CVE-2025-5889 | juliangruber brace-expansion up to 1.1.11 index.js expand redos

A vulnerability was found in juliangruber brace-expansion up to 1.1.11. It has been rated as problematic. Affected by this issue is the function expand of the file index.js. The manipulation leads to inefficient regular expression complexity.

This vulnerability is handled as CVE-2025-5889. The attack may be launched remotely. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.VulDB Recent EntriesRead More