Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1441 matches found

OSV
OSVadded 2021/03/04 3:17 p.m.23 views

RLSA-2021:0734 Important: nodejs:12 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 12.21.0. Security Fixes: nodejs: HTTP2 'unknownProtocol' cause DoS by resource...

7.5CVSS7.8AI score0.77385EPSS
Exploits1References3
OSV
OSVadded 2021/03/04 3:17 p.m.25 views

ALSA-2021:0734 Important: nodejs:12 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 12.21.0. Security Fixes: nodejs: HTTP2 'unknownProtocol' cause DoS by resource...

7.8CVSS7.8AI score0.77385EPSS
Exploits1References3
AlmaLinux
AlmaLinuxadded 2021/03/04 3:17 p.m.33 views

Important: nodejs:12 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 12.21.0. Security Fixes: nodejs: HTTP2 'unknownProtocol' cause DoS by resource...

7.8CVSS8AI score0.77385EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2021/03/04 12:0 a.m.37 views

CentOS 8 : nodejs:12 (CESA-2021:0734)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:0734 advisory. - nodejs: HTTP2 'unknownProtocol' cause DoS by resource exhaustion CVE-2021-22883 - nodejs: DNS rebinding in --inspect CVE-2021-22884 Note that Nessus...

7.8CVSS7.6AI score0.77385EPSS
Exploits1References3
OSV
OSVadded 2021/03/03 2:12 a.m.3 views

OPENSUSE-SU-2021:0372-1 Security update for nodejs10

This update for nodejs10 fixes the following issues: New upstream LTS version 10.24.0: - CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion bsc1182619 - CVE-2021-22884: DNS rebinding in --inspect bsc1182620 - CVE-2021-23840: OpenSSL - Integer overflow in...

7.8CVSS7.8AI score0.77385EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2021/03/03 12:0 a.m.38 views

SUSE SLES15 Security Update : nodejs10 (SUSE-SU-2021:0674-1)

This update for nodejs10 fixes the following issues : New upstream LTS version 10.24.0 : CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion bsc1182619 CVE-2021-22884: DNS rebinding in --inspect bsc1182620 CVE-2021-23840: OpenSSL - Integer overflow in CipherUpda...

7.8CVSS6.5AI score0.77385EPSS
Exploits1References10
Tenable Nessus
Tenable Nessusadded 2021/03/03 12:0 a.m.51 views

SUSE SLES12 Security Update : nodejs10 (SUSE-SU-2021:0673-1)

This update for nodejs10 fixes the following issues : New upstream LTS version 10.24.0 : CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion bsc1182619 CVE-2021-22884: DNS rebinding in --inspect bsc1182620 CVE-2021-23840: OpenSSL - Integer overflow in CipherUpda...

7.8CVSS6.5AI score0.77385EPSS
Exploits1References10
OPENSUSE Linux
OPENSUSE Linuxadded 2021/03/03 12:0 a.m.49 views

Security update for nodejs10 (important)

openSUSE Security Update: Security update for nodejs10 Announcement ID: openSUSE-SU-2021:0372-1 Rating: important References: 1182333 1182619 1182620 Cross-References: CVE-2021-22883 CVE-2021-22884 CVE-2021-23840 CVSS scores: CVE-2021-22883 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H...

7.5CVSS7.8AI score0.77385EPSS
Exploits1References3
OSV
OSVadded 2021/03/02 8:41 a.m.5 views

SUSE-SU-2021:0673-1 Security update for nodejs10

This update for nodejs10 fixes the following issues: New upstream LTS version 10.24.0: - CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion bsc1182619 - CVE-2021-22884: DNS rebinding in --inspect bsc1182620 - CVE-2021-23840: OpenSSL - Integer overflow in...

7.8CVSS7.8AI score0.77385EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2021/03/01 12:0 a.m.29 views

SUSE SLES15 Security Update : nodejs14 (SUSE-SU-2021:0648-1)

This update for nodejs14 fixes the following issues : New upstream LTS version 14.16.0 : - CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion bsc1182619 - CVE-2021-22884: DNS rebinding in --inspect bsc1182620 Note that Tenable Network Security has extracted the...

7.8CVSS7.5AI score0.77385EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2021/03/01 12:0 a.m.25 views

openSUSE Security Update : nodejs14 (openSUSE-2021-356)

This update for nodejs14 fixes the following issues : - New upstream LTS version 14.16.0 : - CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion bsc1182619 - CVE-2021-22884: DNS rebinding in --inspect bsc1182620 This update was imported from the...

