Security Advisory

CVE-2025-9308

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-21 16:02:12

Last updated 2025-08-21 17:32:14

Assigner VulDB

State PUBLISHED

Description

A vulnerability has been found in yarnpkg Yarn up to 1.22.22. This impacts the function setOptions of the file src/util/request-manager.js. Such manipulation leads to inefficient regular expression complexity. Local access is required to approach this attack. This vulnerability only affects products that are no longer supported by the maintainer.

← Browse all CVEs View on cve.org ↗