Skip to main content

Finance Js

2 CVEs product

Monthly

CVE-2025-56572 npm HIGH This Week

An issue in finance.js v.4.1.0 allows a remote attacker to cause a denial of service via the seekZero() parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Finance Js
NVD GitHub
CVSS 3.1
7.5
EPSS
0.4%
CVE-2025-56571 npm HIGH This Week

Finance.js v4.1.0 contains a Denial of Service (DoS) vulnerability via the IRR function’s depth parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Finance Js
NVD GitHub
CVSS 3.1
7.5
EPSS
0.1%
EPSS 0% CVSS 7.5
HIGH This Week

An issue in finance.js v.4.1.0 allows a remote attacker to cause a denial of service via the seekZero() parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Finance Js
NVD GitHub
EPSS 0% CVSS 7.5
HIGH This Week

Finance.js v4.1.0 contains a Denial of Service (DoS) vulnerability via the IRR function’s depth parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Finance Js
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy