CVE-2025-3008917.03.2025, 00:15gurk (aka gurk-rs) through 0.6.3 mishandles ANSI escape sequences.EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST5.4 MEDIUMNETWORKHIGHNONECVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:LmitreCNA5.4 MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:LCISA-ADPADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 36%Common Weakness EnumerationCWE-150 - Improper Neutralization of Escape, Meta, or Control SequencesThe software receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as escape, meta, or control character sequences when they are sent to a downstream component.Referenceshttps://crates.io/crates/gurkhttps://github.com/boxdot/gurk-rs/issues/384https://github.com/boxdot/gurk-rs/issues/384