CNNVD-202512-4830 Information

CNNVD ID

CNNVD-202512-4830

Related CVE

CVE-2025-13158

• CNNVD Published: 2025-12-26

Description (Chinese)

apidoc-core是apiDoc开源的一个解析器库。 apidoc-core 0.2.0版本及之后版本存在安全漏洞，该漏洞源于原型污染，可能导致远程攻击者修改JavaScript对象原型，引发拒绝服务或意外行为。

Description (English)

apidoc-core is a solver library of apiDoc open source. There is a security loophole in apidoc-core version 0.2.0 and later, which originates from prototype contamination and may result in long-range assailants modifying the JavaScript object prototype, triggering denial of services or accidental behaviour.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

apiDoc

Published

2025-12-26

Last Modified

2026-02-24

References

https://www.sonatype.com/security-advisories/cve-2025-13158 https://access.redhat.com/security/cve/cve-2025-13158