CVE-2025-13204 in expr-eval정보

요약

\~에 의해 MITRE • 2025. 11. 14.

npm package `expr-eval` is vulnerable to Prototype Pollution. An attacker with access to express eval interface can use JavaScript prototype-based inheritance model to achieve arbitrary code execution. The npm expr-eval-fork package resolves this issue.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

책임이 있는

Certcc

예약하다

2025. 11. 14.

모더레이션

수락

항목

VDB-332506

EPSS

0.00459

출처

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!