CVE-2025-29907

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-29907

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-29907.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-29907

Aliases

GHSA-w532-jxjh-hjhj

Related

Published

2025-03-18T18:40:57.504Z

Modified

2025-12-08T23:58:38.776108Z

Severity

8.7 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVSS Calculator

Summary

jsPDF Bypass Regular Expression Denial of Service (ReDoS)

Details

jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitised image urls to the addImage method, a user can provide a harmful data-url that results in high CPU utilization and denial of service. Other affected methods are html and addSvgAsImage. The vulnerability was fixed in jsPDF 3.0.1.

Database specific

{
    "cwe_ids": [
        "CWE-400",
        "CWE-770"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/29xxx/CVE-2025-29907.json",
    "cna_assigner": "GitHub_M"
}

References

Affected packages

Git / github.com/mrrio/jspdf

Affected ranges

Type: GIT
Repo: https://github.com/mrrio/jspdf
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

57cbe9499dc9922c1a8dbdd225f9c45364653324

Affected versions

1.*

1.1.135

1.3.4

v.*

v.1.4.0

v0.*

v0.9.0

v1.*

v1.0.106

v1.0.115

v1.0.116

v1.0.119

v1.0.138

v1.0.150

v1.0.178

v1.0.272

v1.2.60

v1.2.61

v1.3.0

v1.3.1

v1.3.2

v1.3.3

v1.3.4

v1.3.5

v1.4.0

v1.4.1

v1.5.0

v1.5.1

v1.5.2

v1.5.3

Other

v2,1,0

v2.*

v2.0.0

v2.1.1

v2.2.0

v2.3.0

v2.3.1

v2.4.0

v2.5.0

v2.5.1

v2.5.2

v3.*

v3.0.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-29907.json"

Git / github.com/parallax/jspdf