Debian Node-Node-Forge vulnerabilities

CVE-2025-12816 [HIGH] CVE-2025-12816: node-node-forge - An interpretation-conflict (CWE-436) vulnerability in node-forge versions 1.3.1 ... An interpretation-conflict (CWE-436) vulnerability in node-forge versions 1.3.1 and earlier enables unauthenticated attackers to craft ASN.1 structures to desynchronize schema validations, yielding a semantic divergence that may bypass downstream cryptographic verifications and security decisions. Scope: local bullseye: open

CVE-2025-66031 [HIGH] CVE-2025-66031: node-node-forge - Forge (also called `node-forge`) is a native implementation of Transport Layer S... Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion wh

CVE-2025-66030 [MEDIUM] CVE-2025-66030: node-node-forge - Forge (also called `node-forge`) is a native implementation of Transport Layer S... Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise trun

CVE-2022-24771 [HIGH] CVE-2022-24771: node-node-forge - Forge (also called `node-forge`) is a native implementation of Transport Layer S... Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.3.0, RSA PKCS#1 v1.5 signature verification code is lenient in checking the digest algorithm structure. This can allow a crafted structure that steals padding bytes and uses unchecked portion of the PKCS#1 encoded message to forge a signa

CVE-2022-24772 [HIGH] CVE-2022-24772: node-node-forge - Forge (also called `node-forge`) is a native implementation of Transport Layer S... Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.3.0, RSA PKCS#1 v1.5 signature verification code does not check for tailing garbage bytes after decoding a `DigestInfo` ASN.1 structure. This can allow padding bytes to be removed and garbage data added to forge a signature when a low pub

CVE-2022-24773 [MEDIUM] CVE-2022-24773: node-node-forge - Forge (also called `node-forge`) is a native implementation of Transport Layer S... Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.3.0, RSA PKCS#1 v1.5 signature verification code does not properly check `DigestInfo` for a proper ASN.1 structure. This can lead to successful verification with signatures that contain invalid structures but a valid digest. The issue h

CVE-2020-7720 [CRITICAL] CVE-2020-7720: node-node-forge - The package node-forge before 0.10.0 is vulnerable to Prototype Pollution via th... The package node-forge before 0.10.0 is vulnerable to Prototype Pollution via the util.setPath function. Note: Version 0.10.0 is a breaking change removing the vulnerable functions. Scope: local bullseye: resolved (fixed in 0.10.0~dfsg-1)