CVE-2025-32014
estree-util-value-to-estree converts a JavaScript value to an ESTree expression. When generating an ESTree from a value with a property named __proto__, valueToEstree would generate an object that specifies a prototype instead. This vulnerability is fixed in 3.3.3.
- S
Sebastian Kawelke detected CVE-2025-32014
System detected CVE-2025-32014 with scanner: sca github.com/l3montree-dev/devguard/cmd/devguard-scanner/sca github.com/l3montree-dev/devguard/cmd/devguard-scanner/sca github.com/l3montree-dev/devguard/cmd/devguard-scanner/sca
System fixed CVE-2025-32014
System detected CVE-2025-32014
System detected CVE-2025-32014 with scanner: sca github.com/l3montree-dev/devguard/cmd/devguard-scanner/sca github.com/l3montree-dev/devguard/cmd/devguard-scanner/sca github.com/l3montree-dev/devguard/cmd/devguard-scanner/sca
System removed scanner: container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning
System removed scanner: container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning
System removed scanner: sca
System detected CVE-2025-32014 with scanner: sca github.com/l3montree-dev/devguard/cmd/devguard-scanner/sca github.com/l3montree-dev/devguard/cmd/devguard-scanner/sca github.com/l3montree-dev/devguard/cmd/devguard-scanner/sca
System removed scanner: container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning
System removed scanner: container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning
- S
Sebastian Kawelke removed scanner: sca
Add a comment
Affected component
estree-util-value-to-estree