2 matches found
CVE-2025-64767
CVE-2025-64767 (hpke-js) affects hpke-js prior to version 1.7.5, where the public SenderContext Seal() API can race and reuse the same AEAD nonce for multiple calls. This nonce reuse can lead to complete loss of confidentiality and integrity of produced messages. The issue is fixed in version 1.7...
Exploit for CVE-2025-6934
CVE-2025-6934 unauthenticated privilege escalation in opal e...