CVE-2025-61787 | denoland Deno up to 2.2.14/2.5.2 on Windows Command Line cmd.exe CreateProcess command injection (GHSA-m2gf-x3f6-8hq3)

A vulnerability was found in denoland Deno up to 2.2.14/2.5.2 on Windows and classified as critical. The impacted element is the function CreateProcess of the file cmd.exe of the component Command Line Handler. The manipulation results in command injection.

This vulnerability is identified as CVE-2025-61787. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More