Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/01/30 8:28 a.m.12 views

Security Bulletin: IBM Maximo Application Suite - Visual Inspection component uses node-forge which is vulnerable to CVE-2025-66030, CVE-2025-66031

Summary IBM Maximo Application Suite - Visual Inspection component uses node-forge which is vulnerable to CVE-2025-66030, CVE-2025-66031, This bulletin contains information regarding the vulnerability and its remediation. Vulnerability Details CVEID:CVE-2025-66030 DESCRIPTION: Forge also called...

8.7CVSS5.7AI score0.00373EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/06 10:52 p.m.15 views

CVE-2025-66030

Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be...

6.3CVSS6.9AI score0.00276EPSS
Exploits0References5
Wolfi
Wolfi
added 2025/12/01 7:48 p.m.8 views

CVE-2025-66030 vulnerabilities

Vulnerabilities for packages: kubeflow-centraldashboard, kubeflow-pipelines, opensearch-dashboards, jitsucom-jitsu, argo-workflows...

6.3CVSS6.1AI score0.00276EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/11/26 10:43 p.m.7 views

-fides-amor-et-lux (=1.0.0), 20_nogo (>=1.0.0 <=1.1.4) +1075 more potentially affected by CVE-2025-66030 via node-forge (>=1.0.0 <=1.3.1)

node-forge NPM version =1.0.0, =1.0.0, =7.10.2-para-beta.0, =1.3.0-patch.0, =1.1.0, =1.2.1, =1.0.0, =1.2.6, =1.23.2, =3.0.0-alpha.0, =3.1.0, =3.12.0-rc.0 and more Source cves: CVE-2025-66030 Source advisory: SNYK:JS-NODEFORGE-14125097...

6.3CVSS5.8AI score0.00276EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/11/26 10:23 p.m.9 views

CVE-2025-66030

Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be...

6.3CVSS4.8AI score0.00276EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/11/26 10:7 p.m.6 views

-fides-amor-et-lux (=1.0.0), -tompan-reacttemplate (>=1.0.1 <=1.1.0) +41716 more potentially affected by CVE-2025-66030 via node-forge (>=0.10.0 <=1.3.1)

node-forge NPM version =0.10.0, =1.0.1, =1.1.0 - 00ld8nuivn =2.1.0 - 00rqiw31nd =2.1.0 - 01dk01majk =2.1.0 - 02rjq8i863 =1.1.0 - 02vx8qsp01 =2.1.0 - 05y6tjgmws =1.1.0 - 066m7q8o0z =2.1.0 - 06buj9h3su =2.1.0 - 06dre15t8r =2.1.0 - 0726react =0.1.1 - 07fgapmu9l =1.1.0 - 07t2xvu6t4 =2.1.0 - 0850u4lkp...

6.3CVSS5.8AI score0.00276EPSS
Exploits0
Rows per page
Query Builder