CVE-2025-32014

Published: 2025-04-07T15:15Z

Last Modified: 2025-04-07T15:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

estree-util-value-to-estree converts a JavaScript value to an ESTree expression. When generating an ESTree from a value with a property named __proto__, valueToEstree would generate an object that specifies a prototype instead. This vulnerability is fixed in 3.3.3. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt