Lucene search
K

4 matches found

F5 Networks
F5 Networks
added 2025/11/21 4:19 p.m.9 views

K000157932: NPM vulnerabilities CVE-2025-59037, CVE-2025-59038, and CVE-2025-59039

Security Advisory Description CVE-2025-59037 DuckDB is an analytical in-process SQL database management system. On 08 September 2025, the DuckDB distribution for Node.js on npm was compromised with malware along with several other packages. An attacker published new versions of four of DuckDB's...

9.3CVSS7.2AI score0.00349EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/09/11 11:24 p.m.15 views

CVE-2025-59039

Prebid Universal Creative PUC is a JavaScript API to render multiple formats. Npm users of PUC 1.17.3 or PUC latest were briefly affected by crypto-related malware. This includes the extremely popular jsdelivr hosting of this file. The maintainers of PUC unpublished version 1.17.3. Users should s...

9.3CVSS6.8AI score0.00312EPSS
Exploits0References1
Circl
Circl
added 2025/09/10 1:23 a.m.28 views

CVE-2025-59039

creationtimestamp| type| source ---|---|--- 2025-09-10 01:23:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyh355hdr32p 2025-09-10 13:18:37+00:00| seen| https://vulnerability.circl.lu/bundle/289697c2-61dc-410f-8343-aba0be87728d...

9.3CVSS5.3AI score0.00312EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/09 10:23 p.m.49 views

CVE-2025-59039 Prebid Universal Creative on npm briefly compromised

Prebid Universal Creative PUC is a JavaScript API to render multiple formats. Npm users of PUC 1.17.3 or PUC latest were briefly affected by crypto-related malware. This includes the extremely popular jsdelivr hosting of this file. The maintainers of PUC unpublished version 1.17.3. Users should s...

9.3CVSS0.00312EPSS
Exploits0References2
Rows per page
Query Builder