vitest — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in vitest, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-24963	Browser mode serves arbitrary files in vitest CWE-22	5.9	Medium	2025-02-04
CVE-2025-24964	Remote Code Execution when accessing a malicious website while Vitest API server is listening CWE-1385	9.7	Critical	2025-02-04

All 2 known CVE vulnerabilities affecting vitest with full Chinese analysis, references, and POCs where available.