Lucene search
K

25 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.30 views

RHEL 7 : rh-nodejs8-nodejs (RHSA-2018:2949)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2949 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The...

8.8CVSS6.9AI score0.09916EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/10/16 12:0 a.m.33 views

Ubuntu 16.04 ESM / 18.04 ESM : Node.js vulnerabilities (USN-4796-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4796-1 advisory. Alexander Minozhenko and James Bunton discovered that Node.js did not properly handle wildcards in name fields of X.509 TLS certificates. An...

8.8CVSS7.2AI score0.41288EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2023/10/02 12:0 a.m.71 views

F5 Networks BIG-IP : Node.js vulnerabilities (K000137093)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.6 / 17.1.2.2 / 17.5.0. It is, therefore, affected by multiple vulnerabilities as referenced in the K000137093 advisory. CVE-2018-7167Calling Buffer.fill or Buffer.alloc with some parameters can lead to a hang which...

7.5CVSS6.9AI score0.08028EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.34 views

Mageia: Security Advisory (MGASA-2019-0277)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.41288EPSS
Exploits0References23
CBLMariner
CBLMariner
added 2021/08/11 6:39 a.m.16 views

CVE-2018-7167 affecting package nodejs 8.11.4-7

CVE-2018-7167 affecting package nodejs 8.11.4-7. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.4AI score0.07214EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2018:1892-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.07214EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2018:1918-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.10782EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.37 views

openSUSE Security Update : nodejs8 (openSUSE-2019-513)

This update for nodejs8 to version 8.11.3 fixes the following issues : These security issues were fixed : - CVE-2018-7167: Calling Buffer.fill or Buffer.alloc with some parameters could have lead to a hang which could have resulted in a DoS bsc1097375. - CVE-2018-7161: By interacting with the htt...

7.8CVSS7.3AI score0.10782EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.38 views

Fedora 28 : 1:nodejs (2018-f59d961d7b)

Update for security fixes Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

7.8CVSS7.2AI score0.07855EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.37 views

SUSE SLES15 Security Update : nodejs8 (SUSE-SU-2018:1918-1)

This update for nodejs8 to version 8.11.3 fixes the following issues: These security issues were fixed : - CVE-2018-7167: Calling Buffer.fill or Buffer.alloc with some parameters could have lead to a hang which could have resulted in a DoS bsc1097375. - CVE-2018-7161: By interacting with the http...

7.8CVSS7.2AI score0.10782EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.30 views

SUSE SLES12 Security Update : nodejs6 (SUSE-SU-2018:1892-1)

This update for nodejs6 to version 6.14.3 fixes the following issues: The following security vulnerability was addressed : - Fixed a denial of service DoS vulnerability in Buffer.fill, which could hang when being called CVE-2018-7167, bsc1097375. The following other changes were made : - Use...

7.5CVSS7.1AI score0.07214EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2018/11/14 12:0 a.m.34 views

Node.js multiple vulnerabilities (July 2018 Security Releases).

The version of Node.js installed on the remote host is 6.x prior to 6.14.3, 8.x prior to 8.11.3, 9.x prior to 9.11.2 or 10.x prior to 10.4.1. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues but has instead relied only on the application's...

7.8CVSS7.3AI score0.10782EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.29 views

openSUSE: Security Advisory for nodejs8 (openSUSE-SU-2018:1963-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.2AI score0.10782EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2018/09/26 6:40 p.m.40 views

Security Bulletin: Multiple Security Vulnerabilities affect IBM® Cloud Private and IBM Cloud Private Cloud Foundry (CVE-2018-7167, CVE-2018-7164, CVE-2018-7162, CVE-2018-1000168, CVE-2018-7161)

Summary IBM Cloud Private and IBM Cloud Private Cloud Foundry are vulnerable to multiple security vulnerabilities Vulnerability Details CVEID: CVE-2018-7167 DESCRIPTION: Node.js is vulnerable to a denial of service. By invoking Buffer.fill or Buffer.alloc , a remote attacker could exploit this...

7.8CVSS0.6AI score0.10782EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/09/20 1:15 p.m.32 views

Security Bulletin: IBM DataPower Gateways is affected by a Denial of Service vulnerability (CVE-2018-7167)

Summary IBM DataPower Gateways has addressed the following vulnerability: CVE-2018-7167 Vulnerability Details CVEID: CVE-2018-7167 DESCRIPTION: Node.js is vulnerable to a denial of service. By invoking Buffer.fill or Buffer.alloc , a remote attacker could exploit this vulnerability to cause the...

7.5CVSS1.2AI score0.07214EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/07/16 12:0 a.m.34 views

openSUSE Security Update : nodejs8 (openSUSE-2018-724)

This update for nodejs8 to version 8.11.3 fixes the following issues : These security issues were fixed : - CVE-2018-7167: Calling Buffer.fill or Buffer.alloc with some parameters could have lead to a hang which could have resulted in a DoS bsc1097375. - CVE-2018-7161: By interacting with the htt...

7.8CVSS7.3AI score0.10782EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2018/07/16 12:0 a.m.42 views

openSUSE Security Update : nodejs6 (openSUSE-2018-723)

This update for nodejs6 to version 6.14.3 fixes the following issues : The following security vulnerability was addressed : - Fixed a denial of service DoS vulnerability in Buffer.fill, which could hang when being called CVE-2018-7167, bsc1097375. The following other changes were made : - Use...

7.5CVSS7.1AI score0.07214EPSS
Exploits0References3
OPENSUSE Linux
OPENSUSE Linux
added 2018/07/14 3:11 a.m.69 views

Security update for nodejs8 (moderate)

This update for nodejs8 to version 8.11.3 fixes the following issues: These security issues were fixed: - CVE-2018-7167: Calling Buffer.fill or Buffer.alloc with some parameters could have lead to a hang which could have resulted in a DoS bsc1097375. - CVE-2018-7161: By interacting with the http2...

5CVSS2.3AI score0.10782EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2018/07/14 12:0 a.m.27 views

openSUSE: Security Advisory for nodejs6 (openSUSE-SU-2018:1962-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.07214EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/07/03 12:0 a.m.35 views

Fedora Update for nodejs FEDORA-2018-79841c871e

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.07855EPSS
Exploits0References2
Rows per page
Query Builder