CVE-2022-32223

🗓️ 14 Jul 2022 14:51:18Reported by hackeroneType

cve🔗 web.nvd.nist.gov📰️ 7 Media mentions👁 136 Views

Node.js vulnerable to DLL Hijacking on Window

Reporter	Title	Published	Views	Family All 41
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in node.js	8 Aug 202217:42	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Spectrum Control is vulnerable to multiple weaknesses related Java SE and Node	22 Sep 202207:03	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities due to OpenSSL and Node js which affect IBM App Connect Enterprise and IBM Integration Bus	14 Nov 202214:13	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Answer Retrieval for Watson Discovery is vulnerable to HTTP request smuggling due to NodeJS	12 Jul 202218:46	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Node.js may affect IBM Spectrum Protect Plus (CVE-2022-32223, CVE-2022-32215, CVE-2022-33987, CVE-2022-32213, CVE-2022-32212, CVE-2022-32222, CVE-2022-32214)	17 Sep 202212:02	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities	5 Dec 202219:00	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Planning Analytics Workspace is affected by vulnerabilities in Node.js and Spring Data MongoDB	28 Nov 202219:52	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities	5 May 202316:01	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js	30 Nov 202210:21	–	ibm
IBM Security Bulletins	Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to multiple vulnerabilities	10 Aug 202216:27	–	ibm

NVD

Vulners

Node

nodejs node.jsRange14.0.0–14.14.0-

nodejs node.jsRange14.14.0–14.20.0lts

nodejs node.jsRange16.0.0–16.12.0-

nodejs node.jsRange16.13.0–16.16.0lts

nodejs node.jsRange18.0.0–18.0.5-

AND

microsoft windowsMatch-

[
  {
    "product": "Node",
    "vendor": "NodeJS",
    "defaultStatus": "unaffected",
    "versions": [
      {
        "versionType": "semver",
        "version": "4.0",
        "status": "affected",
        "lessThan": "4.*"
      },
      {
        "versionType": "semver",
        "version": "5.0",
        "status": "affected",
        "lessThan": "5.*"
      },
      {
        "versionType": "semver",
        "version": "6.0",
        "status": "affected",
        "lessThan": "6.*"
      },
      {
        "versionType": "semver",
        "version": "7.0",
        "status": "affected",
        "lessThan": "7.*"
      },
      {
        "versionType": "semver",
        "version": "8.0",
        "status": "affected",
        "lessThan": "8.*"
      },
      {
        "versionType": "semver",
        "version": "9.0",
        "status": "affected",
        "lessThan": "9.*"
      },
      {
        "versionType": "semver",
        "version": "10.0",
        "status": "affected",
        "lessThan": "10.*"
      },
      {
        "versionType": "semver",
        "version": "11.0",
        "status": "affected",
        "lessThan": "11.*"
      },
      {
        "versionType": "semver",
        "version": "12.0",
        "status": "affected",
        "lessThan": "12.*"
      },
      {
        "versionType": "semver",
        "version": "13.0",
        "status": "affected",
        "lessThan": "13.*"
      },
      {
        "versionType": "semver",
        "version": "14.0",
        "status": "affected",
        "lessThan": "14.20.0"
      },
      {
        "versionType": "semver",
        "version": "15.0",
        "status": "affected",
        "lessThan": "15.*"
      },
      {
        "versionType": "semver",
        "version": "16.0",
        "status": "affected",
        "lessThan": "16.20.0"
      },
      {
        "versionType": "semver",
        "version": "17.0",
        "status": "affected",
        "lessThan": "17.*"
      },
      {
        "versionType": "semver",
        "version": "18.0",
        "status": "affected",
        "lessThan": "18.5.0"
      }
    ]
  }
]

Source	Link
nodejs	www.nodejs.org/en/blog/vulnerability/july-2022-security-releases/
security	www.security.netapp.com/advisory/ntap-20220915-0001/
hackerone	www.hackerone.com/reports/1447455

30 Apr 2025 22:24Current

7High risk

Vulners AI Score7

CVSS 3.17.3

EPSS0.08112

CWE-427