hpke-js reuses AEAD nonces_CVE-2025-64767

9.1 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Description

hpke-js is a Hybrid Public Key Encryption (HPKE) module built on top of Web Cryptography API. Prior to version 1.7.5, the public SenderContext Seal() API has a race condition which allows for the same AEAD nonce to be re-used for multiple Seal() calls. This can lead to complete loss of Confidentiality and Integrity of the produced messages. This issue has been patched in version 1.7.5.

Basic Information

ID CVE-2025-64767

Source GitHub_M

Published Nov 21, 2025 at 18:47

Modified Nov 21, 2025 at 19:01

Affected Product

Vendor dajiaji

Product hpke-js

Version < 1.7.5

Affected Versions dajiaji hpke-js < 1.7.5

CWE Classification

CWE-323

References

{
    "lastseen": "",
    "description": "hpke-js is a Hybrid Public Key Encryption (HPKE) module built on top of Web Cryptography API. Prior to version 1.7.5, the public SenderContext Seal() API has a race condition which allows for the same AEAD nonce to be re-used for multiple Seal() calls. This can lead to complete loss of Confidentiality and Integrity of the produced messages. This issue has been patched in version 1.7.5.",
    "published": "2025-11-21T18:47:19.930Z",
    "modified": "2025-11-21T19:01:11.833Z",
    "type": "cve",
    "title": "hpke-js reuses AEAD nonces",
    "source": "GitHub_M",
    "references": "https://github.com/dajiaji/hpke-js/security/advisories/GHSA-73g8-5h73-26h4\nhttps://github.com/dajiaji/hpke-js/commit/94a767c9b9f37ce48d5cd86f7017d8cacd294aaf\nhttps://github.com/dajiaji/hpke-js/blob/b7fd3592c7c08660c98289d67c6bb7f891af75c4/packages/core/src/senderContext.ts#L22-L34",
    "id": "CVE-2025-64767",
    "bulletinFamily": "",
    "cwe": [
        "CWE-323"
    ],
    "cvelist": null,
    "sourceData": "dajiaji hpke-js < 1.7.5",
    "sourceHref": "",
    "cvss": {
        "score": 9.1,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "hpke-js",
    "version": "< 1.7.5",
    "vendor": "dajiaji",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}