ГлавнаяУязвимости → CVE-2025-45001
7.5высокая

CVE-2025-45001

Описание

react-native-keys 0.7.11 is vulnerable to sensitive information disclosure (remote) as encryption cipher and Base64 chunks are stored as plaintext in the compiled native binary. Attackers can extract these secrets using basic static analysis tools.

Затрагиваемое ПО
Numan React-native-keys
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Источники
https://gist.github.com/ch3tanbug/44aedff79dd5d2d6beadbffcd01e0de5https://github.com/ch3tanbug/vulnerability-research/tree/main/CVE-2025-45001https://gist.github.com/ch3tanbug/44aedff79dd5d2d6beadbffcd01e0de5