VDB
MGASA-2025-0194
MGASA-2025-0194
PUBLISHED
CVSS 8.800000190734863 HIGH
Updated yarnpkg packages fix security vulnerabilities
Risk Scores
CVSS v4.0
8.800000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mageia:9 | yarnpkg | 0, 0 |
Timeline
- Jun 25, 2025 CVE Published
- Apr 16, 2026 CVE Updated
References
- https://advisories.mageia.org/MGASA-2025-0194.html advisory
- https://bugs.mageia.org/show_bug.cgi?id=33674 report
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2UGLXZO6VIHGIITQTEUY5Q5YCAP2A4ZP/ url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VEDIJM7VQF4Q2L2KKQ6KJ2WZNR7AXYQD/ url