RHSA-2025:22861HighCVSS 8.2
Red Hat Security Advisory: Red Hat Developer Hub 1.8.1 release.
🔗 CVE IDs covered (2)
📋 Description
CVE-2025-60542 — TypeORM: SQL Injection via crafted request to repository.save or repository.update CVE-2025-66031 — node-forge: node-forge ASN.1 Unbounded Recursion
🔗 References (10)
- selfhttps://access.redhat.com/errata/RHSA-2025:22861
- externalhttps://access.redhat.com/security/cve/CVE-2025-60542
- externalhttps://access.redhat.com/security/cve/CVE-2025-66031
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://catalog.redhat.com/search?gs&searchType=containers&q=rhdh
- externalhttps://developers.redhat.com/rhdh/overview
- externalhttps://docs.redhat.com/en/documentation/red_hat_developer_hub
- externalhttps://issues.redhat.com/browse/RHIDP-11025
- externalhttps://issues.redhat.com/browse/RHIDP-9743
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_22861.json