Ebradyjobory Finance.js — known CVE vulnerabilities
Every CVE whose affected-product data names Ebradyjobory Finance.js, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2025-56571 — CVSS 7.5 (high): Finance.js v4.1.0 contains a Denial of Service (DoS) vulnerability via the IRR function’s depth parameter. Improper handling of the…
CVE-2025-56572 — CVSS 7.5 (high): An issue in finance.js v.4.1.0 allows a remote attacker to cause a denial of service via the seekZero() parameter.