Lucene search
K

14 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:35 p.m.50 views

K15131064: Node.js vulnerability CVE-2018-7162

Security Advisory Description All versions of Node.js 9.x and 10.x are vulnerable and the severity is HIGH. An attacker can cause a denial of service DoS by causing a node process which provides an http server supporting TLS server to crash. This can be accomplished by sending duplicate/unexpecte...

7.8CVSS7.2AI score0.06974EPSS
Exploits0
CBLMariner
CBLMariner
added 2021/08/11 6:39 a.m.17 views

CVE-2018-7162 affecting package nodejs 8.11.4-7

CVE-2018-7162 affecting package nodejs 8.11.4-7. An upgraded version of the package is available that resolves this issue...

7.8CVSS7.4AI score0.06974EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2019/10/21 8:20 a.m.36 views

CVE-2018-7162

All versions of Node.js 9.x and 10.x are vulnerable and the severity is HIGH. An attacker can cause a denial of service DoS by causing a node process which provides an http server supporting TLS server to crash. This can be accomplished by sending duplicate/unexpected messages during the handshak...

7.8CVSS2.2AI score0.06974EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.38 views

Fedora 28 : 1:nodejs (2018-f59d961d7b)

Update for security fixes Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

7.8CVSS7.2AI score0.07855EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/11/14 12:0 a.m.34 views

Node.js multiple vulnerabilities (July 2018 Security Releases).

The version of Node.js installed on the remote host is 6.x prior to 6.14.3, 8.x prior to 8.11.3, 9.x prior to 9.11.2 or 10.x prior to 10.4.1. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues but has instead relied only on the application's...

7.8CVSS7.3AI score0.10782EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2018/09/26 6:40 p.m.40 views

Security Bulletin: Multiple Security Vulnerabilities affect IBM® Cloud Private and IBM Cloud Private Cloud Foundry (CVE-2018-7167, CVE-2018-7164, CVE-2018-7162, CVE-2018-1000168, CVE-2018-7161)

Summary IBM Cloud Private and IBM Cloud Private Cloud Foundry are vulnerable to multiple security vulnerabilities Vulnerability Details CVEID: CVE-2018-7167 DESCRIPTION: Node.js is vulnerable to a denial of service. By invoking Buffer.fill or Buffer.alloc , a remote attacker could exploit this...

7.8CVSS0.6AI score0.10782EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2018/07/03 12:0 a.m.35 views

Fedora Update for nodejs FEDORA-2018-79841c871e

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.07855EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/07/02 12:0 a.m.31 views

Fedora 27 : 1:nodejs (2018-79841c871e)

Update for security fixes Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

7.8CVSS7.2AI score0.07855EPSS
Exploits0References4
OSV
OSV
added 2018/06/13 4:29 p.m.25 views

CVE-2018-7162

All versions of Node.js 9.x and 10.x are vulnerable and the severity is HIGH. An attacker can cause a denial of service DoS by causing a node process which provides an http server supporting TLS server to crash. This can be accomplished by sending duplicate/unexpected messages during the handshak...

7.5CVSS7AI score
Exploits0References3
NVD
NVD
added 2018/06/13 4:29 p.m.20 views

CVE-2018-7162

All versions of Node.js 9.x and 10.x are vulnerable and the severity is HIGH. An attacker can cause a denial of service DoS by causing a node process which provides an http server supporting TLS server to crash. This can be accomplished by sending duplicate/unexpected messages during the handshak...

7.8CVSS7.3AI score0.06974EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/06/13 4:29 p.m.23 views

CVE-2018-7162

All versions of Node.js 9.x and 10.x are vulnerable and the severity is HIGH. An attacker can cause a denial of service DoS by causing a node process which provides an http server supporting TLS server to crash. This can be accomplished by sending duplicate/unexpected messages during the handshak...

7.8CVSS6.9AI score0.06974EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/06/13 4:0 p.m.37 views

CVE-2018-7162

All versions of Node.js 9.x and 10.x are vulnerable and the severity is HIGH. An attacker can cause a denial of service DoS by causing a node process which provides an http server supporting TLS server to crash. This can be accomplished by sending duplicate/unexpected messages during the handshak...

7.2AI score0.06974EPSS
Exploits0References3
CVE
CVE
added 2018/06/13 4:0 p.m.84 views

CVE-2018-7162

CVE-2018-7162 affects Node.js 9.x and 10.x where a TLS handshake with duplicate/unexpected messages can crash a node http server, causing DoS. Root cause is a TLS handling issue in vulnerable Node.js versions. The vulnerability is addressed by updating the TLS implementation. Affected software is...

7.8CVSS7.1AI score0.06974EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2018/06/13 4:0 p.m.35 views

CVE-2018-7162

All versions of Node.js 9.x and 10.x are vulnerable and the severity is HIGH. An attacker can cause a denial of service DoS by causing a node process which provides an http server supporting TLS server to crash. This can be accomplished by sending duplicate/unexpected messages during the handshak...

7.8CVSS7.3AI score0.06974EPSS
Exploits0
Rows per page
Query Builder