CNNVD-202511-822 Information

CNNVD ID

CNNVD-202511-822

Related CVE

CVE-2025-52662

• CNNVD Published: 2025-11-07

Description (Chinese)

Nuxt DevTools是Nuxt开源的一组可视化工具。 Nuxt DevTools 2.6.4版本存在安全漏洞，该漏洞源于特定配置下可能通过跨站脚本提取Nuxt身份验证令牌。

Description (English)

Nuxt DevTools is a set of Nuxt open-source visualization tools. Nuxt DevTools 2.6.4 has a security loophole that stems from a specific configuration that may extract the Nuxt identification token from a cross-site script.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Nuxt

Published

2025-11-07

Last Modified

2026-02-24

References

https://vercel.com/changelog/cve-2025-52662-xss-on-nuxt-devtools https://github.com/nuxt/devtools/commit/7cadbbe9 https://access.redhat.com/security/cve/cve-2025-52662

Patch

https://github.com/nuxt/devtools/releases