PT-2025-13022 · Npm · @Mozilla/Readability

Published

2025-03-26

·

Updated

2025-03-26

·

CVE-2025-2792

CVSS v4.0

2.9

Low

VectorAV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P
Specially crafted titles may have caused a regular expression to excessively backtrack and cause a local denial of service.
Additional Details are [available at Bugzilla](https://bugzilla.mozilla.org/show bug.cgi?id=1948833)
Credit: DayShift

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-1333

Related Identifiers

CVE-2025-2792
GHSA-3P6V-HRG8-8QJ7

Affected Products

@Mozilla/Readability