Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2015-8857

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers...

9.8CVSS8.2AI score0.03559EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2017/10/24 6:33 p.m.6 views

04_nodeblog (=1.0.0), 0latency (=0.0.0) +15232 more potentially affected by CVE-2015-8857 via uglify-js (>=0.0.1 <=2.4.23)

uglify-js NPM version =0.0.1, =0.3.0, =0.0.1, =1.0.2, =1.0.1, =1.0.0, =0.0.1, =0.1.1, =0.1.2 and more Source cves: CVE-2015-8857 Source advisory: OSV:GHSA-34R7-Q49F-H37C...

9.8CVSS7.1AI score0.03559EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2017/01/23 9:59 p.m.22 views

CVE-2015-8857

The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers to bypass security mechanisms or possibly have unspecified other impact by leveraging improperly rewritten Javascript...

9.8CVSS7.1AI score0.03559EPSS
Exploits1References3
CVE
CVE
added 2017/01/23 9:0 p.m.116 views

CVE-2015-8857

The CVE-2015-8857 entry concerns the uglify-js package for Node.js. It describes that uglify-js before 2.4.24 fails to properly account for non-boolean values when rewriting boolean expressions, which could let an attacker bypass security mechanisms or cause unspecified other impacts via rewritte...

9.8CVSS10AI score0.03559EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2017/01/23 9:0 p.m.29 views

CVE-2015-8857

The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers to bypass security mechanisms or possibly have unspecified other impact by leveraging improperly rewritten Javascript...

10AI score0.03559EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2017/01/23 9:0 p.m.21 views

CVE-2015-8857

The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers to bypass security mechanisms or possibly have unspecified other impact by leveraging improperly rewritten Javascript...

9.8CVSS9.3AI score0.03559EPSS
Exploits1
Rows per page
Query Builder