Vulnerability in Prebid Prebid-universal-creative
CVE-2025-59039
Prebid Universal Creative (PUC) is a JavaScript API to render multiple formats. Npm users of PUC 1.17.3 or PUC latest were briefly affected by crypto-related malware. This includes the extremely popular jsdelivr hosting of this file. The m…
EPSS: 0.003 (22.9th percentile) — read the EPSS interpretation.
Affected products
- Prebid Prebid-universal-creative — versions = 1.17.3
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)
- security-advisories@github.com (x_refsource_MISC)