GHSA-x33r-pvvq-wjrh
GitHub Security Advisory
⚠ Unreviewed
HIGH
Has CVE
Advisory Details
An incomplete fix has been identified for CVE-2025-23084 in Node.js, specifically affecting Windows device names like CON, PRN, and AUX.
This vulnerability affects Windows users of `path.join` API.
Related CVEs
Key Information
7.5
/10
Dataset
Last updated: September 29, 2025 6:31 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.