sonatype-2025-004531

NPM Security Holding Packages - Tue Nov 11 2025

Published Nov 11, 2025

CVSS ScoreCritical

10.0

sonatype-2025-004531

NPM Security Holding Packages - Tue Nov 11 2025

Published Nov 11, 2025

CVSS ScoreCritical

10.0

CVE ID: sonatype-2025-004531
CWE: N/A
CVE Description: NPM Security Holding Packages - Tue Nov 11 2025
Published: Nov 11, 2025
CVSS Score & Severity: 10.0Critical
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS Score: 0%
Malware: malware
KEV Status: Not in KEV Catalog: No known exploits
Affected Ecosystems: affected
Source: Sonatype
References: https://help.sonatype.com/en/sonatype-malware-data.htmlTHIRD_PARTY

CVE ID: sonatype-2025-004531
CWE: N/A
CVE Description: NPM Security Holding Packages - Tue Nov 11 2025
Published: Nov 11, 2025
CVSS Score & Severity: 10.0Critical
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS Score: 0%
Malware: malware
KEV Status: Not in KEV Catalog: No known exploits
Affected Ecosystems: affected
Source: Sonatype
References: https://help.sonatype.com/en/sonatype-malware-data.htmlTHIRD_PARTY

Find vulnerabilities. Fix fast with AI.