VYPR
High severityNVD Advisory· Published Oct 7, 2025· Updated Oct 9, 2025

CVE-2025-11362

CVE-2025-11362

Description

Versions of the package pdfmake before 0.3.0-beta.17 are vulnerable to Allocation of Resources Without Limits or Throttling via repeatedly redirect URL in file embedding. An attacker can cause the application to crash or become unresponsive by providing crafted input that triggers this condition.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
pdfmakenpm
>= 0.3.0-beta.1, < 0.3.0-beta.170.3.0-beta.17

Affected products

19

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.