7.8CVSS7.5AI score0.77385EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2021/03/01 12:0 a.m.44 views

SUSE SLES12 Security Update : nodejs14 (SUSE-SU-2021:0650-1)

This update for nodejs14 fixes the following issues : New upstream LTS version 14.16.0 : CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion bsc1182619 CVE-2021-22884: DNS rebinding in --inspect bsc1182620 Note that Tenable Network Security has extracted the...

7.8CVSS7.5AI score0.77385EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2021/03/01 12:0 a.m.49 views

openSUSE Security Update : nodejs12 (openSUSE-2021-357)

This update for nodejs12 fixes the following issues : New upstream LTS version 12.21.0 : - CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion bsc1182619 - CVE-2021-22884: DNS rebinding in --inspect bsc1182620 - CVE-2021-23840: OpenSSL - Integer overflow in...

7.8CVSS6.5AI score0.77385EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2021/03/01 12:0 a.m.48 views

SUSE SLES12 Security Update : nodejs12 (SUSE-SU-2021:0649-1)

This update for nodejs12 fixes the following issues : New upstream LTS version 12.21.0 : CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion bsc1182619 CVE-2021-22884: DNS rebinding in --inspect bsc1182620 CVE-2021-23840: OpenSSL - Integer overflow in CipherUpda...

7.8CVSS6.5AI score0.77385EPSS
Exploits1References10
Tenable Nessus
Tenable Nessusadded 2021/03/01 12:0 a.m.42 views

SUSE SLES15 Security Update : nodejs12 (SUSE-SU-2021:0651-1)

This update for nodejs12 fixes the following issues : New upstream LTS version 12.21.0 : CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion bsc1182619 CVE-2021-22884: DNS rebinding in --inspect bsc1182620 CVE-2021-23840: OpenSSL - Integer overflow in CipherUpda...

7.8CVSS6.5AI score0.77385EPSS
Exploits1References10
OPENSUSE Linux
OPENSUSE Linuxadded 2021/02/28 12:0 a.m.42 views

Security update for nodejs12 (important)

openSUSE Security Update: Security update for nodejs12 Announcement ID: openSUSE-SU-2021:0357-1 Rating: important References: 1182333 1182619 1182620 Cross-References: CVE-2021-22883 CVE-2021-22884 CVE-2021-23840 CVSS scores: CVE-2021-22883 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H...

7.5CVSS7.8AI score0.77385EPSS
Exploits1References3
OPENSUSE Linux
OPENSUSE Linuxadded 2021/02/28 12:0 a.m.40 views

Security update for nodejs14 (important)

openSUSE Security Update: Security update for nodejs14 Announcement ID: openSUSE-SU-2021:0356-1 Rating: important References: 1182619 1182620 Cross-References: CVE-2021-22883 CVE-2021-22884 CVSS scores: CVE-2021-22883 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-22884 SUSE: 5.8...

7.5CVSS8.1AI score0.77385EPSS
Exploits1References2
Node JS Blog
Node JS Blogadded 2021/02/23 12:0 a.m.56 views

February 2021 Security Releases

February 2021 Security Releases Update 23-Feb-2021 Security releases available Updates are now available for v10.x, v12.x, v14.x and v15.x Node.js release lines for the following issues. HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion Critical CVE-2021-22883 Affected Node.j...

8.8CVSS6.8AI score0.77385EPSS
Exploits1
ALT Linux
ALT Linuxadded 2021/02/23 12:0 a.m.26 views

Security fix for the ALT Linux 10 package node version 14.16.0-alt1

Feb. 23, 2021 Vitaly Lipatov 14.16.0-alt1 - new version 14.16.0 with rpmrb script - CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion - CVE-2021-22884: DNS rebinding in --inspect...

7.8CVSS7.8AI score0.77385EPSS
Exploits1
FreeBSD
FreeBSDadded 2021/02/23 12:0 a.m.47 views

Node.js -- February 2021 Security Releases

Node.js reports: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion Critical CVE-2021-22883 Affected Node.js versions are vulnerable to denial of service attacks when too many connection attempts with an 'unknownProtocol' are established. This leads to a leak of file...

7.8CVSS8AI score0.77385EPSS
Exploits1References1
Rows per page
Query Builder