CVE-2025-6545 | pbkdf2 up to 3.1.2 lib/to-buffer.Js input validation (GHSA-h7cp-r72f-jxh6 / EUVD-2025-18922)

A vulnerability was found in pbkdf2 up to 3.1.2 and classified as critical. Affected by this issue is some unknown functionality in the library lib/to-buffer.Js. The manipulation leads to improper input validation.

This vulnerability is handled as CVE-2025-6545. The attack may be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.VulDB Recent EntriesRead More