CVE-2025-5890 – Actions Toolkit Glob Regular Expression Complexity Vulnerability

June 9, 2025

CVE ID : CVE-2025-5890

Published : June 9, 2025, 7:15 p.m. | 1 hour, 12 minutes ago

Description : A vulnerability classified as problematic has been found in actions toolkit 0.5.0. This affects the function globEscape of the file toolkit/packages/glob/src/internal-pattern.ts of the component glob. The manipulation leads to inefficient regular expression complexity. It is possible to initiate the attack remotely.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleLitePub is a lightweight static blog generator

Next Article CVE-2025-5891 – Unitech pm2 Regular Expression Complexity Vulnerability

The Value-Driven AI Roadmap

This week in AI updates: Mistral’s new Le Chat features, ChatGPT updates, and more (September 5, 2025)

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

Lenovo Legion Go 2 specs unveiled: The handheld gaming device to watch this October

As Windows 10 support ends, users weigh costly extended security program against upgrading to Windows 11

Lenovo’s Legion Glasses 2 update could change handheld gaming

Is Lenovo’s refreshed LOQ tower enough to compete? New OLED monitors raise the stakes at IFA 2025

External Forces Reshaping Financial Services in 2025 and Beyond

External Forces Reshaping Financial Services in 2025 and Beyond

Why It’s Time to Move from SharePoint On-Premises to SharePoint Online

Apple’s Big Move: The Future of Mobile

Lenovo Legion Go 2 specs unveiled: The handheld gaming device to watch this October

Lenovo Legion Go 2 specs unveiled: The handheld gaming device to watch this October

As Windows 10 support ends, users weigh costly extended security program against upgrading to Windows 11

Lenovo’s Legion Glasses 2 update could change handheld gaming

CVE-2025-5890 – Actions Toolkit Glob Regular Expression Complexity Vulnerability

20 Popular npm Packages With 2 Billion Weekly Downloads Compromised in Supply Chain Attack

TOR-Based Cryptojacking Attack Expands Through Misconfigured Docker APIs

CVE-2025-47568 – ZoomSounds Deserialization Object Injection Vulnerability

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

VMware ESXi and Workstation Vulnerabilities Let Attackers Execute Malicious Code on Host

“THIS CAN’T BE a REAL MOVIE” — Microsoft Teams Is at the Center of War of the Worlds, a 0% Film on Rotten Tomatoes

8 Large Open-Source Projects Built with Plain PHP (No Framework)

Mem0: A Scalable Memory Architecture Enabling Persistent, Structured Recall for Long-Term AI Conversations Across Sessions

Why I recommend this budget phone with a paper-like screen over ‘minimalist’ devices

Retrieve the Currently Executing Closure in PHP 8.5

CVE-2025-5890 – Actions Toolkit Glob Regular Expression Complexity Vulnerability

Related Posts