Lucene search
K

58 matches found

CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.23 views

CVE-2022-32214 affecting package rust for versions less than 1.75.0-1

CVE-2022-32214 affecting package rust for versions less than 1.75.0-1. A patched version of the package is available...

6.5CVSS7.1AI score0.77766EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.25 views

openSUSE: Security Advisory for nodejs18 (SUSE-SU-2023:0419-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.1AI score0.77766EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2023/11/22 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-6491-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.9AI score0.77766EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.41 views

Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS : Node.js vulnerabilities (USN-6491-1)

The remote Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6491-1 advisory. Axel Chong discovered that Node.js incorrectly handled certain inputs. If a user or an automated system were tricked into opening...

8.1CVSS8AI score0.77766EPSS
Exploits4References7
Oracle linux
Oracle linux
added 2023/06/15 12:0 a.m.51 views

nodejs security update

1:16.19.1-2 - Update bundled c-ares to 1.19.1 Resolves: CVE-2023-31124 CVE-2023-31130 CVE-2023-31147 CVE-2023-32067 1:16.19.1-1 - Rebase to 16.19.1 - Resolves: rhbz2153714 - Resolves: CVE-2023-23918 CVE-2023-23919 CVE-2023-23936 CVE-2023-24807 CVE-2023-23920 - Resolves: CVE-2022-25881 CVE-2022-49...

9.8CVSS7AI score0.77766EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.43 views

CBL Mariner 2.0 Security Update: nodejs (CVE-2022-32214)

The version of nodejs installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-32214 advisory. - The llhttp parser v14.20.1, v16.17.1 and v18.9.1 in the http module in Node.js does not strictly use the CRL...

6.5CVSS7.3AI score0.77766EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/02/16 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2023:0419-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.9AI score0.77766EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2023/02/15 12:0 a.m.33 views

SUSE SLES12 Security Update : nodejs18 (SUSE-SU-2023:0408-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0408-1 advisory. This update ships nodejs18 jscPED-2097 Update to NodejJS 18.13.0 LTS: build: disable v8 snapshot compression by default crypto:...

9.1CVSS7.2AI score0.77766EPSS
Exploits5References25
OpenVAS
OpenVAS
added 2023/02/15 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2023:0408-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.9AI score0.77766EPSS
Exploits5References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/28 7:52 p.m.46 views

Security Bulletin: IBM Planning Analytics Workspace is affected by vulnerabilities in Node.js and Spring Data MongoDB

Summary IBM Planning Analytics Workspace is affected by vulnerabilties in Node.js and Spring Data MongoDB CVE-2022-32212, CVE-2022-32213, CVE-2022-32223, CVE-2022-32214, CVE-2022-32222, CVE-2022-32215, CVE-2022-22980 Vulnerability Details CVEID:CVE-2022-32212 DESCRIPTION: Node.js could allow a...

9.8CVSS8.7AI score0.77766EPSS
Exploits8Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/21 9:55 p.m.51 views

Security Bulletin: IBM DataPower Gateway potentially vulnerable to HTTP request smuggling

Summary These flaws have the potential to affect the API Gateway Sservice. IBM has addressed the CVEs Vulnerability Details CVEID: CVE-2022-32213 DESCRIPTION: Node.js is vulnerable to HTTP request smuggling, caused by the failure to correctly parse and validate Transfer-Encoding headers by the...

6.5CVSS7.7AI score0.77766EPSS
Exploits3Affected Software4
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/14 2:13 p.m.54 views

Security Bulletin: Multiple vulnerabilities due to OpenSSL and Node js which affect IBM App Connect Enterprise and IBM Integration Bus

Summary There are multiple vulnerabilities due to OpenSSL and Node js which affect IBM App Connect Enterprise and IBM Integration Bus CVE-2022-32223, CVE-2022-32213, CVE-2022-32212, CVE-2022-2097,CVE-2022-32214, CVE-2022-32215. The resolving fix includes node js 14.20.0 and openSSL 1.1.1q...

8.1CVSS8.6AI score0.77766EPSS
Exploits4Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/04 6:17 p.m.28 views

Security Bulletin: IBM App Connect Enterprise Certified Container may be vulnerable to HTTP request smuggling due to CVE-2022-32214

Summary Node.js is used by all IBM App Connect Enterprise Certified Container operands. IBM App Connect Enterprise Certified Container operands may be vulnerable to HTTP request smuggling. This bulletin provides patch information to address the reported vulnerability CVE-2022-32214 in Node.js...

6.5CVSS7AI score0.77766EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/02 9:54 a.m.50 views

Security Bulletin: Security vulnerabilities in IBM SDK for Node.js might affect the configuration editor used by IBM Business Automation Workflow

Summary Security vulnerabilities have been reported for IBM SDK for Node.js. IBM Business Automation Workflow include a stand-alone tool for editing configuration properties files that is based on IBM SDK for Node.js. Vulnerability Details CVEID:CVE-2022-32222 DESCRIPTION: Node.js could allow a...

9.1CVSS8.7AI score0.77766EPSS
Exploits7Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/10/19 12:0 a.m.38 views

AlmaLinux 9 : nodejs and nodejs-nodemon (ALSA-2022:6595)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:6595 advisory. - This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollut...

9.8CVSS7.3AI score0.77766EPSS
Exploits6References11
RedHat Linux
RedHat Linux
added 2022/10/18 9:6 a.m.41 views

Moderate: Red Hat Security Advisory: nodejs:14 security and bug fix update

An update for the nodejs:14 module is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.1CVSS6.7AI score0.77766EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2022/10/08 12:0 a.m.34 views

AlmaLinux 8 : nodejs:14 (ALSA-2022:6448)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:6448 advisory. nodejs: DNS rebinding in --inspect via invalid IP addresses CVE-2022-32212 nodejs: HTTP request smuggling due to flawed parsing of Transfer-Encoding...

8.1CVSS7AI score0.77766EPSS
Exploits3References6
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 7:3 a.m.66 views

Security Bulletin: IBM Spectrum Control is vulnerable to multiple weaknesses related Java SE and Node

Summary Vulnerabilities in Node and Java SE such as HTTP request smuggling, execution of arbitrary code, gain elevated privileges on the system and unauthorized operations may affect IBM Spectrum Control. Vulnerability Details CVEID:CVE-2022-32214 DESCRIPTION: Node.js is vulnerable to HTTP reques...

8.1CVSS8.3AI score0.77766EPSS
Exploits4Affected Software1
Oracle linux
Oracle linux
added 2022/09/22 12:0 a.m.48 views

nodejs and nodejs-nodemon security and bug fix update

nodejs 16.16.0-1 - Rebase to version 16.16.0 Resolves: RHBZ2106290 Resolves: CVE-2022-32212 CVE-2022-32213 CVE-2022-32214 CVE-2022-32215 16.14.0-5 - Decouple dependency bundling from bootstrapping nodejs-nodemon...

9.8CVSS2.5AI score0.77766EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2022/09/22 12:0 a.m.435 views

Oracle Linux 9 : nodejs / and / nodejs-nodemon (ELSA-2022-6595)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-6595 advisory. - Rebase to version 16.16.0 Resolves: RHBZ2106290 Resolves: CVE-2022-32212 CVE-2022-32213 CVE-2022-32214 CVE-2022-32215 Tenable has extracted the...

9.8CVSS7.2AI score0.77766EPSS
Exploits6References11
Rows per page
Query Builder