OSVersionArchitecturePackageVersionFilename
Photon5.0x86_64gnupg< 2.2.41-1.ph5gnupg-2.2.41-1.ph5.x86_64.rpm
Photon5.0x86_64nodejs-devel< 18.16.0-1.ph5nodejs-devel-18.16.0-1.ph5.x86_64.rpm
Photon5.0x86_64nodejs< 18.16.0-1.ph5nodejs-18.16.0-1.ph5.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
Photon	5.0	x86_64	gnupg	< 2.2.41-1.ph5	gnupg-2.2.41-1.ph5.x86_64.rpm
Photon	5.0	x86_64	nodejs-devel	< 18.16.0-1.ph5	nodejs-devel-18.16.0-1.ph5.x86_64.rpm
Photon	5.0	x86_64	nodejs	< 18.16.0-1.ph5	nodejs-18.16.0-1.ph5.x86_64.rpm

nessus 49

nodejsblog 2

openvas 24

mageia 1

fedora 7

debian 1

ics 3

redhat 6

ibm 15

rocky 3

gentoo 1

f5 2

oraclelinux 6

osv 14

rapid7blog 2

qualysblog 2

wizblog 1

kaspersky 2

intel 1

hivepro 1

akamaiblog 1

photon 7

nvidia 1

amd 1

checkpoint_advisories 1

talosblog 1

cisa 1

cisco 1

almalinux 5

freebsd 1

arista 1

ubuntucve 2

fortinet 1

altlinux 1

trellix 4

suse 1

ubuntu 3

aix 1

mscve 1

msrc 2

thn 1

cert 1

alpinelinux 3

prion 2

redhatcve 2

hackerone 1

veracode 1

cbl_mariner 5

cve 2

debiancve 1

nessus

Node.js 14.x < 14.21.1 / 16.x < 16.18.1 / 18.x < 18.12.1 / 19.x < 19.0.1 Multiple Vulnerabilities (Nov 3 2022 Security Releases).

2022-11-05 00:00:00

SUSE SLES15 / openSUSE 15 Security Update : nodejs14 (SUSE-SU-2023:0674-1)

2023-03-10 00:00:00

SUSE SLES15 / openSUSE 15 Security Update : nodejs16 (SUSE-SU-2023:0608-1)

2023-03-05 00:00:00

nodejsblog

Nov 3 2022 Security Releases

2022-11-01 00:00:00

Thursday February 16 2023 Security Releases

2023-02-16 00:00:00

openvas

Node.js 14.x < 14.21.3, 16.x < 16.19.1, 18.x < 18.14.1, 19.x < 19.6.1 Multiple Vulnerabilities - Windows

2023-02-27 00:00:00

Node.js 14.x < 14.21.3, 16.x < 16.19.1, 18.x < 18.14.1, 19.x < 19.6.1 Multiple Vulnerabilities - Mac OS X

2023-02-27 00:00:00

Fedora: Security Advisory for nodejs18 (FEDORA-2023-973319d5b7)

2023-04-05 00:00:00

mageia

Updated nodejs packages fix security vulnerability

2023-03-02 00:14:31

fedora

[SECURITY] Fedora 38 Update: nodejs16-16.20.0-2.fc38

2023-04-04 18:17:01

[SECURITY] Fedora 38 Update: nodejs20-19.8.1-7.fc38

2023-04-04 18:17:01

[SECURITY] Fedora 36 Update: openssl-3.0.5-2.fc36

2022-11-02 01:50:12

debian

[SECURITY] [DLA 3344-1] nodejs security update

2023-02-26 01:17:34

ics

Hitachi Energy PCU400

2023-01-19 12:00:00

Siemens Products affected by OpenSSL 3.0

2022-12-15 12:00:00

Hitachi Energy Lumada Asset Performance Management

2023-01-05 12:00:00

redhat

(RHSA-2022:7288) Important: openssl security update

2022-11-01 18:25:07

(RHSA-2022:7384) Important: openssl-container security update

2022-11-02 18:29:10

(RHSA-2023:1583) Moderate: nodejs:18 security, bug fix, and enhancement update

2023-04-04 08:51:34

ibm

Security Bulletin: IBM MQ Advanced Message Security on IBM i platforms is affected by a buffer overflow issue in OpenSSL (CVE-2022-3602, CVE-2022-3786)

2022-11-04 12:45:04

Security Bulletin: IBM Observability with Instana (OnPrem) affected by OpenSSL vulnerabilities.

2023-03-07 09:44:53

Security Bulletin: Multiple vulnerabilities present in IBM Answer Retrieval for Watson Discovery versions 2.10 and earlier

2023-03-15 17:24:51

rocky

openssl security update

2022-11-01 18:25:07

nodejs:16 security, bug fix, and enhancement update

2023-04-06 15:52:43

gnupg2 security update

2022-09-13 07:37:17

gentoo

OpenSSL: Multiple Vulnerabilities

2022-11-01 00:00:00

OpenSSL vulnerabilities CVE-2022-3786 and CVE-2022-3602

2022-10-28 17:31:00

K000134602 : Node.js vulnerabilities CVE-2023-23918 and CVE-2023-23920

2023-05-15 00:00:00

oraclelinux

openssl security update

2022-11-01 00:00:00

openssl security update

2022-11-17 00:00:00

openssl security update

2022-11-01 00:00:00

osv

nodejs - security update

2023-02-26 00:00:00

Important: openssl security update

2022-11-01 18:25:07

Important: openssl security update

2022-11-01 00:00:00

rapid7blog

Rapid7’s Impact from OpenSSL Buffer Overflow Vulnerabilities (CVE-2022-3786 & CVE-2022-3602)

