Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.26 views

RHEL 6 / 7 : rh-nodejs4-nodejs-tough-cookie (RHSA-2017:2912)

The remote Redhat Enterprise Linux 6 / 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2017:2912 advisory. Tough-Cookie is a Node.js module that offers RFC6265 Cookies and Cookie Jar. The following packages have been upgraded to a later upstre...

7.5CVSS6.8AI score0.03283EPSS
Exploits0References7
NVD
NVD
added 2018/09/05 5:29 p.m.19 views

CVE-2016-1000232

NodeJS Tough-Cookie version 2.2.2 contains a Regular Expression Parsing vulnerability in HTTP request Cookie Header parsing that can result in Denial of Service. This attack appear to be exploitable via Custom HTTP header passed by client. This vulnerability appears to have been fixed in 2.3.0...

5.3CVSS6.1AI score0.02356EPSS
Exploits0References7
CVE
CVE
added 2018/09/05 5:0 p.m.89 views

CVE-2016-1000232

CVE-2016-1000232 affects the Node.js tough-cookie module: vulnerable in version 2.2.2 due to a Regular Expression Parsing DoS in HTTP Cookie header processing when parsing large headers. The issue could be triggered by a sufficiently large Cookie header. It has been fixed in 2.3.0; remediation is...

5.3CVSS5.3AI score0.02356EPSS
Exploits0References7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:8 a.m.30 views

Security Bulletin: IBM API Connect is affected by Node.js tough-cookie module vulnerability to a denial of service (CVE-2016-1000232)

Summary API Connect has addressed the following vulnerability. Node.js tough-cookie module is vulnerable to a denial of service, caused by a regular expression error. By using a sufficiently large HTTP request Cookie header, a remote attacker could exploit this vulnerability to cause the...

5.3CVSS0.9AI score0.02356EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2017/10/18 4:46 p.m.92 views

Moderate: Red Hat Security Advisory: rh-nodejs4-nodejs-tough-cookie security update

An update for rh-nodejs4-nodejs-tough-cookie is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS6.6AI score0.03283EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/10/06 12:0 a.m.29 views

Fedora 23 : nodejs-tough-cookie (2016-286a8ec5b0)

Security fix for Denial of service via long string of semicolons Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

5.3CVSS6.3AI score0.02356EPSS
Exploits0References2
Rows per page
Query Builder