Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/08/08 12:29 a.m.12 views

CVE-2025-54884

Vision UI is a collection of enterprise-grade, dependency-free modules for modern web projects. In versions 1.4.0 and below, the generateSecureId and getSecureRandomInt functions in security-kit versions prior to 3.5.0 packaged in Vision UI 1.4.0 and below are vulnerable to Denial of Service DoS...

8.7CVSS6.3AI score0.00371EPSS
Exploits0References1
CVE
CVE
added 2025/08/05 11:37 p.m.23 views

CVE-2025-54884

CVE-2025-54884 applies to Vision UI 1.4.0 and below, where security-kit pre-3.5.0 functions generateSecureId and getSecureRandomInt can trigger memory exhaustion under DoS scenarios. Specifically, generateSecureId(length) uses length to size a Uint8Array, enabling excessive memory allocation via ...

8.7CVSS6.4AI score0.00371EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/05 11:37 p.m.4 views

CVE-2025-54884 Vision UI security-kit.js: Potential Uncontrolled Resource Allocation Vulnerability

Vision UI is a collection of enterprise-grade, dependency-free modules for modern web projects. In versions 1.4.0 and below, the generateSecureId and getSecureRandomInt functions in security-kit versions prior to 3.5.0 packaged in Vision UI 1.4.0 and below are vulnerable to Denial of Service DoS...

8.7CVSS6.4AI score0.00371EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/05 11:37 p.m.10 views

CVE-2025-54884 Vision UI security-kit.js: Potential Uncontrolled Resource Allocation Vulnerability

Vision UI is a collection of enterprise-grade, dependency-free modules for modern web projects. In versions 1.4.0 and below, the generateSecureId and getSecureRandomInt functions in security-kit versions prior to 3.5.0 packaged in Vision UI 1.4.0 and below are vulnerable to Denial of Service DoS...

8.7CVSS0.00371EPSS
Exploits0References3
Rows per page
Query Builder