/
DirectorySecurity AdvisoriesPricing
Sign in
Security Advisories

CVE-2025-10954

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-10954

Severity

Unknown

Description

Versions of the package github.com/nyaruka/phonenumbers before 1.2.2 are vulnerable to Improper Validation of Syntactic Correctness of Input in the phonenumbers.Parse() function. An attacker can cause a panic by providing crafted input causing a "runtime error: slice bounds out of range".

References

Affected packages


Safe Source for Open Sourceâ„¢
Contact us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard ContainersChainguard LibrariesChainguard VMsIntegrationsPricing