CVE-2025-70949

{"id": "CVE-2025-70949", "cveTags": [], "metrics": {}, "published": "2026-03-05T21:16:13.857", "references": [{"url": "https://gist.github.com/0xHunterr/38aab644874ca9f4646524c5b01cfe5e", "source": "[email protected]"}, {"url": "https://github.com/perfood/couch-auth", "source": "[email protected]"}, {"url": "https://www.npmjs.com/package/@perfood/couch-auth", "source": "[email protected]"}], "vulnStatus": "Received", "descriptions": [{"lang": "en", "value": "An observable timing discrepancy in @perfood/couch-auth v0.26.0 allows attackers to access sensitive information via a timing side-channel."}], "lastModified": "2026-03-05T21:16:13.857", "sourceIdentifier": "[email protected]"}