Unknown · Phonenumber · CVE-2025-10954
**Name of the Vulnerable Software and Affected Versions**
github.com/nyaruka/phonenumbers versions prior to 1.2.2
**Description**
The package contains an issue related to improper validation of input syntax within the `phonenumbers.Parse()` function. Providing specifically crafted input can lead to a panic, resulting in a "slice bounds out of range" runtime error.
**Recommendations**
Update to version 1.2.2 or later.