CYBERHAWK / CVE / CVE-2025-71329

CVE-2025-71329

HIGH CVSS 7.5 other

The flaw

image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted image buffer with a zero-valued size field in a recognized box-typ

What to do

Review advisory and patch per vendor guidance.

▸ Scan my repo for CVE-2025-71329

References

NVD CISA KEV OSV GitHub Advisory MITRE News search

First seen 2026-06-12 · Tracked by PickBits CyberHawk · Weekly CVE digest

← All CVEs RSS Scheduled audits