Node.js is a platform built on Chrome’s JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices.

OSVersionArchitecturePackageVersionFilename
Fedora36anynodejs< 16.18.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Fedora	36	any	nodejs	< 16.18.1	UNKNOWN

openvas 32

fedora 2

nessus 53

suse 10

altlinux 1

nodejsblog 2

osv 15

debian 1

mageia 2

ibm 23

ubuntu 1

oraclelinux 5

almalinux 4

redhat 7

rocky 5

photon 3

ics 1

freebsd 1

veracode 3

ubuntucve 4

prion 2

debiancve 3

cve 2

hackerone 6

alpinelinux 3

redhatcve 2

f5 2

cbl_mariner 4

openvas

Fedora: Security Advisory for nodejs (FEDORA-2022-1667f7b60a)

2022-11-29 00:00:00

Fedora: Security Advisory for nodejs (FEDORA-2022-de515f765f)

2022-11-29 00:00:00

Fedora: Security Advisory for nodejs (FEDORA-2022-52dec6351a)

2022-11-29 00:00:00

fedora

[SECURITY] Fedora 37 Update: nodejs-18.12.1-1.fc37

2022-11-29 01:13:36

[SECURITY] Fedora 35 Update: nodejs-16.18.1-1.fc35

2022-11-29 00:57:02

nessus

Fedora 36 : 1:nodejs (2022-52dec6351a)

2022-12-22 00:00:00

Fedora 35 : 1:nodejs (2022-de515f765f)

2022-12-23 00:00:00

SUSE SLES12 Security Update : nodejs16 (SUSE-SU-2022:3524-1)

2022-10-06 00:00:00

suse

Security update for nodejs16 (important)

2022-10-19 00:00:00

Security update for nodejs16 (important)

2022-10-18 00:00:00

Security update for nodejs12 (important)

2022-07-18 00:00:00

altlinux

Security fix for the ALT Linux 10 package node version 16.17.1-alt1

2022-09-30 00:00:00

nodejsblog

September 23rd 2022 Security Releases

2022-09-15 00:00:00

July 7th 2022 Security Releases

2022-07-07 00:00:00

osv

nodejs - security update

2023-01-24 00:00:00

nodejs vulnerabilities

2023-11-21 09:15:47

Important: nodejs:18 security update

2022-11-08 00:00:00

debian

[SECURITY] [DSA 5326-1] nodejs security update

2023-01-24 20:01:20

mageia

Updated nodejs packages fix security vulnerability

2022-10-01 20:48:24

Updated nodejs packages fix security vulnerability

2022-08-26 00:21:07

ibm

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js

2022-11-30 10:21:01

Security Bulletin: Security vulnerabilities in IBM SDK for Node.js might affect the configuration editor used by IBM Business Automation Workflow

2022-11-02 09:54:34

Security Bulletin: Multiple Vulnerabilities in node.js

2022-10-27 10:20:03

ubuntu

Node.js vulnerabilities

2023-11-21 00:00:00

oraclelinux

nodejs:18 security update

2022-11-15 00:00:00

nodejs:16 security update

2022-10-18 00:00:00

nodejs security update

2022-10-17 00:00:00

almalinux

Important: nodejs security update

2022-10-18 00:00:00

Important: nodejs:18 security update

2022-11-08 00:00:00

Important: nodejs:16 security update

2022-10-17 00:00:00

redhat

(RHSA-2022:7821) Important: nodejs:18 security update

2022-11-08 10:51:14

(RHSA-2022:6964) Important: nodejs:16 security update

2022-10-17 07:00:47

(RHSA-2022:6963) Important: nodejs security update

2022-10-17 07:00:44

rocky

nodejs:18 security update

2022-11-08 10:51:14

nodejs security update

2022-10-17 07:00:44

nodejs:16 security update

2022-10-17 07:00:47

photon

Critical Photon OS Security Update - PHSA-2022-0426

2022-07-26 00:00:00

Important Photon OS Security Update - PHSA-2022-3.0-0426

2022-07-26 00:00:00

Critical Photon OS Security Update - PHSA-2022-0262

2022-10-12 00:00:00

ics

Siemens SINEC INS

2023-01-17 12:00:00

freebsd

Node.js -- July 7th 2022 Security Releases

2022-07-05 00:00:00

veracode

Weak Cryptography

2022-09-27 22:47:18

HTTP Request Smuggling

2022-09-27 22:47:16

HTTP Request Smuggling

2022-07-08 08:18:07

ubuntucve

CVE-2022-35255

2022-12-05 00:00:00

CVE-2022-35256

2022-12-05 00:00:00

CVE-2022-32213

2022-07-14 00:00:00

prion

Code injection

2022-12-05 22:15:00

Design/Logic Flaw

2022-12-05 22:15:00

debiancve

CVE-2022-35255

2022-12-05 22:15:00

CVE-2022-35256

2022-12-05 22:15:00

CVE-2022-32213

2022-07-14 15:15:00

cve

CVE-2022-35255

2022-12-05 22:15:00

CVE-2022-35256

2022-12-05 22:15:00

hackerone

Internet Bug Bounty: Use of Cryptographically Weak Pseudo-Random Number Generator in WebCrypto keygen

2023-02-28 07:06:10

Node.js: Weak randomness in WebCrypto keygen

2022-09-02 19:03:49

Node.js: HTTP Request Smuggling Due to Incorrect Parsing of Header Fields

2022-08-20 03:13:30

alpinelinux

CVE-2022-35255

2022-12-05 22:15:00

CVE-2022-35256

2022-12-05 22:15:00

CVE-2022-32215

2022-07-14 15:15:00

redhatcve

CVE-2022-35255

2022-09-28 13:49:07

CVE-2022-35256

2022-09-28 13:49:17

K17011311 : NodeJS vulnerability CVE-2022-35256

2022-12-09 00:00:00

NodeJS vulnerability CVE-2022-32215

2022-11-22 17:02:00

cbl_mariner

CVE-2022-35256 affecting package nodejs 14.20.1-2

2022-12-27 17:55:50

CVE-2022-32213 affecting package nodejs 16.16.0-2

2022-08-31 06:17:55

CVE-2022-32215 affecting package nodejs 16.14.2-2

2022-08-31 06:17:55

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.006 Low

EPSS

Percentile

78.2%

JSON

Related for FEDORA:CF3953074B6D