CVE-2025-68475 | fedify-dev fedify up to 1.6.12/1.7.13/1.8.14/1.9.1 docloader.ts redos (GHSA-rchf-xwx2-hm93)

Uncategorized
Yanac

A vulnerability labeled as problematic has been found in fedify-dev fedify up to 1.6.12/1.7.13/1.8.14/1.9.1. This vulnerability affects unknown code of the file packages/fedify/src/runtime/docloader.ts. Such manipulation leads to inefficient regular expression complexity.

This vulnerability is uniquely identified as CVE-2025-68475. The attack can be launched remotely. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More