CNNVD-202510-2104 Information

CNNVD ID

CNNVD-202510-2104

Related CVE

CVE-2025-62410

• CNNVD Published: 2025-10-15

Description (Chinese)

happy-dom是David Ortner个人开发者的一种没有图形用户界面的 web 浏览器的 JavaScript 实现。 happy-dom 20.0.2之前版本存在安全漏洞，该漏洞源于隔离不足，可能导致原型污染攻击和控制流劫持。

Description (English)

Happy-dom is a JavaScript from a web browser without a graphical user interface for David Ortner’s personal developer. There was a security loophole in the previous version 20.0.2, which stemmed from inadequate isolation, which could lead to prototype pollution attacks and controlled stream hijackings.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-10-15

Last Modified

2026-02-24

References

https://github.com/capricorn86/happy-dom/commit/f4bd4ebe3fe5abd2be2bcea1c07043c8b0b70eea https://github.com/capricorn86/happy-dom/security/advisories/GHSA-qpm2-6cq5-7pq5 https://access.redhat.com/security/cve/cve-2025-62410

Patch

https://github.com/capricorn86/happy-dom/releases