{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T18:29:17.750","vulnerabilities":[{"cve":{"id":"CVE-2025-27209","sourceIdentifier":"support@hackerone.com","published":"2025-07-18T23:15:23.190","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The V8 release used in Node.js v24.0.0 has changed how string hashes are computed using rapidhash. This implementation re-introduces the HashDoS vulnerability as an attacker who can control the strings to be hashed can generate many hash collisions - an attacker can generate collisions even without knowing the hash-seed.\r\n\r\n* This vulnerability affects Node.js v24.x users."},{"lang":"es","value":"La versión V8 utilizada en Node.js v24.0.0 ha cambiado la forma en que se calculan los hashes de cadenas mediante rapidhash. Esta implementación reintroduce la vulnerabilidad HashDoS, ya que un atacante que controle las cadenas a las que se aplicará el hash puede generar numerosas colisiones de hash; un atacante puede generar colisiones incluso sin conocer la semilla del hash. * Esta vulnerabilidad afecta a los usuarios de Node.js v24.x."}],"metrics":{"cvssMetricV30":[{"source":"support@hackerone.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-407"}]}],"references":[{"url":"https://nodejs.org/en/blog/vulnerability/july-2025-security-releases","source":"support@hackerone.com"},{"url":"http://www.openwall.com/lists/oss-security/2025/07/22/2","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}