Lucene search

CVE-2022-43548

🗓️ 05 Dec 2022 00:00:00Reported by hackeroneType

Node.js OS Command Injection Vulnerabilit

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
OSV	BIT-NODE-2022-43548	6 Mar 202411:02	–	osv
OSV	UBUNTU-CVE-2022-43548	5 Dec 202222:15	–	osv
OSV	BIT-NODE-MIN-2022-43548	16 Dec 202414:00	–	osv
OSV	CVE-2022-43548	5 Dec 202222:15	–	osv
OSV	SUSE-SU-2022:4255-1 Security update for nodejs14	28 Nov 202211:30	–	osv
OSV	OPENSUSE-SU-2024:12489-1 corepack19-19.0.1-1.1 on GA media	15 Jun 202400:00	–	osv
OSV	MGASA-2022-0422 Updated nodejs packages fix security vulnerability	13 Nov 202202:25	–	osv
OSV	OPENSUSE-SU-2024:12488-1 corepack18-18.12.1-1.1 on GA media	15 Jun 202400:00	–	osv
OSV	SUSE-SU-2022:3968-1 Security update for nodejs14	14 Nov 202211:30	–	osv
OSV	SUSE-SU-2022:3967-1 Security update for nodejs16	14 Nov 202211:29	–	osv

[
  {
    "product": "Node",
    "vendor": "NodeJS",
    "defaultStatus": "unaffected",
    "versions": [
      {
        "versionType": "semver",
        "version": "4.0",
        "status": "affected",
        "lessThan": "4.*"
      },
      {
        "versionType": "semver",
        "version": "5.0",
        "status": "affected",
        "lessThan": "5.*"
      },
      {
        "versionType": "semver",
        "version": "6.0",
        "status": "affected",
        "lessThan": "6.*"
      },
      {
        "versionType": "semver",
        "version": "7.0",
        "status": "affected",
        "lessThan": "7.*"
      },
      {
        "versionType": "semver",
        "version": "8.0",
        "status": "affected",
        "lessThan": "8.*"
      },
      {
        "versionType": "semver",
        "version": "9.0",
        "status": "affected",
        "lessThan": "9.*"
      },
      {
        "versionType": "semver",
        "version": "10.0",
        "status": "affected",
        "lessThan": "10.*"
      },
      {
        "versionType": "semver",
        "version": "11.0",
        "status": "affected",
        "lessThan": "11.*"
      },
      {
        "versionType": "semver",
        "version": "12.0",
        "status": "affected",
        "lessThan": "12.*"
      },
      {
        "versionType": "semver",
        "version": "13.0",
        "status": "affected",
        "lessThan": "13.*"
      },
      {
        "versionType": "semver",
        "version": "14.0",
        "status": "affected",
        "lessThan": "14.21.1"
      },
      {
        "versionType": "semver",
        "version": "15.0",
        "status": "affected",
        "lessThan": "15.*"
      },
      {
        "versionType": "semver",
        "version": "16.0",
        "status": "affected",
        "lessThan": "16.18.1"
      },
      {
        "versionType": "semver",
        "version": "17.0",
        "status": "affected",
        "lessThan": "17.*"
      },
      {
        "versionType": "semver",
        "version": "18.0",
        "status": "affected",
        "lessThan": "18.12.1"
      },
      {
        "versionType": "semver",
        "version": "19.0",
        "status": "affected",
        "lessThan": "19.0.1"
      }
    ]
  }
]

Source	Link
security	www.security.netapp.com/advisory/ntap-20230427-0007/
lists	www.lists.debian.org/debian-lts-announce/2023/02/msg00038.html
nodejs	www.nodejs.org/en/blog/vulnerability/november-2022-security-releases/
security	www.security.netapp.com/advisory/ntap-20230120-0004/
debian	www.debian.org/security/2023/dsa-5326

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Dec 2022 00:00Current

8.6High risk

Vulners AI Score8.6

EPSS0.00535

CWE-78