{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-16T15:15:48.990","vulnerabilities":[{"cve":{"id":"CVE-2025-58047","sourceIdentifier":"security-advisories@github.com","published":"2025-08-28T18:15:33.277","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Volto is a React based frontend for the Plone Content Management System. In versions from 19.0.0-alpha.1 to before 19.0.0-alpha.4, 18.0.0 to before 18.24.0, 17.0.0 to before 17.22.1, and prior to 16.34.0, an anonymous user could cause the NodeJS server part of Volto to quit with an error when visiting a specific URL. The problem has been patched in versions 16.34.0, 17.22.1, 18.24.0, and 19.0.0-alpha.4. To mitigate downtime, have setup automatically restart processes that quit with an error."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-755"}]}],"references":[{"url":"https://github.com/plone/volto/commit/2789a287ac45ad9039fb9161d465ba13241fff0a","source":"security-advisories@github.com"},{"url":"https://github.com/plone/volto/releases/tag/16.34.0","source":"security-advisories@github.com"},{"url":"https://github.com/plone/volto/releases/tag/17.22.1","source":"security-advisories@github.com"},{"url":"https://github.com/plone/volto/releases/tag/18.24.0","source":"security-advisories@github.com"},{"url":"https://github.com/plone/volto/releases/tag/19.0.0-alpha.4","source":"security-advisories@github.com"},{"url":"https://github.com/plone/volto/security/advisories/GHSA-xjhf-7833-3pm5","source":"security-advisories@github.com"},{"url":"http://www.openwall.com/lists/oss-security/2025/08/28/3","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}