Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-38900
HistoryNov 28, 2022 - 1:15 p.m.

CVE-2022-38900

2022-11-2813:15:10
CWE-20
[email protected]
web.nvd.nist.gov
6
decode-uri-component vulnerability
input validation
dos
cve-2022-38900

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.004

Percentile

73.2%

JSON

decode-uri-component 0.2.0 is vulnerable to Improper Input Validation resulting in DoS.

Affected configurations

Nvd
Node
decode-uri-component_projectdecode-uri-componentMatch0.2.0
VendorProductVersionCPE
decode-uri-component_projectdecode-uri-component0.2.0cpe:2.3:a:decode-uri-component_project:decode-uri-component:0.2.0:*:*:*:*:*:*:*

Related

redhat 8
nessus 20
fedora 5
veracode 1
cvelist 2
redhatcve 1
osv 6
ibm 16
cve 2
openvas 7
oraclelinux 2
almalinux 2
prion 2
github 1
nvd 1
rocky 1
redos 1
redhat
redhat
(RHSA-2023:6316) Low: pcs security, bug fix, and enhancement update
2023-11-07 06:01:53
(RHSA-2023:1744) Important: rh-nodejs14-nodejs security, bug fix, and enhancement update
2023-04-12 14:38:13
(RHSA-2023:1743) Important: nodejs:14 security, bug fix, and enhancement update
2023-04-12 14:37:46
nessus
nessus
RHEL 9 : pcs (RHSA-2023:6316)
2023-11-07 00:00:00
Fedora 37 : pcs (2023-ae96dd6105)
2023-07-01 00:00:00
Fedora 39 : pcs (2023-e4cb7a5bda)
2023-11-07 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: pcs-0.11.6-1.fc37
2023-07-01 00:38:09
[SECURITY] Fedora 38 Update: pcs-0.11.6-1.fc38
2023-07-01 01:46:23
[SECURITY] Fedora 37 Update: yarnpkg-1.22.19-5.fc37
2023-03-30 01:21:37
veracode
veracode
Denial Of Service (DoS)
2022-11-29 02:52:14
cvelist
cvelist
CVE-2022-38900
2022-11-28 00:00:00
CVE-2022-38778
2023-02-08 00:00:00
redhatcve
redhatcve
CVE-2022-38900
2023-02-16 21:29:43
osv
osv
Low: pcs security, bug fix, and enhancement update
2023-11-07 00:00:00
CVE-2022-38900
2022-11-28 13:15:10
decode-uri-component vulnerable to Denial of Service (DoS)
2022-11-28 15:30:24
ibm
ibm
Security Bulletin: Vulnerability in nodejs decode-uri-component affect Cloud Pak System[CVE-2022-38900]
2024-08-01 12:45:28
Security Bulletin: IBM Cloud Pak for Data is vulnerable to possible denial of service due to decode-uri-component (CVE-2022-38900 )
2024-08-08 14:38:57
Security Bulletin: decode-uri-component is vulnerable to CVE-2022-38900 used in IBM Maximo Application Suite
2023-04-05 20:33:59
cve
cve
CVE-2022-38900
2022-11-28 13:15:10
CVE-2022-38778
2023-02-08 21:15:10
openvas
openvas
Fedora: Security Advisory for pcs (FEDORA-2023-ae96dd6105)
2023-07-02 00:00:00
Fedora: Security Advisory (FEDORA-2023-e4cb7a5bda)
2024-09-10 00:00:00
Fedora: Security Advisory for pcs (FEDORA-2023-b86fd9ad80)
2023-07-02 00:00:00
oraclelinux
oraclelinux
pcs
2023-11-12 00:00:00
nodejs:14 security, bug fix, and enhancement update
2023-04-12 00:00:00
almalinux
almalinux
Low: pcs security, bug fix, and enhancement update
2023-11-07 00:00:00
Important: nodejs:14 security, bug fix, and enhancement update
2023-04-12 00:00:00
prion
prion
Input validation
2022-11-28 13:15:00
Design/Logic Flaw
2023-02-08 21:15:00
github
github
decode-uri-component vulnerable to Denial of Service (DoS)
2022-11-28 15:30:24
nvd
nvd
CVE-2022-38778
2023-02-08 21:15:10
rocky
rocky
nodejs:14 security, bug fix, and enhancement update
2023-04-26 15:28:13
redos
redos
ROS-20240704-07
2024-07-04 00:00:00

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.004

Percentile

73.2%

JSON
Related for NVD:CVE-2022-38900
redhat8nessus20fedora5veracode1cvelist2redhatcve1osv6ibm16cve2openvas7oraclelinux2almalinux2prion2github1nvd1rocky1redos1