security-kit

Source repositories

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-54883	Davidosipov Vision UI	Cri	0.53	—	0.01		Aug 6, 2025	Vision UI is a collection of enterprise-grade, dependency-free modules for modern web projects. In versions 1.4.0 and below, the getSecureRandomInt function in security-kit versions prior to 3.5.0 (packaged in Vision-ui <= 1.4.0) contains a critical cryptographic weakness. Due…
CVE-2024-13275	Davidosipov security-kit		0.00	—	0.00		Jan 9, 2025	Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Drupal Security Kit allows HTTP DoS.This issue affects Security Kit: from 0.0.0 before 2.0.3.

CVE-2025-54883CriAug 6, 2025
Davidosipov
Vision UI
risk 0.53cvss —epss 0.01
Vision UI is a collection of enterprise-grade, dependency-free modules for modern web projects. In versions 1.4.0 and below, the getSecureRandomInt function in security-kit versions prior to 3.5.0 (packaged in Vision-ui <= 1.4.0) contains a critical cryptographic weakness. Due…
CVE-2024-13275Jan 9, 2025
Davidosipov
security-kit
risk 0.00cvss —epss 0.00
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Drupal Security Kit allows HTTP DoS.This issue affects Security Kit: from 0.0.0 before 2.0.3.