CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N
AI Score
Confidence
Low
Node.js software platform vulnerability is related to mismanagement of code generation. Exploitation
The vulnerability could allow a remote attacker to activate arbitrary code with elevated privileges when handling CAP_NET_BIND_SERVICE exceptions.
elevated privileges when handling CAP_NET_BIND_SERVICE exceptions.