← Back

CVE-2025-59288

nvd nist
Published: Oct 14, 2025Modified: Nov 21, 2025

JSON object

Loading...
5.3
Vector
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 1.6 / Impact: 3.6
Source: secure@microsoft.com (Secondary)

Description

Improper verification of cryptographic signature in Github: Playwright allows an unauthorized attacker to perform spoofing over an adjacent network.

Affected (1)

Microsoft
1 product
Playwright
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Playwright
Before 1.55.1

Related CWEs

CWE-347
Improper Verification of Cryptographic Signature
The product does not verify, or incorrectly verifies, the cryptographic signature for data.

References (1)

Source: secure@microsoft.com
Vendor Advisory

Timeline

No history available yet.