CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Joyent SmartOS is an open source UNIX-like operating system from SmartOS Open Source. A security vulnerability exists in Joyent SmartOS that stems from the presence of a static host SSH key in the 60f76fd2-143f-4f57-819b-1ae32684e81b image...

8.3CVSS6.7AI score0.0023EPSS

Exploits0References4

CNVD•added 2021/06/02 12:0 a.m.•8 views

Unspecified vulnerability in Joyent trim-newlines

trim-newlines is an npm package that modifies line breaks. A security vulnerability exists in Joyent trim-newlines, which stems from an issue related to the .end method as applied to Node.js in versions 3.0.1 and 4.0.1 and earlier. No details of the vulnerability are available at this time...

7.5CVSS6.6AI score0.02846EPSS

Exploits0References1

CNVD•added 2020/06/16 12:0 a.m.•5 views

chownr package competitive conditions issue vulnerability

Joyent Node.js is a web application platform built on top of Google's V8 JavaScript engine from Joyent, Inc. The platform is used to build highly scalable applications and write code that can handle tens of thousands of simultaneous connections to a physical machine. chownr package is one of the...

2.5CVSS3.6AI score0.00334EPSS

Exploits1References1

BDU FSTEC•added 2020/06/10 12:0 a.m.•2 views

The vulnerability of the SMB_IOC_SVCENUM function in the Joyent SmartOS operating system, which allows a hacker to execute arbitrary code.

The vulnerability of the SMBIOCSVCENUM function in the open-source operating system Joyent SmartOS is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.2CVSS7.2AI score0.00521EPSS

Exploits0References4Affected Software1

CNVD•added 2020/06/04 12:0 a.m.•3 views

Joyent Node.js Authorization Issues Vulnerability

Joyent Node.js is the United States Joyent company's set of web applications built on top of the Google V8 JavaScript engine platform. The platform is primarily used for building highly scalable applications and writing code that can handle tens of thousands of simultaneous connections to a singl...

7.4CVSS8.6AI score0.06485EPSS

Exploits1References1

CNVD•added 2020/02/11 12:0 a.m.•0 views

Joyent Node.js Input Validation Error Vulnerability

9.8CVSS9.2AI score0.20041EPSS

Exploits1References1

CNVD•added 2019/04/24 12:0 a.m.•1 views

Juju Core Joyent provider encryption issue vulnerability

Juju Infrastructure specializes in software and solutions. An encryption issue vulnerability exists in Juju Core's Joyent provider prior to version 1.25.5. The vulnerability stems from a network system or product that does not properly use the relevant cryptographic algorithms and can be exploite...

7.5CVSS6.5AI score0.01162EPSS

Exploits0References1

Veracode•added 2019/04/23 5:48 a.m.•20 views

Information Disclosure

github.com/juju/juju is vulnerable to information disclosure. The SSH private key is uploaded by the joyent provider, which could lead to the exposure of the private keys and grant SSH access to an attacker who is able to obtain the private key...

7.5CVSS6.9AI score0.01162EPSS

Exploits0References2Affected Software1