CVE-2025-0716
Content Spoofing vulnerability in angular (npm)
What is CVE-2025-0716 About?
This vulnerability in AngularJS involves improper sanitization of 'href' and 'xlink:href' attributes in SVG image elements. This can lead to content spoofing and performance degradation due to large or slow-loading images, and is relatively easy to exploit by crafting malicious SVG image attributes.
Affected Software
Technical Details
The vulnerability arises from AngularJS failing to properly sanitize the 'href' and 'xlink:href' attributes within SVG '<image>' elements. An attacker can embed specially crafted values within these attributes to bypass existing input validation or image source restrictions. This bypass allows the attacker to inject arbitrary content, leading to Content Spoofing where legitimate application content is replaced or obfuscated. Furthermore, by pointing these attributes to excessively large or slow-to-load image resources, an attacker can negatively affect the application's performance and user experience, effectively performing a denial-of-service attack on the front end.
What is the Impact of CVE-2025-0716?
Successful exploitation may allow attackers to inject malicious content into web pages, deface websites, compromise user trust, and degrade application performance by forcing the loading of oversized or slow content.
What is the Exploitability of CVE-2025-0716?
Exploitation of this vulnerability is considered low to medium complexity, as it primarily involves crafting malicious values for SVG image attributes. No authentication is required, and access to an application that processes AngularJS templates with user-controlled content for image 'href' or 'xlink:href' attributes is sufficient. The attack is remote, as it can be performed by providing a malicious input that is then rendered by the vulnerable application. The primary risk factor is applications that allow untrusted input to be directly embedded within SVG image attributes without strict sanitization, especially in AngularJS applications.
What are the Known Public Exploits?
| PoC Author | Link | Commentary |
|---|---|---|
| No known exploits | ||
What are the Available Fixes for CVE-2025-0716?
Available Upgrade Options
- No fixes available
Struggling with dependency upgrades?
See how Resolved Security's drop-in replacements make it simple.
Book a demoAdditional Resources
- https://github.com/angular/angular.js
- https://nvd.nist.gov/vuln/detail/CVE-2025-0716
- https://codepen.io/herodevs/pen/qEWQmpd/a86a0d29310e12c7a3756768e6c7b915
- https://codepen.io/herodevs/pen/qEWQmpd/a86a0d29310e12c7a3756768e6c7b915
- https://www.herodevs.com/vulnerability-directory/cve-2025-0716
- https://osv.dev/vulnerability/GHSA-j58c-ww9w-pwp5
- https://www.herodevs.com/vulnerability-directory/cve-2025-0716
What are Similar Vulnerabilities to CVE-2025-0716?
Similar Vulnerabilities: CVE-2023-38408 , CVE-2023-45853 , CVE-2023-28435 , CVE-2022-2350 , CVE-2022-3004
