js. Such manipulation leads to inefficient regular expression complexity. Local access is required to approach this attack. This vulnerability only affects...

4.8CVSS7.1AI score0.00188EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2025/08/21 4:2 p.m.6 views

06demo-1 (=1.0.0), 1337cli (>=0.0.1 <=0.0.2) +4534 more potentially affected by CVE-2025-9308 via yarn (>=0.15.1 <=2.4.3)

yarn NPM version =0.15.1, =0.0.1, =1.0.9, =0.0.2, =1.17.6-next.0, =1.0.0, =1.0.0, =0.0.3, =1.1.2, =1.1.5 and more Source cves: CVE-2025-9308 Source advisory: SNYK:JS-YARN-12143051...

5.5CVSS5.7AI score0.00188EPSS
Exploits1
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-9308 Malicious code in @sellerly-kit/limit-pills (npm)

The package @sellerly-kit/limit-pills was found to contain malicious code...

7.2AI score
Exploits0
Rows per page
Query Builder