Node.js is a platform built on Chrome’s JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices.

OSVersionArchitecturePackageVersionFilename
Fedora37anynodejs< 18.12.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Fedora	37	any	nodejs	< 18.12.1	UNKNOWN

nessus 53

openvas 32

fedora 2

suse 10

altlinux 1

nodejsblog 2

osv 15

debian 1

mageia 2

ibm 23

ubuntu 1

photon 3

oraclelinux 5

rocky 5

almalinux 4

redhat 7

ics 1

freebsd 1

nvd 2

cbl_mariner 3

cvelist 2

f5 1

cve 2

prion 2

alpinelinux 3

debiancve 3

veracode 2

hackerone 5

redhatcve 2

ubuntucve 4

nessus

Fedora 35 : 1:nodejs (2022-de515f765f)

2022-12-23 00:00:00

Fedora 36 : 1:nodejs (2022-52dec6351a)

2022-12-22 00:00:00

SUSE SLES12 Security Update : nodejs16 (SUSE-SU-2022:3524-1)

2022-10-06 00:00:00

openvas

Fedora: Security Advisory for nodejs (FEDORA-2022-52dec6351a)

2022-11-29 00:00:00

Fedora: Security Advisory for nodejs (FEDORA-2022-de515f765f)

2022-11-29 00:00:00

Fedora: Security Advisory for nodejs (FEDORA-2022-1667f7b60a)

2022-11-29 00:00:00

fedora

[SECURITY] Fedora 36 Update: nodejs-16.18.1-1.fc36

2022-11-29 01:28:04

[SECURITY] Fedora 35 Update: nodejs-16.18.1-1.fc35

2022-11-29 00:57:02

suse

Security update for nodejs16 (important)

2022-10-18 00:00:00

Security update for nodejs16 (important)

2022-10-19 00:00:00

Security update for nodejs16 (important)

2022-07-26 00:00:00

altlinux

Security fix for the ALT Linux 10 package node version 16.17.1-alt1

2022-09-30 00:00:00

nodejsblog

September 23rd 2022 Security Releases

2022-09-15 00:00:00

July 7th 2022 Security Releases

2022-07-07 00:00:00

osv

nodejs - security update

2023-01-24 00:00:00

nodejs vulnerabilities

2023-11-21 09:15:47

Important: nodejs:18 security update

2022-11-08 00:00:00

debian

[SECURITY] [DSA 5326-1] nodejs security update

2023-01-24 20:01:20

mageia

Updated nodejs packages fix security vulnerability

2022-10-01 20:48:24

Updated nodejs packages fix security vulnerability

2022-08-26 00:21:07

ibm

Security Bulletin: Security vulnerabilities in IBM SDK for Node.js might affect the configuration editor used by IBM Business Automation Workflow

2022-11-02 09:54:34

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js

2022-11-30 10:21:01

Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to Node.js vulnerabilities (CVE-2022-35256 and CVE-2022-35255)

2022-11-01 10:34:00

ubuntu

Node.js vulnerabilities

2023-11-21 00:00:00

photon

Critical Photon OS Security Update - PHSA-2022-0426

2022-07-26 00:00:00

Important Photon OS Security Update - PHSA-2022-3.0-0426

2022-07-26 00:00:00

Critical Photon OS Security Update - PHSA-2022-0262

2022-10-12 00:00:00

oraclelinux

nodejs security update

2022-10-17 00:00:00

nodejs:18 security update

2022-11-15 00:00:00

nodejs:16 security update

2022-10-18 00:00:00

rocky

nodejs:16 security update

2022-10-17 07:00:47

nodejs security update

2022-10-17 07:00:44

nodejs:18 security update

2022-11-08 10:51:14

almalinux

Important: nodejs security update

2022-10-18 00:00:00

Important: nodejs:16 security update

2022-10-17 00:00:00

Important: nodejs:18 security update

2022-11-08 00:00:00

redhat

(RHSA-2022:6963) Important: nodejs security update

2022-10-17 07:00:44

(RHSA-2022:6964) Important: nodejs:16 security update

2022-10-17 07:00:47

(RHSA-2022:7821) Important: nodejs:18 security update

2022-11-08 10:51:14

ics

Siemens SINEC INS

2023-01-17 12:00:00

freebsd

Node.js -- July 7th 2022 Security Releases

2022-07-05 00:00:00

nvd

CVE-2022-35256

2022-12-05 22:15:10

CVE-2022-35255

2022-12-05 22:15:10

cbl_mariner

CVE-2022-35256 affecting package nodejs 14.20.1-2

2022-12-27 17:55:50

CVE-2022-32215 affecting package nodejs for versions less than 16.16.0-1

2022-08-31 06:17:55

CVE-2022-32213 affecting package nodejs for versions less than 16.20.2-4

2022-08-31 06:17:55

cvelist

CVE-2022-35256

2022-12-05 00:00:00

CVE-2022-35255

2022-12-05 00:00:00

K17011311 : NodeJS vulnerability CVE-2022-35256

2022-12-09 00:00:00

cve

CVE-2022-35256

2022-12-05 22:15:10

CVE-2022-35255

2022-12-05 22:15:10

prion

Design/Logic Flaw

2022-12-05 22:15:00

Code injection

2022-12-05 22:15:00

alpinelinux

CVE-2022-35256

2022-12-05 22:15:10

CVE-2022-35255

2022-12-05 22:15:10

CVE-2022-32215

2022-07-14 15:15:08

debiancve

CVE-2022-35256

2022-12-05 22:15:10

CVE-2022-35255

2022-12-05 22:15:10

CVE-2022-32213

2022-07-14 15:15:08

veracode

HTTP Request Smuggling

2022-09-27 22:47:16

Weak Cryptography

2022-09-27 22:47:18

hackerone

Node.js: HTTP Request Smuggling Due to Incorrect Parsing of Header Fields

2022-08-20 03:13:30

Internet Bug Bounty: Use of Cryptographically Weak Pseudo-Random Number Generator in WebCrypto keygen

2023-02-28 07:06:10

Node.js: Weak randomness in WebCrypto keygen

2022-09-02 19:03:49

redhatcve

CVE-2022-35256

2022-09-28 13:49:17

CVE-2022-35255

2022-09-28 13:49:07

ubuntucve

CVE-2022-35256

2022-12-05 00:00:00

CVE-2022-35255

2022-12-05 00:00:00

CVE-2022-32215

2022-07-14 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

EPSS

0.006

Percentile

78.5%

JSON

Related for FEDORA:DF2B13052DF0