Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

GoogleOSV:OPENSUSE-SU-2024:13021-1

HistoryJun 15, 2024 - 12:00 a.m.

Vulners
/
Osv
/
corepack20-20.3.1-1.1 on GA media

corepack20-20.3.1-1.1 on GA media

2024-06-1500:00:00

Google

osv.dev

corepack20

20.3.1

opensuse tumbleweed

security

ga media

CVSS3

7.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

AI Score

7.2

Confidence

Low

JSON

These are all security issues fixed in the corepack20-20.3.1-1.1 package on the GA media of openSUSE Tumbleweed.

References

www.suse.com/security/cve/CVE-2023-30581

www.suse.com/security/cve/CVE-2023-30582

www.suse.com/security/cve/CVE-2023-30583

www.suse.com/security/cve/CVE-2023-30584

www.suse.com/security/cve/CVE-2023-30585

www.suse.com/security/cve/CVE-2023-30586

www.suse.com/security/cve/CVE-2023-30587

www.suse.com/security/cve/CVE-2023-30588

www.suse.com/security/cve/CVE-2023-30589

www.suse.com/security/cve/CVE-2023-30590

nodejsblog 1

openvas 15

mageia 1

ibm 10

nessus 39

fedora 4

almalinux 4

redhat 6

osv 32

oraclelinux 4

rocky 2

ubuntu 1

ubuntucve 8

hackerone 8

redhatcve 9

cvelist 7

debiancve 8

cve 6

cgr 6

vulnrichment 4

wolfi 5

debian 1

broadcom 1

nvd 7

redos 1

prion 3

alpinelinux 2

veracode 2

cbl_mariner 2

nodejsblog

Tuesday June 20 2023 Security Releases

2023-06-20 00:00:00

openvas

Mageia: Security Advisory (MGASA-2023-0226)

2023-07-10 00:00:00

Fedora: Security Advisory for nodejs16 (FEDORA-2023-608a1417d3)

2023-07-23 00:00:00

Fedora: Security Advisory for nodejs18 (FEDORA-2023-6b866fbe84)

2023-07-20 00:00:00

mageia

Updated nodejs packages fix security vulnerability

2023-07-07 08:54:45

ibm

Security Bulletin: Multiple vulnerabilities present in IBM Answer Retrieval for Watson Discovery versions 2.12 and earlier

2023-08-08 22:22:51

Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to permissions bypass, privilege escalation, key generation failure, denial of service and request smuggling due to vulnerabilities in Node.js

2023-08-18 08:18:37

Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Node.js

2023-09-27 21:08:19

nessus

Node.js 16.x < 16.20.1 / 18.x < 18.16.1 / 20.x < 20.3.1 Multiple Vulnerabilities (Tuesday June 20 2023 Security Releases).

2023-06-22 00:00:00

Rocky Linux 8 : nodejs:16 (RLSA-2023:4537)

2023-08-08 00:00:00

AlmaLinux 9 : nodejs (ALSA-2023:4331)

