CVE-2025-13437 | Google zx 8.8.4 Working Directory src/cli.ts linkNodeModules name resolution

Inserito da Angelo Barbosa | Nov 20, 2025 | CVE

A vulnerability was found in Google zx 8.8.4. It has been declared as problematic. Affected by this vulnerability is the function linkNodeModules of the file src/cli.ts of the component Working Directory Handler. Such manipulation leads to incorrectly-resolved name.

This vulnerability is referenced as CVE-2025-13437. The attack can only be performed from a local environment. No exploit is available.

CVE-2025-13437 | Google zx 8.8.4 Working Directory src/cli.ts linkNodeModules name resolution

Post correlati

CVE-2025-5363 | Campcodes Online Hospital Management System 1.0 /doctor/index.php Username sql injection

CVE-2024-40585 | Fortinet FortiAnalyzer log file (FG-IR-24-311)

CVE-2024-24563 | vyperlang Vyper up to 0.3.10 array index (GHSA-52xq-j7v9-v4v2)

CVE-2025-54252 | Adobe Experience Manager up to 6.5.23.0 cross site scripting (apsb25-90)