VYPR

Rhino

by Mozilla Corporation

Source repositories

CVEs (1)

  • CVE-2025-66453HigDec 3, 2025
    risk 0.42cvss 7.5epss 0.00

    Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an application passed an attacker controlled float poing number into the toFixed() function, it might lead to high CPU consumption and a potential Denial…