CVE-2025-45526 – Microlight Denial of Service Vulnerability

June 17, 2025

CVE ID : CVE-2025-45526

Published : June 17, 2025, 8:15 p.m. | 15 minutes ago

Description : A denial of service (DoS) vulnerability has been identified in the JavaScript library microlight version 0.0.7. This library, used for syntax highlighting, does not limit the size of textual content it processes in HTML elements with the microlight class. When excessively large content (e.g., 100 million characters) is processed, the reset function in microlight.js consumes excessive memory and CPU resources, causing browser crashes or unresponsiveness. An attacker can exploit this vulnerability by tricking a user into visiting a malicious web page containing a microlight element with large content, resulting in a denial of service.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-49847 – LLama Buffer Overflow Vulnerability

Next Article CVE-2025-45525 – Microlight.js Null Pointer Dereference Vulnerability

Highlights

CVE-2025-47295 – Fortinet FortiOS Buffer Over-Read Vulnerability

May 28, 2025

CVE ID : CVE-2025-47295

Published : May 28, 2025, 8:15 a.m. | 1 hour, 10 minutes ago

Description : A buffer over-read in Fortinet FortiOS versions 7.4.0 through 7.4.3, versions 7.2.0 through 7.2.7, and versions 7.0.0 through 7.0.14 may allow a remote unauthenticated attacker to crash the FGFM daemon via a specially crafted request, under rare conditions that are outside of the attacker’s control.

Severity: 3.7 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

ScyllaDB X Cloud’s autoscaling capabilities meet the needs of unpredictable workloads in real time

Parasoft C/C++test 2025.1, Secure Code Warrior AI Security Rules, and more – Daily News Digest

What I Wish Someone Told Me When I Was Getting Into ARIA

SD Times 100

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

This Xbox game emotionally wrecked me in less than four hours… I’m going to go hug my cat now

Top 5 desktop PC case features that I can’t live without — and neither should you

‘No aggressive monetization’ — Nexus Mods’ new ownership responds to worried members

Build AI Agents That Run Your Day – While You Focus on What Matters

Build AI Agents That Run Your Day – While You Focus on What Matters

Faster Builds in Meteor 3.3: Modern Build Stack with SWC and Bundler Optimizations

How to Change Redirect After Login/Register in Laravel Breeze

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

This Xbox game emotionally wrecked me in less than four hours… I’m going to go hug my cat now

Top 5 desktop PC case features that I can’t live without — and neither should you

CVE-2025-45526 – Microlight Denial of Service Vulnerability

The “Infinite Workday” is Here: Microsoft Warns of Never-Ending Work Driven by Hybrid Models & AI

Mastodon Cracks Down: New Terms Ban Unauthorized AI Data Scraping

How to Master Typography – Tips for Stunning Text Designs

CVE-2025-4468 – SourceCodester Online Student Clearance System File Upload Vulnerability

CVE-2025-4145 – Netgear EX6200 Remote Buffer Overflow

Kontainer is a GUI tool to manage Distrobox containers

CVE-2025-47295 – Fortinet FortiOS Buffer Over-Read Vulnerability

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

Empowering YouTube creators with generative AI

CVE-2025-1400 – “PLCTag Lib Overread Buffer Read”

CVE-2025-45526 – Microlight Denial of Service Vulnerability

Related Posts