CVE-2025-48934 | deno up to 2.1.12/2.2.12 Environment Variable deno.env.toObject insertion of sensitive information into sent data

A vulnerability was found in deno up to 2.1.12/2.2.12. It has been declared as critical. This vulnerability affects the function deno.env.toObject of the component Environment Variable Handler. The manipulation leads to insertion of sensitive information into sent data.

This vulnerability was named CVE-2025-48934. The attack can be initiated remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More