Node.js: DNS Max Responses for DOS

🗓️ 12 Nov 2020 18:32:25Reported by zeus1999Type

hackerone

hackerone🔗 hackerone.com👁 115 Views

Node.js DNS max responses vulnerability on Window

Reporter	Title	Published	Views	Family All 218
IBM Security Bulletins	Security Bulletin: IBM Event Streams is affected by multiple Node.js vulnerabilities	15 Jan 202114:41	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Storage Defender – Data Protect	26 Mar 202503:57	–	ibm
IBM Security Bulletins	Security Bulletin: Cloud Pak for Security contains security vulnerabilities	13 May 202121:45	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability in Node.js affects IBM Cloud Pak for Multicloud Management.	19 Feb 202105:10	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Transformation Advisor is affected by a Node.js vulnerability	11 Dec 202016:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container may be vulnerable to a denial of service attack through a DNS lookup that returns a large number of responses (CVE-2020-8277)	29 Apr 202111:10	–	ibm
IBM Security Bulletins	Security Bulletin: IBM API Connect is vulnerable to denial of service (DoS) via Node.js (CVE-2020-8277)	6 Mar 202117:41	–	ibm
IBM Security Bulletins	Security Bulletin: Version 12.18.4 of Node.js included in IBM Netcool Operations Insight 1.6.2.x has a security vulnerability	15 Dec 202018:47	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability in Node.js affects IBM Cloud Automation Manager.	15 May 202312:07	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM® SDK for Node.js™ in IBM Cloud	9 Dec 202021:05	–	ibm

16 Dec 2020 22:08Current

0.7Low risk

Vulners AI Score0.7

EPSS0.58883

$250

node.js dns vulnerability windows security bugbounty