4 matches found
Security Bulletin: IBM Edge Data Collector uses jws-3.2.2.tgz which are vulnerable to CVE-2025-65945.
Summary IBM Edge Data Collector uses jws-3.2.2.tgz which are vulnerable to CVE-2025-65945. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2025-65945 DESCRIPTION: auth0/node-jws is a JSON Web Signature implementation for Node.js. In...
CVE-2025-65945
creationtimestamp| type| source ---|---|--- 2025-12-17 21:00:04+00:00| published-proof-of-concept| Telegram/LegeDtMxRTlSxU-E4vRWPyR6r8eVZBSkTQd0bvp4AR24yPQ 2025-12-19 07:37:44+00:00| seen| https://bsky.app/profile/raptor.infosec.exchange.ap.brid.gy/post/3mad6lpicwob2 2026-02-13 15:00:08+00:00|...
CVE-2025-65945 vulnerabilities
Vulnerabilities for packages: sqlpad, langfuse, kubeflow-pipelines, kubeflow-centraldashboard, saf, renovate, jitsucom-jitsu...
00ld8nuivn (=2.1.0), 00rqiw31nd (=2.1.0) +3901 more potentially affected by CVE-2025-65945 via jws (>=0.0.2 <=3.2.2)
jws NPM version =0.0.2, =3.2.2 is affected by a known vulnerability. The following packages have a transitive dependency on jws and may be impacted: - 00ld8nuivn =2.1.0 - 00rqiw31nd =2.1.0 - 01dk01majk =2.1.0 - 02rjq8i863 =1.1.0 - 02vx8qsp01 =2.1.0 - 05y6tjgmws =1.1.0 - 066m7q8o0z =2.1.0 -...