Lucene search
K

82 matches found

OSV
OSV
added 2025/12/03 9:5 a.m.9 views

RLSA-2023:2654 Moderate: nodejs:18 security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 18.14.2. Security Fixes: glob-parent: Regular Expression Denial of Service...

8.6CVSS7.5AI score0.02209EPSS
Exploits5References9
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: nodejs (TSSA-2023:0046)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0046 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.6CVSS7.1AI score0.02209EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2022-4904

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the c-ares package. The aressetsortlist is missing checks about the validity of the input string, which allows a possible arbitrary length...

8.6CVSS7.2AI score0.01232EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2025/02/05 12:0 a.m.10 views

openSUSE Security Advisory (SUSE-SU-2025:0348-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.5AI score0.00257EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/02/04 12:0 a.m.11 views

openSUSE: Security Advisory for libxml2 (SUSE-SU-2025:0341-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS8.3AI score0.01232EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/01/31 12:0 a.m.12 views

openSUSE Security Advisory (SUSE-SU-2025:0303-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.5AI score0.00257EPSS
Exploits0References4
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.17 views

CVE-2022-4904 affecting package rubygem-mini_portile2 2.8.0-1

CVE-2022-4904 affecting package rubygem-miniportile2 2.8.0-1. This CVE either no longer is or was never applicable...

8.6CVSS9AI score0.01232EPSS
Exploits1
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.41 views

CVE-2022-4904 affecting package grpc 1.42.0-11

CVE-2022-4904 affecting package grpc 1.42.0-11. This CVE either no longer is or was never applicable...

8.6CVSS8.1AI score0.01232EPSS
Exploits1
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.35 views

CVE-2022-4904 affecting package nodejs 14.21.3-1

CVE-2022-4904 affecting package nodejs 14.21.3-1. No patch is available currently...

8.6CVSS9.5AI score0.01232EPSS
Exploits1
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.35 views

CVE-2022-4904 affecting package python-gevent 1.3.6-5

CVE-2022-4904 affecting package python-gevent 1.3.6-5. No patch is available currently...

8.6CVSS9.5AI score0.01232EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.34 views

CBL Mariner 2.0 Security Update: c-ares / nodejs / python-gevent / grpc (CVE-2022-4904)

The version of c-ares / nodejs / python-gevent / grpc installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-4904 advisory. - A flaw was found in the c-ares package. The aressetsortlist is missing checks...

8.6CVSS7.3AI score0.01232EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2024/04/17 10:2 p.m.21 views

CVE-2022-4904 affecting package grpc for versions less than 1.62.0-2

CVE-2022-4904 affecting package grpc for versions less than 1.62.0-2. An upgraded version of the package is available that resolves this issue...

8.6CVSS9AI score0.01232EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/01/14 10:46 p.m.26 views

CVE-2022-4904 affecting package python-gevent for versions less than 21.1.2-3

CVE-2022-4904 affecting package python-gevent for versions less than 21.1.2-3. A patched version of the package is available...

8.6CVSS9.1AI score0.01232EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/01/09 12:0 a.m.39 views

Amazon Linux 2 : c-ares (ALAS-2024-2399)

The version of c-ares installed on the remote host is prior to 1.10.0-3. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2399 advisory. A flaw was found in c-ares library, where a missing input validation check of host names returned by DNS Domain Name Serve...

8.6CVSS7.4AI score0.02617EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.31 views

Oracle Linux 8 : c-ares (ELSA-2023-7116)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-7116 advisory. - Resolves: rhbz2209517 - CVE-2023-32067 c-ares: 0-byte UDP payload Denial of Service rhel-8.9.0 Tenable has extracted the preceding description block directly...

8.6CVSS6.7AI score0.01577EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.14 views

RHEL 9 : c-ares (RHSA-2023:7368)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:7368 advisory. The c-ares C library defines asynchronous DNS Domain Name System requests and provides name resolving API. Security Fixes: c-ares: buffer overflow in...

8.6CVSS7.6AI score0.01232EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/11/14 3:32 p.m.31 views

Moderate: Red Hat Security Advisory: c-ares security update

An update for c-ares is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.6CVSS7.1AI score0.01232EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.25 views

CentOS 8 : c-ares (CESA-2023:7116)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:7116 advisory. - A flaw was found in the c-ares package. The aressetsortlist is missing checks about the validity of the input string, which allows a possible arbitrary length...

8.6CVSS7.3AI score0.01232EPSS
Exploits1References2
AlmaLinux
AlmaLinux
added 2023/11/14 12:0 a.m.33 views

Moderate: c-ares security update

The c-ares C library defines asynchronous DNS Domain Name System requests and provides name resolving API. Security Fixes: c-ares: buffer overflow in configsortlist due to missing string length check CVE-2022-4904 For more details about the security issues, including the impact, a CVSS score,...

8.6CVSS7.5AI score0.01232EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.38 views

RHEL 8 : c-ares (RHSA-2023:7116)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:7116 advisory. The c-ares C library defines asynchronous DNS Domain Name System requests and provides name resolving API. Security Fixes: c-ares: buffer overflow in...

8.6CVSS7.6AI score0.01232EPSS
Exploits1References6
Rows per page
Query Builder