CLEANSTART-2026-QA91937

See a problem?

Import Source

https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-QA91937.json

JSON Data

https://api.osv.dev/v1/vulns/CLEANSTART-2026-QA91937

Upstream

CVE-2025-61732

CVE-2025-68121

CVE-2026-24051

CVE-2026-25679

CVE-2026-27139

CVE-2026-27142

ghsa-r6j8-c6r2-37rr

Published

2026-04-01T09:52:00.878696Z

Modified

2026-04-01T18:33:42.150066Z

Summary

Security fixes for CVE-2025-61732, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, ghsa-r6j8-c6r2-37rr applied in versions: 0.18.3-r1, 0.18.3-r2

Details

Multiple security vulnerabilities affect the node-feature-discovery package. These issues are resolved in later releases. See references for individual vulnerability details.

References

Affected packages

CleanStart / node-feature-discovery

Package

Name: node-feature-discovery

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.18.3-r2

Database specific

source

"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-QA91937.json"