Security Bulletin: Security Vulnerabilities in node.js packages affect IBM Voice...

Security Bulletin: Security Vulnerabilities in node.js packages affect IBM Voice Gateway

May 2, 2025 invoker category_cve

Vulnerability Details

Basic Information

Title	Security Bulletin: Security Vulnerabilities in node.js packages affect IBM Voice Gateway
Type	ibm
Published	2025-05-01T17:05:03
Last Seen	2025-05-01T18:56:37
CVSS Score	6.2 (MEDIUM)

CVSS v3 Details

Attack Vector	LOCAL
Attack Complexity	LOW
Privileges Required	NONE
User Interaction	NONE
Scope	UNCHANGED
Confidentiality Impact	NONE
Integrity Impact	NONE
Availability Impact	HIGH

CVE Information

CVE IDs	CVE-2024-57965, CVE-2025-27152, CVE-2025-27789
CWE
Bulletin Family	software

Description

Summary Security Vulnerabilities in node.js packages affect IBM Voice Gateway. The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2024-57965 DESCRIPTION: In axios before 1.7.8, lib/helpers/isURLSameOrigin.js does not use a…

Impact Assessment

Base Score	6.2
Severity	MEDIUM

View full CVE details