Security Intel Hub 2+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

Sort: Latest
Sort: Premium

Medium

DuckDB Encryption Implementation Vulnerability (CVE-2025-64429)

CVE-2025-64429 · github.com · 2025-11-14

DuckDB >= 1.4.0

DuckDB NPM Supply Chain Poisoning: Malicious Code in Node Packages

github.com · 2025-09-11

### Key Information #### Vulnerability Overview - **Vulnerability Type**: DuckDB NPM packages compromised by malware - **Affected Versions**: - `@duckdb/duckdb-wasm`: 1.29.2 - `@duckdb/node-api`: 1.3.…

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 2+

DuckDB Encryption Implementation Vulnerability (CVE-2025-64429)

DuckDB NPM Supply Chain Poisoning: Malicious Code in Node Packages