CVE-2025-68156 | expr-lang expr up to 1.17.6 on Go flatten/min/max/mean/median allocation of resources (GHSA-cfpf-hrx2-8rv6)

A vulnerability has been found in expr-lang expr up to 1.17.6 on Go and classified as problematic. Impacted is the function flatten/min/max/mean/median. This manipulation causes allocation of resources.

This vulnerability appears as CVE-2025-68156. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More