VDB
CVE-2025-57319
CVE-2025-57319
REJECTED
CVSS 7.5 HIGH
Withdrawn Advisory: fast-redact vulnerable to prototype pollution
EPSS 0.11% · 28.3th percentile
Risk Scores
CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.11%
28.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| npm | fast-redact | 0 |
| n/a | n/a | n/a |
Timeline
- Sep 24, 2025 CVE Published
- Sep 25, 2025 EPSS Score
- Sep 26, 2025 CVE Updated
- Oct 2, 2025 EPSS Score
- Oct 4, 2025 Coalition ESS Score
- Oct 6, 2025 Coalition ESS Score
- Oct 9, 2025 EPSS Score
- Oct 15, 2025 EPSS Score
- Oct 22, 2025 EPSS Score
- Oct 27, 2025 Coalition ESS Score
- Oct 29, 2025 EPSS Score
- Nov 5, 2025 EPSS Score
References
- https://github.com/VulnSageAgent/PoCs/blob/main/JavaScript/prototype-pollution/fast-redact%403.5.0/index.js url
- https://github.com/VulnSageAgent/PoCs/tree/main/JavaScript/prototype-pollution/CVE-2025-57319 url
- https://github.com/davidmarkclements/fast-redact/issues/75 url
- https://nvd.nist.gov/vuln/detail/CVE-2025-57319 advisory
- https://github.com/davidmarkclements/fast-redact package