CVE-2025-13437 | Google zx 8.8.4 Working Directory src/cli.ts linkNodeModules name resolution

A vulnerability was found in Google zx 8.8.4. It has been declared as problematic. Affected by this vulnerability is the function linkNodeModules of the file src/cli.ts of the component Working Directory Handler. Such manipulation leads to incorrectly-resolved name.

This vulnerability is referenced as CVE-2025-13437. The attack can only be performed from a local environment. No exploit is available.VulDB Recent EntriesRead More