CNNVD-202508-413 Information

CNNVD ID

CNNVD-202508-413

Related CVE

CVE-2025-54883

• CNNVD Published: 2025-08-06

Description (Chinese)

Vision UI是David Osipov个人开发者的一个UI组件。 Vision UI 1.4.0及之前版本存在安全特征问题漏洞，该漏洞源于getSecureRandomInt函数存在32位整数溢出，可能导致随机数分布不均。

Description (English)

Vision UI is a UI component of David Osipov’s personal developer. Vision UI 1.4.0 and previous versions had a security feature loophole, which stemmed from the 32-bit integer spill of the GetSecureRandomInt function, which could lead to an uneven distribution of random numbers.

Hazard Level

High

Vulnerability Type

安全特征问题

Affected Vendor

个人开发者

Published

2025-08-06

Last Modified

2026-02-24

References

https://github.com/DavidOsipov/Vision-ui/commit/347355859f05e98047efbd96fc0e61b9191324f1 https://github.com/DavidOsipov/Vision-ui/security/advisories/GHSA-c9xg-x7h3-mq2q https://access.redhat.com/security/cve/cve-2025-54883

Patch

https://github.com/DavidOsipov/Vision-ui/releases