{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-10T09:07:47.256","vulnerabilities":[{"cve":{"id":"CVE-2025-57325","sourceIdentifier":"cve@mitre.org","published":"2025-09-24T20:15:32.123","lastModified":"2025-10-20T16:54:41.423","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"rollbar is a package designed to effortlessly track and debug errors in JavaScript applications. This package includes advanced error tracking features and an intuitive interface to help you identify and fix issues more quickly. A Prototype Pollution vulnerability in the utility.set function of rollbar v2.26.4 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence."},{"lang":"es","value":"rollbar es un paquete diseñado para rastrear y depurar errores sin esfuerzo en aplicaciones JavaScript. Este paquete incluye funciones avanzadas de seguimiento de errores y una interfaz intuitiva para ayudarle a identificar y solucionar problemas más rápidamente. Una vulnerabilidad de Prototype Pollution en la función utility.set de rollbar v2.26.4 y versiones anteriores permite a los atacantes inyectar propiedades en Object.prototype mediante el suministro de una carga útil manipulada, causando denegación de servicio (DoS) como consecuencia mínima."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-1321"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:rollbar:rollbar:*:*:*:*:*:node.js:*:*","versionEndIncluding":"2.26.4","matchCriteriaId":"01CDDB22-7F07-430B-A452-1DA46DD6D47B"}]}]}],"references":[{"url":"https://github.com/VulnSageAgent/PoCs/blob/main/JavaScript/prototype-pollution/rollbar%402.26.4/index.js","source":"cve@mitre.org","tags":["Broken Link"]},{"url":"https://github.com/VulnSageAgent/PoCs/tree/main/JavaScript/prototype-pollution/CVE-2025-57325","source":"cve@mitre.org","tags":["Third Party Advisory"]}]}}]}