Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.30 views

RHEL 7 : rh-nodejs8-nodejs (RHSA-2018:2949)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2949 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The...

8.8CVSS6.9AI score0.09916EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.28 views

RHEL 6 / 7 : rh-nodejs6-nodejs (RHSA-2018:2944)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2944 advisory. - nodejs: Out of bounds OOB write via UCS-2 encoding CVE-2018-12115 Note that Nessus has not tested for this issue but has instead relied only on...

7.5CVSS8AI score0.08028EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/10/16 12:0 a.m.33 views

Ubuntu 16.04 ESM / 18.04 ESM : Node.js vulnerabilities (USN-4796-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4796-1 advisory. Alexander Minozhenko and James Bunton discovered that Node.js did not properly handle wildcards in name fields of X.509 TLS certificates. An...

8.8CVSS7.2AI score0.41288EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2023/10/02 12:0 a.m.73 views

F5 Networks BIG-IP : Node.js vulnerabilities (K000137093)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.6 / 17.1.2.2 / 17.5.0. It is, therefore, affected by multiple vulnerabilities as referenced in the K000137093 advisory. CVE-2018-7167Calling Buffer.fill or Buffer.alloc with some parameters can lead to a hang which...

7.5CVSS6.9AI score0.08028EPSS
Exploits0References4
OSV
OSV
added 2023/08/31 12:15 p.m.0 views

BELL-CVE-2018-12115 CVE-2018-12115 does not affect BellSoft software

Bulletin has no description...

7.5CVSS5.8AI score0.08028EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/14 3:2 p.m.49 views

Security Bulletin: Security vulnerabilities in IBM SDK for Node.js might affect the configuration editor used by IBM Business Automation Workflow and Business Process Manager (BPM)

Summary Security vulnerabilities have been reported for IBM SDK for Node.js. IBM Business Automation Workflow and IBM BPM include a stand-alone tool for editing configuration properties files that is based on IBM SDK for Node.js. Vulnerability Details CVEID: CVE-2018-0732 DESCRIPTION: OpenSSL is...

7.9AI score0.49268EPSS
Exploits0Affected Software5
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.34 views

Mageia: Security Advisory (MGASA-2019-0277)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.41288EPSS
Exploits0References23
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2018:2796-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8AI score0.49268EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2018:2812-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8AI score0.49268EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2018:2647-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8AI score0.49268EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/03/23 12:0 a.m.59 views

GLSA-202003-48 : Node.js: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202003-48 Node.js: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Node.js. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could possibly write arbitrary files,...

9.8CVSS6.8AI score0.57132EPSS
Exploits2References16
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.30 views

SUSE SLES15 Security Update : nodejs8 (SUSE-SU-2018:2812-1)

This update for nodejs8 to version 8.11.4 fixes the following issues : Security issues fixed : CVE-2018-12115: Fixed an out-of-bounds memory write in Buffer that could be used to write to memory outside of a Buffer's memory space buffer bsc1105019 Upgrade to OpenSSL 1.0.2p, which fixed : -...

7.5CVSS6.4AI score0.49268EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2018/12/04 12:0 a.m.35 views

RHEL 7 : Red Hat OpenShift Application Runtimes Node.js 10.9.0 (RHSA-2018:2553)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2553 advisory. Red Hat Openshift Application Runtimes provides an application platform that reduces the complexity of developing and operating applications...

7.5CVSS6.6AI score0.49268EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2018/12/04 12:0 a.m.52 views

RHEL 7 : Red Hat OpenShift Application Runtimes Node.js 8.11.4 (RHSA-2018:2552)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2552 advisory. Red Hat Openshift Application Runtimes provides an application platform that reduces the complexity of developing and operating applications...

7.5CVSS6.6AI score0.49268EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2018/11/14 12:0 a.m.45 views

Node.js Multiple Vulnerabilities (August 2018 Security Releases)

The version of Node.js installed on the remote host is 6.x prior to 6.14.4, 8.x prior to 8.11.4 or 10.x prior to 10.9.0. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version...

7.5CVSS6.5AI score0.49268EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2018/11/07 3:25 p.m.57 views

Security Bulletin: Node.js as used in IBM QRadar Packet Capture is susceptible to multiple vulnerabilities

Summary Node.js as used in IBM QRadar Packet Capture has been updated to resolve multiple vulnerabilities Vulnerability Details CVEID: CVE-2018-7158 Description: Node.js path module is vulnerable to a denial of service. By sending a specially crafted file path, an attacker could exploit this...

8.8CVSS0.9AI score0.09916EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.34 views

openSUSE: Security Advisory for nodejs8 (openSUSE-SU-2018:2855-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS8.2AI score0.49268EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2018/10/18 10:11 a.m.95 views

Important: Red Hat Security Advisory: rh-nodejs8-nodejs security update

An update for rh-nodejs8-nodejs is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.7AI score0.09916EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2018/10/18 7:45 a.m.76 views

Important: Red Hat Security Advisory: rh-nodejs6-nodejs security update

An update for rh-nodejs6-nodejs is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS7.1AI score0.08028EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/09/25 12:0 a.m.45 views

openSUSE Security Update : nodejs6 (openSUSE-2018-1041)

This update for nodejs6 to version 6.14.4 fixes the following issues : Security issues fixed : CVE-2018-12115: Fixed an out-of-bounds OOB write in Buffer.write for UCS-2 encoding bsc1105019 CVE-2018-0732: Upgrade to OpenSSL 1.0.2p, fixing a client DoS due to large DH parameter bsc1097158 Other...

7.5CVSS6.4AI score0.49268EPSS
Exploits0References5
Rows per page
Query Builder