CVE-2025-64767CRITICAL 9.1EPSS p8.3%

CVE-2025-64767CVE-2025-64767

Description

hpke-js is a Hybrid Public Key Encryption (HPKE) module built on top of Web Cryptography API. Prior to version 1.7.5, the public SenderContext Seal() API has a race condition which allows for the same AEAD nonce to be re-used for multiple Seal() calls. This can lead to complete loss of Confidentiality and Integrity of the produced messages. This issue has been patched in version 1.7.5.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS0.19% probability of exploitation · percentile 8.3% · 2026-06-19T12:03:05Z
Published2025-11-21
Last modified2026-04-15

Underlying weaknesses· 1

CWE-323

References

  1. https://github.com/dajiaji/hpke-js/blob/b7fd3592c7c08660c98289d67c6bb7f891af75c4/packages/core/src/senderContext.ts#L22-L34
  2. https://github.com/dajiaji/hpke-js/commit/94a767c9b9f37ce48d5cd86f7017d8cacd294aaf
  3. https://github.com/dajiaji/hpke-js/security/advisories/GHSA-73g8-5h73-26h4

1

TypeTargetConfidenceTier
WeaknessReusing a Nonce, Key Pair in Encryptioncwe-3230%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-3757
CVE
CVE-2026-4601
CVE
CVE-2026-4599
CVE
CVE-2025-54887
CVE
CVE-2025-4658
CVE
CVE-2026-4600
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.