CVE-2025-22868
CVE Details
Visit the official vulnerability details page for CVE-2025-22868 to learn more.
Initial Publication
02/26/2025
Last Update
05/01/2025
Third Party Dependency
golang.org/x/oauth2
NIST CVE Summary
An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.
CVE Severity
Our Official Summary
Investigation is ongoing to determine how this vulnerability affects our products.
Status
Analyzed
Affected Products & Versions
| Version | PaletteAI | PaletteAI VerteX |
|---|---|---|
| 0.6.6 | ⚠️ Impacted | ⚠️ Impacted |
| 0.5.11 | ⚠️ Impacted | ⚠️ Impacted |
Revision History
No revisions available.