6 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-8857
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers...
04_nodeblog (=1.0.0), 0latency (=0.0.0) +15232 more potentially affected by CVE-2015-8857 via uglify-js (>=0.0.1 <=2.4.23)
uglify-js NPM version =0.0.1, =0.3.0, =0.0.1, =1.0.2, =1.0.1, =1.0.0, =0.0.1, =0.1.1, =0.1.2 and more Source cves: CVE-2015-8857 Source advisory: OSV:GHSA-34R7-Q49F-H37C...
CVE-2015-8857
The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers to bypass security mechanisms or possibly have unspecified other impact by leveraging improperly rewritten Javascript...
CVE-2015-8857
The CVE-2015-8857 entry concerns the uglify-js package for Node.js. It describes that uglify-js before 2.4.24 fails to properly account for non-boolean values when rewriting boolean expressions, which could let an attacker bypass security mechanisms or cause unspecified other impacts via rewritte...
CVE-2015-8857
The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers to bypass security mechanisms or possibly have unspecified other impact by leveraging improperly rewritten Javascript...
CVE-2015-8857
The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers to bypass security mechanisms or possibly have unspecified other impact by leveraging improperly rewritten Javascript...