Lucene search
K

14 matches found

Debian
Debian
added 2025/12/16 2:41 p.m.7 views

[SECURITY] [DLA 4413-1] node-url-parse security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-4413-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta December 16, 2025 https://wiki.debian.org/LTS -...

6.5CVSS6.9AI score0.01535EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/12/16 12:0 a.m.3 views

Debian dla-4413 : node-url-parse - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4413 advisory. - ----------------------------------------------------------------------- Debian LTS Advisory DLA-4413-1 [email protected] https://www.debian.org/lts/security/...

6.5CVSS6.8AI score0.01535EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2025/12/16 12:0 a.m.4 views

Debian: Security Advisory (DLA-4413-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.01535EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2022-0639

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.7. CVE-2022-0639 Note that Nessus relies on the presence of the package as report...

6.5CVSS6.8AI score0.01535EPSS
Exploits1References2
Debian
Debian
added 2023/02/23 12:55 a.m.62 views

[SECURITY] [DLA 3336-1] node-url-parse security update

Debian LTS Advisory DLA-3336-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin February 23, 2023 https://wiki.debian.org/LTS Package : node-url-parse Version : 1.2.0-2+deb10u2 CVE ID : CVE-2021-3664 CVE-2021-27515 CVE-2022-0512 CVE-2022-0639 CVE-2022-0686...

9.8CVSS6.6AI score0.0222EPSS
Exploits6
OpenVAS
OpenVAS
added 2023/02/23 12:0 a.m.22 views

Debian: Security Advisory (DLA-3336-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.0222EPSS
Exploits6References5
RedhatCVE
RedhatCVE
added 2022/02/23 12:17 p.m.55 views

CVE-2022-0639

An authorization bypass flaw was found in url-parse. This flaw allows a local unauthenticated attacker to add an at symbol @ while submitting a URL. This issue enables the bypass of validation or block-listing restrictions...

6.5CVSS3.3AI score0.01535EPSS
Exploits1References3
Circl
Circl
added 2022/02/17 8:37 p.m.7 views

CVE-2022-0639

creationtimestamp| type| source ---|---|--- 2022-02-17 20:37:30+00:00| seen| https://t.me/cibsecurity/37671...

6.5CVSS6.7AI score0.01535EPSS
Exploits1References1
NVD
NVD
added 2022/02/17 6:15 p.m.17 views

CVE-2022-0639

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.7...

6.5CVSS0.01535EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2022/02/17 6:15 p.m.42 views

CVE-2022-0639

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.7...

6.5CVSS6.8AI score0.01535EPSS
Exploits1References5
Cvelist
Cvelist
added 2022/02/17 12:0 a.m.28 views

CVE-2022-0639 Authorization Bypass Through User-Controlled Key in unshiftio/url-parse

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.7...

6.5CVSS7.3AI score0.01535EPSS
Exploits1References3
CVE
CVE
added 2022/02/17 12:0 a.m.157 views

CVE-2022-0639

CVE-2022-0639 affects the Node.js URL parser library used in npm installs, specifically the node-url-parse package. Debian and Debian LTS advisories (DLA-4413-1) describe an authorization bypass where an incorrect conversion of special characters in the protocol (notably the @ character in href) ...

6.5CVSS5.4AI score0.01535EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/02/17 12:0 a.m.25 views

CVE-2022-0639 Authorization Bypass Through User-Controlled Key in unshiftio/url-parse

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.7...

6.5CVSS6.8AI score0.01535EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2022/02/17 12:0 a.m.32 views

CVE-2022-0639

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.7...

6.5CVSS6.8AI score0.01535EPSS
Exploits1
Rows per page
Query Builder