CVE-2025-32014
estree-util-value-to-estree converts a JavaScript value to an ESTree expression. When generating an ESTree from a value with a property named __proto__, valueToEstree would generate an object that specifies a prototype instead. This vulnerability is fixed in 3.3.3.
System detected CVE-2025-32014
System detected CVE-2025-32014
System detected CVE-2025-32014
System
System
System
System
System
System
System
System
- T
Tim Bastin detected CVE-2025-32014
- T
Tim Bastin detected CVE-2025-32014
- T
Tim Bastin
- T
Tim Bastin
System updated the risk assessment from 0 to 1.35
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.67
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.67
System recalculated raw risk assessment
System updated the risk assessment from 0 to 1.35
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.67
System recalculated raw risk assessment
System updated the risk assessment from 0.67 to 1.35
System recalculated raw risk assessment
System updated the risk assessment from 0.67 to 1.35
System recalculated raw risk assessment
System updated the risk assessment from 0.67 to 1.35
System recalculated raw risk assessment
System fixed CVE-2025-32014
System fixed CVE-2025-32014
System fixed CVE-2025-32014
System fixed CVE-2025-32014
System fixed CVE-2025-32014
System detected CVE-2025-32014 with a risk of 1.35
System detected CVE-2025-32014 with a risk of 0.67
System updated the risk assessment from 0.67 to 1.35
System recalculated raw risk assessment
Add a comment
Affected component
estree-util-value-to-estree