Lucene search
HackeroneCVELIST:CVE-2023-30584HistorySep 07, 2024 - 4:00 p.m.
CVE-2023-30584
2024-09-0716:00:35
hackerone
www.cve.org
8
node.js
vulnerability
experimental permission model
path traversal bypass
file permissions
EPSS
0
Percentile
11.1%
A vulnerability has been discovered in Node.js version 20, specifically within the experimental permission model. This flaw relates to improper handling of path traversal bypass when verifying file permissions.
Please note that at the time this CVE was issued, the permission model is an experimental feature of Node.js.
CNA Affected
[
{
"defaultStatus": "unaffected",
"vendor": "Node.js",
"product": "Node.js",
"versions": [
{
"version": "20.3.1",
"status": "affected",
"lessThan": "20.3.1",
"versionType": "semver"
}
]
}
]Related
redhatcve
redhatcve
cve
cve
osv
osv
BIT-node-2023-30584
2024-09-10 07:19:33
CGA-4j7c-3p2p-hhmh
2024-06-06 12:23:40
BIT-node-2023-39331
2024-03-06 10:59:16
hackerone
hackerone
vulnrichment
vulnrichment
debiancve
debiancve
nvd
nvd
ubuntucve
ubuntucve
cgr
cgr
CVE-2023-30584 vulnerabilities
2024-05-19 03:07:16
wolfi
wolfi
CVE-2023-30584 vulnerabilities
2024-09-28 16:03:05
alpinelinux
alpinelinux
CVE-2023-39331
2023-10-18 04:15:11
CVE-2023-39332
2023-10-18 04:15:11
prion
prion
Path traversal
2023-10-18 04:15:00
Path traversal
2023-10-18 04:15:00
cvelist
cvelist
CVE-2023-39331
2023-10-18 03:55:18
CVE-2023-39332
2023-10-18 03:55:18
ibm
ibm
f5
f5
nessus
nessus
Fedora 39 : nodejs20 (2023-7b52921cae)
2023-11-07 00:00:00
Oracle Linux 8 : nodejs:20 (ELSA-2023-7205)
2023-11-22 00:00:00
Fedora 37 : nodejs20 (2023-f66fc0f62a)
2023-10-26 00:00:00
nodejsblog
nodejsblog
Friday October 13 2023 Security Releases
2023-10-13 00:00:00
Tuesday June 20 2023 Security Releases
2023-06-20 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0226)
2023-07-10 00:00:00
mageia
mageia
Updated nodejs packages fix security vulnerability
2023-07-07 08:54:45
gentoo
gentoo
Node.js: Multiple Vulnerabilities
2024-05-08 00:00:00
ics
ics
Siemens SINEC NMS
2024-02-15 12:00:00