CVE-2025-45001

Published: Jun 9, 2025

Modified: Jun 9, 2025

PUBLISHED

Description

react-native-keys 0.7.11 is vulnerable to sensitive information disclosure (remote) as encryption cipher and Base64 chunks are stored as plaintext in the compiled native binary. Attackers can extract these secrets using basic static analysis tools.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://gist.github.com/ch3tanbug/44aedff79dd5d2d6beadbffcd01e0de5

https://github.com/ch3tanbug/vulnerability-research/tree/main/CVE-2025-45001

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-45001

Description

Affected Products

References