2023-08-02 00:00:00

fedora

[SECURITY] Fedora 37 Update: nodejs18-18.16.1-1.fc37

2023-07-19 04:21:14

[SECURITY] Fedora 38 Update: nodejs18-18.16.1-1.fc38

2023-07-21 02:27:09

[SECURITY] Fedora 38 Update: nodejs16-16.20.1-1.fc38

2023-07-21 02:27:10

almalinux

Moderate: nodejs:16 security, bug fix, and enhancement update

2023-08-08 00:00:00

Moderate: nodejs:18 security, bug fix, and enhancement update

2023-08-08 00:00:00

Moderate: nodejs security, bug fix, and enhancement update

2023-07-31 00:00:00

redhat

(RHSA-2023:4330) Moderate: nodejs:18 security, bug fix, and enhancement update

2023-07-31 08:54:02

(RHSA-2023:4331) Moderate: nodejs security, bug fix, and enhancement update

2023-07-31 08:55:53

(RHSA-2023:4537) Moderate: nodejs:16 security, bug fix, and enhancement update

2023-08-08 07:21:45

osv

Moderate: nodejs:18 security, bug fix, and enhancement update

2023-08-08 00:00:00

Moderate: nodejs security, bug fix, and enhancement update

2023-07-31 00:00:00

Moderate: nodejs:18 security, bug fix, and enhancement update

2023-10-06 23:10:12

oraclelinux

nodejs:18 security, bug fix, and enhancement update

2023-08-10 00:00:00

nodejs security, bug fix, and enhancement update

2023-08-02 00:00:00

18 security, bug fix, and enhancement update

2023-08-02 00:00:00

rocky

nodejs:16 security, bug fix, and enhancement update

2023-08-08 12:34:39

nodejs:18 security, bug fix, and enhancement update

2023-10-06 23:10:12

ubuntu

Node.js vulnerabilities

2024-04-16 00:00:00

ubuntucve

CVE-2023-30583

2023-06-21 00:00:00

CVE-2023-30587

2023-06-21 00:00:00

CVE-2023-30586

2023-07-01 00:00:00

hackerone

Node.js: fs module's file watching is not restricted by --allow-fs-read

2023-04-29 22:43:56

Internet Bug Bounty: CVE-2023-30587 Process-based permissions can be bypassed with the "inspector" module.

2023-07-21 04:12:10

Node.js: Process-based permissions can be bypassed with the "inspector" module.

2023-04-26 17:50:54

redhatcve

CVE-2023-30582

2023-07-05 15:17:45

CVE-2023-30587

2023-07-05 15:18:33

CVE-2023-30586

2023-07-05 15:18:23

cvelist

CVE-2023-30582

2024-09-07 16:00:35

CVE-2023-30586

2023-06-30 23:40:08

CVE-2023-30583

2024-09-07 16:00:35

debiancve

CVE-2023-30587

2024-09-07 16:15:02

CVE-2023-30586

2023-07-01 00:15:10

CVE-2023-30583

2024-09-07 16:15:02

cve

CVE-2023-30586

2023-07-01 00:15:10

CVE-2023-30584

2024-09-07 16:15:02

CVE-2023-30583

2024-09-07 16:15:02

cgr

CVE-2023-30582 vulnerabilities

2024-05-19 03:07:16

CVE-2023-30583 vulnerabilities

2024-05-19 03:07:16

CVE-2023-30586 vulnerabilities

2024-05-19 03:07:16

vulnrichment

CVE-2023-30582

2024-09-07 16:00:35

CVE-2023-30583

2024-09-07 16:00:35

CVE-2023-30584

2024-09-07 16:00:35

wolfi

CVE-2023-30587 vulnerabilities

2024-09-28 03:12:04

CVE-2023-30583 vulnerabilities

2024-09-28 03:12:04

CVE-2023-30586 vulnerabilities

2024-09-28 03:12:04

debian

[SECURITY] [DSA 5589-1] nodejs security update

2023-12-27 22:12:40

broadcom

Privilege escalation vulnerability in Node.js 20 could allow loading arbitrary OpenSSL engines when the experimental permission model is enabled (CVE-2023-30586).

2023-12-19 00:00:00

nvd

CVE-2023-30586

2023-07-01 00:15:10

CVE-2023-30584

2024-09-07 16:15:02

CVE-2023-30583

2024-09-07 16:15:02

redos

ROS-20240916-12

2024-09-16 00:00:00

prion

Privilege escalation

2023-07-01 00:15:00

Code injection

2023-11-28 02:15:00

Design/Logic Flaw

2023-11-28 20:15:00

alpinelinux

CVE-2023-30581

2023-11-23 00:15:07

CVE-2023-30589

2023-07-01 00:15:10

veracode

Inconsistency Between Implementation And Documented Design

2023-11-29 05:49:28

Prototype Pollution

2023-11-29 05:46:29

cbl_mariner

CVE-2023-30589 affecting package nodejs18 for versions less than 18.17.1-2

2023-09-27 18:02:50

CVE-2023-30589 affecting package nodejs for versions less than 16.20.1-2

2023-08-03 02:51:21

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS3

7.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

AI Score

7.2

Confidence

Low

JSON

Related for OSV:OPENSUSE-SU-2024:13021-1