CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-45001

react-native-keys 0.7.11 is vulnerable to sensitive information disclosure (remote) as encryption cipher and Base64 chunks are stored as plaintext in the compiled native binary. Attackers can extract these secrets using basic static analysis tools.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 28.0%

CVSS Severity

CVSS v3 Score 7.5

References

https://gist.github.com/ch3tanbug/44aedff79dd5d2d6beadbffcd01e0de5
https://github.com/ch3tanbug/vulnerability-research/tree/main/CVE-2025-45001
https://gist.github.com/ch3tanbug/44aedff79dd5d2d6beadbffcd01e0de5

Products affected by CVE-2025-45001

Numan » React-Native-Keys » Version: 0.7.11

cpe:2.3:a:numan:react-native-keys:0.7.11

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-45001

Products

Pricing

Contact Us