CVE-2025-24015: 
Rust vulnerability analysis and mitigation

Deno, a JavaScript, TypeScript, and WebAssembly runtime, contains a security vulnerability (CVE-2025-24015) affecting versions 1.46.0 through 2.1.6. The vulnerability involves AES-256-GCM and AES-128-GCM implementations where authentication tags are not being validated. This issue was discovered and disclosed on June 3, 2025, and has been patched in version 2.1.7 (GitHub Advisory).

The vulnerability stems from a failure to validate authentication tags in AES-GCM implementations. Without proper authentication tag verification, AES-GCM effectively degrades to CTR mode, removing integrity protection. Additionally, authenticated data set with set_aad is affected as it is incorporated into the GCM hash (ghash) but remains unvalidated, making AAD checks ineffective. The issue was introduced by commit 0d1beed and has been assigned a CVSS v4.0 score of 7.7 HIGH (NVD).

The vulnerability compromises the integrity guarantees expected from AES-GCM encryption. When exploited, tampered ciphertexts or incorrect keys might not be detected, potentially leading to unauthorized data manipulation without detection. This particularly affects applications relying on AES-GCM for data integrity verification (GitHub Advisory).

The vulnerability has been patched in Deno version 2.1.7. Users are strongly advised to upgrade to this version or later. No effective workarounds are available for affected versions, as the issue is fundamental to the implementation of AES-GCM in the runtime (GitHub Advisory).