3 matches found
ROOT-APP-NPM-CVE-2025-5889 CVE-2025-5889 in @rootio/brace-expansion - Patched by Root
Root has patched CVE-2025-5889 in the @rootio/brace-expansion package for Root:npm. Multiple fixed versions available...
CVE-2025-5889 affecting package nodejs18 for versions less than 18.20.3-9
CVE-2025-5889 affecting package nodejs18 for versions less than 18.20.3-9. A patched version of the package is available...
kydra (>=1.0.10 <=1.0.11) potentially affected by CVE-2025-5889 via brace-expansion (=4.0.0)
brace-expansion NPM version =4.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on brace-expansion and may be impacted: - kydra =1.0.10, =1.0.11 Source cves: CVE-2025-5889 Source advisory: OSV:GHSA-V6H2-P8H4-QCJW...