Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-16203

Malware in sbrugna...

9.4CVSS9.1AI score0.01404EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.3 views

SUSE CVE-2018-12120

Node.js: All versions prior to Node.js 6.15.0: Debugger port 5858 listens on any interface by default: When the debugger is enabled with node --debug or node debug, it listens to port 5858 on all interfaces by default. This may allow remote computers to attach to the debug port and evaluate...

9.8CVSS7.7AI score0.04277EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.34 views

Mageia: Security Advisory (MGASA-2019-0277)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.41288EPSS
Exploits0References23
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2019:0117-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.6AI score0.41288EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2019:0395-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.6AI score0.41288EPSS
Exploits4References2
Prion
Prion
added 2019/09/04 5:15 p.m.20 views

Code injection

Similar to the issue identified in CVE-2018-12120, on versions 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.2, and 12.1.0-12.1.4 BIG-IP will bind a debug nodejs process to all interfaces when invoked. This may expose the process to unauthorized users if the plugin is left in debug mode and the...

6.8CVSS7.7AI score0.04277EPSS
Exploits0References1Affected Software13
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.53 views

F5 Networks BIG-IP : iRulesLX debug NodeJS vulnerability (K75532331)

Similar to the issue identified inCVE-2018-12120, the BIG-IP system will bind a debug nodejs process to all interfaces when invoked. This may expose the process to unauthorized users if the plugin is left in debug mode and the port is accessible.CVE-2019-6644 Impact A remote attacker may be able ...

9.4CVSS7.9AI score0.04277EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/05/02 12:0 a.m.31 views

F5 Networks BIG-IP : NodeJS vulnerability (K37111863)

Node.js: All versions prior to Node.js 6.15.0: Debugger port 5858 listens on any interface by default: When the debugger is enabled with node --debug or node debug, it listens to port 5858 on all interfaces by default. This may allow remote computers to attach to the debug port and evaluate...

8.1CVSS7.7AI score0.04277EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/02/25 12:0 a.m.93 views

openSUSE Security Update : nodejs6 (openSUSE-2019-234)

This update for nodejs6 to version 6.16.0 fixes the following issues : Security issues fixed : - CVE-2018-0734: Fixed a timing vulnerability in the DSA signature generation bsc1113652 - CVE-2018-5407: Fixed a hyperthread port content side channel attack aka 'PortSmash' bsc1113534 - CVE-2018-12120...

8.1CVSS7AI score0.41288EPSS
Exploits4References14
OPENSUSE Linux
OPENSUSE Linux
added 2019/02/22 12:0 a.m.223 views

Security update for nodejs6 (important)

openSUSE Security Update: Security update for nodejs6 Announcement ID: openSUSE-SU-2019:0234-1 Rating: important References: 1113534 1113652 1117625 1117626 1117627 1117629 1117630 Cross-References: CVE-2018-0734 CVE-2018-12116 CVE-2018-12120 CVE-2018-12121 CVE-2018-12122 CVE-2018-12123...

8.1CVSS6.8AI score0.41288EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2019/02/15 12:0 a.m.50 views

SUSE SLES12 Security Update : nodejs6 (SUSE-SU-2019:0395-1)

This update for nodejs6 to version 6.16.0 fixes the following issues : Security issues fixed : CVE-2018-0734: Fixed a timing vulnerability in the DSA signature generation bsc1113652 CVE-2018-5407: Fixed a hyperthread port content side channel attack aka 'PortSmash' bsc1113534 CVE-2018-12120: Fixe...

8.1CVSS7.2AI score0.41288EPSS
Exploits4References22
Tenable Nessus
Tenable Nessus
added 2019/01/28 12:0 a.m.48 views

openSUSE Security Update : nodejs4 (openSUSE-2019-88)

This update for nodejs4 fixes the following issues : Security issues fixed : - CVE-2018-0734: Fixed a timing vulnerability in the DSA signature generation bsc1113652 - CVE-2018-5407: Fixed a hyperthread port content side channel attack aka 'PortSmash' bsc1113534 - CVE-2018-12120: Fixed that the...

8.1CVSS7AI score0.41288EPSS
Exploits4References14
OpenVAS
OpenVAS
added 2019/01/26 12:0 a.m.37 views

openSUSE: Security Advisory for nodejs4 (openSUSE-SU-2019:0088-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS7.2AI score0.41288EPSS
Exploits4References2
CVE
CVE
added 2018/11/28 5:0 p.m.172 views

CVE-2018-12120

CVE-2018-12120 affects Node.js: prior to 6.15.0, the debugger port 5858 listened on all interfaces by default, enabling potential remote attachment to evaluate JavaScript. The default was changed to localhost, and Node.js 8+ removed the debugger, replacing it with the inspector, so versions 8 and...

8.1CVSS7.8AI score0.04277EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder