debug — CVE history (npm)

debug

2 CVEs affect the debug npm package (highest CVSS 3.5). Latest disclosed: 2025-09-15. Full CVE history sourced from NVD.

Summary

Package
debug (npm)
Total CVEs
2
Actively exploited (CISA KEV)
0
Highest CVSS
3.5
Latest disclosed
2025-09-15

Recent CVEs (top 2)

CVESeverityCVSSKEVPublishedSummary
CVE-2025-591442025-09-15debug is a JavaScript debugging utility.
CVE-2017-20165Low3.52023-01-09A vulnerability classified as problematic has been found in debug-js debug up to 3.0.x.

All-time worst (top 1 by CVSS)

CVESeverityCVSSKEVPublishedSummary
CVE-2017-20165Low3.52023-01-09A vulnerability classified as problematic has been found in debug-js debug up to 3.0.x.