2022-11-11 13:41:22

CVE-2022-3786 and CVE-2022-3602: Two High-Severity Buffer Overflow Vulnerabilities in OpenSSL Fixed

2022-11-01 16:38:53

qualysblog

Qualys Research Alert: OpenSSL 3.0.7 – What You Need To Know

2022-10-31 14:15:52

OpenSSL Vulnerability Recap

2022-11-03 17:00:00

wizblog

OpenSSL vulnerabilities: Everything you need to know

2022-10-29 04:11:46

kaspersky

KLA20037 Multiple vulnerabilities in Microsoft Open Source Software

2022-11-02 00:00:00

KLA20036 Multiple vulnerabilities in Microsoft Azure

2022-11-02 00:00:00

intel

Intel® Software Products Advisory for OpenSSL Vulnerabilities (CVE-2022-3786 & CVE-2022-3602) Advisory

2023-02-02 00:00:00

hivepro

Patch available for pre-announced Critical Vulnerability in OpenSSL

2022-11-02 07:27:54

akamaiblog

An update on the impact of OpenSSL CVE-2022-3602 and CVE-2022-3786 on Akamai's systems

2022-11-07 10:00:00

photon

Important Photon OS Security Update - PHSA-2022-0272

2022-11-02 00:00:00

Moderate Photon OS Security Update - PHSA-2022-4.0-0218

2022-07-29 00:00:00

Moderate Photon OS Security Update - PHSA-2022-0501

2022-07-29 00:00:00

nvidia

Security Notice: NVIDIA Response to OpenSSL Vulnerabilities - November 2022

2022-11-01 00:00:00

amd

OpenSSL Vulnerabilities

2023-08-08 00:00:00

checkpoint_advisories

OpenSSL Buffer Overflow (CVE-2022-3602; CVE-2022-3786)

2022-11-03 00:00:00

talosblog

Threat Advisory: High Severity OpenSSL Vulnerabilities

2022-11-01 19:03:49

cisa

OpenSSL Releases Security Update

2022-11-01 00:00:00

cisco

Vulnerabilities in OpenSSL Affecting Cisco Products: November 2022

2022-10-28 16:00:00

almalinux

Important: openssl security update

2022-11-01 00:00:00

Moderate: nodejs:18 security, bug fix, and enhancement update

2023-05-09 00:00:00

Moderate: nodejs:16 security, bug fix, and enhancement update

2023-04-04 00:00:00

freebsd

OpenSSL -- Buffer overflows in Email verification

2022-11-01 00:00:00

arista

Security Advisory 0081

2022-11-01 00:00:00

ubuntucve

CVE-2022-3786

2022-11-01 00:00:00

CVE-2023-23919

2023-02-23 00:00:00

fortinet

Protect

2022-10-28 00:00:00

altlinux

Security fix for the ALT Linux 10 package node version 16.19.1-alt1

2023-03-22 00:00:00

trellix

CVE-2023-0286: The OpenSSL Who Cried “Severity: High

2023-02-09 00:00:00

OpenSSL 3.0 Vulnerabilities: CVE 2022-3786 and CVE 2022-3602

2022-11-01 00:00:00

CVE-2023-0286: The OpenSSL Who Cried “Severity: High

2023-02-09 00:00:00

suse

Security update for openssl-3 (critical)

2022-11-01 00:00:00

ubuntu

Node.js vulnerabilities

2024-03-04 00:00:00

OpenSSL vulnerabilities

2022-11-01 00:00:00

GnuPG vulnerability

2022-07-12 00:00:00

aix

Multiple vulnerabilities in OpenSSL affect AIX

2023-01-24 09:22:21

mscve

OpenSSL: CVE-2022-3602 X.509 certificate verification buffer overrun

2022-11-02 07:00:00

msrc

Awareness and guidance related to OpenSSL 3.0 - 3.0.6 risk (CVE-2022-3786 and CVE-2202-3602)

2022-11-02 07:00:00

Awareness and guidance related to OpenSSL 3.0 - 3.0.6 risk (CVE-2022-3786 and CVE-2202-3602)

2022-11-02 07:00:00

thn

OpenSSL Releases Patch for 2 New High-Severity Vulnerabilities

2022-11-01 16:26:00

cert

OpenSSL 3.0.0 to 3.0.6 decodes some punycode email addresses in X.509 certificates improperly

2022-11-01 00:00:00

alpinelinux

CVE-2023-23919

2023-02-23 20:15:13

CVE-2022-34903

2022-07-01 22:15:00

CVE-2023-23920

2023-02-23 20:15:14

prion

Design/Logic Flaw

2023-02-23 20:15:00

Privilege escalation

2023-02-23 20:15:00

redhatcve

CVE-2023-23919

2023-02-21 15:59:29

CVE-2023-23918

2023-02-20 22:29:19

hackerone

Node.js: Permissions policies can be bypassed via process.mainModule

2022-10-24 11:29:58

veracode

Improper Access Control

2023-02-18 04:53:51

cbl_mariner

CVE-2023-23920 affecting package nodejs 16.19.1-2

2023-03-24 23:56:25

CVE-2023-23919 affecting package nodejs 16.19.1-2

2023-03-24 23:56:25

CVE-2022-34903 affecting package gnupg2 2.3.3-3

2022-09-13 22:36:40

cve

CVE-2023-23920

2023-02-23 20:15:14

CVE-2023-23919

2023-02-23 20:15:13

debiancve

CVE-2023-23919

2023-02-23 20:15:13

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.073 Low

EPSS

Percentile

93.8%

JSON

Related for PHSA-2023-5.0-0011