Lucene search
K

26 matches found

CBLMariner
CBLMariner
added 2025/01/31 4:7 p.m.23 views

CVE-2023-23919 affecting package nodejs for versions less than 16.19.1-1

CVE-2023-23919 affecting package nodejs for versions less than 16.19.1-1. A patched version of the package is available...

7.5CVSS7.9AI score0.02209EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/03/05 12:0 a.m.20 views

Ubuntu: Security Advisory (USN-6672-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.73461EPSS
Exploits1References2
Debian
Debian
added 2023/12/27 10:12 p.m.53 views

[SECURITY] [DSA 5589-1] nodejs security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5589-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 27, 2023 https://www.debian.org/security/faq -...

9.8CVSS7.5AI score0.03906EPSS
Exploits3
OSV
OSV
added 2023/08/31 12:14 p.m.0 views

BELL-CVE-2023-23919 CVE-2023-23919 does not affect BellSoft software

Bulletin has no description...

7.5CVSS5.8AI score0.02209EPSS
Exploits1References1
CBLMariner
CBLMariner
added 2023/08/15 4:37 p.m.14 views

CVE-2023-23919 affecting package nodejs 14.21.1-3

CVE-2023-23919 affecting package nodejs 14.21.1-3. An upgraded version of the package is available that resolves this issue...

7.5CVSS9.1AI score0.02209EPSS
Exploits1
Oracle linux
Oracle linux
added 2023/06/15 12:0 a.m.51 views

nodejs security update

1:16.19.1-2 - Update bundled c-ares to 1.19.1 Resolves: CVE-2023-31124 CVE-2023-31130 CVE-2023-31147 CVE-2023-32067 1:16.19.1-1 - Rebase to 16.19.1 - Resolves: rhbz2153714 - Resolves: CVE-2023-23918 CVE-2023-23919 CVE-2023-23936 CVE-2023-24807 CVE-2023-23920 - Resolves: CVE-2022-25881 CVE-2022-49...

9.8CVSS7AI score0.81464EPSS
Exploits10
Oracle linux
Oracle linux
added 2023/05/17 12:0 a.m.40 views

nodejs:18 security, bug fix, and enhancement update

nodejs 1:18.14.2-2 - Provide simduft - Resolves: 2159389 1:18.14.2-1 - Rebase to 18.14.2 - Resolves: 2159389 - Resolves: CVE-2022-25881, CVE-2022-4904, CVE-2023-23936, CVE-2023-24807 - Resolves: CVE-2023-23918, CVE-2023-23919, CVE-2023-23920 nodejs-nodemon 2.0.20-2 - Patch bundled glob-parent -...

8.6CVSS7AI score0.02209EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2023/05/13 12:0 a.m.41 views

AlmaLinux 9 : nodejs:18 (ALSA-2023:2654)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:2654 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 c-ares: buffer overflow in configsortlist due to missing string length check CVE-2022-490...

8.6CVSS7.1AI score0.02209EPSS
Exploits5References9
RedHat Linux
RedHat Linux
added 2023/05/09 11:51 a.m.48 views

Moderate: Red Hat Security Advisory: nodejs:18 security, bug fix, and enhancement update

An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.6CVSS6.9AI score0.02209EPSS
Exploits5References10
OSV
OSV
added 2023/05/09 12:0 a.m.34 views

ALSA-2023:2654 Moderate: nodejs:18 security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 18.14.2. Security Fixes: glob-parent: Regular Expression Denial of Service...

8.6CVSS8.3AI score0.02209EPSS
Exploits5References18
Tenable Nessus
Tenable Nessus
added 2023/04/06 12:0 a.m.40 views

Rocky Linux 8 : nodejs:16 (RLSA-2023:1582)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:1582 advisory. - The glob-parent package before 6.0.1 for Node.js allows ReDoS regular expression denial of service attacks against the enclosure regular expression...

8.6CVSS7AI score0.02209EPSS
Exploits5References18
Oracle linux
Oracle linux
added 2023/04/05 12:0 a.m.47 views

nodejs:16 security, bug fix, and enhancement update

nodejs 1:16.19.1-1 - Rebase to 16.19.1 Resolves: rhbz2153713 Resolves: CVE-2023-23918 CVE-2023-23919 CVE-2023-23936 CVE-2023-24807 CVE-2023-23920 Resolves: CVE-2022-25881 CVE-2022-4904 nodejs-nodemon 2.0.20-3 - Patch bundled glob-parent Resolves: CVE-2021-35065...

8.6CVSS6.8AI score0.02209EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2023/04/05 12:0 a.m.78 views

Fedora 38 : nodejs16 / nodejs18 / nodejs20 (2023-973319d5b7)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-973319d5b7 advisory. Fixes for virtual Provides/Requires of nodejs and nodejs-devel ---- Assorted fixes for v8-devel ---- Update to 19.8.1 Fix confilct with nodejs18 ---...

7.5CVSS7.1AI score0.02209EPSS
Exploits2References6
RedHat Linux
RedHat Linux
added 2023/04/04 9:57 a.m.92 views

Moderate: Red Hat Security Advisory: nodejs:16 security, bug fix, and enhancement update

An update for the nodejs:16 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.6CVSS6.9AI score0.02209EPSS
Exploits5References10
OSV
OSV
added 2023/04/04 12:0 a.m.42 views

ALSA-2023:1582 Moderate: nodejs:16 security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 16.19.1. Security Fixes: glob-parent: Regular Expression Denial of Service...

8.6CVSS8.3AI score0.02209EPSS
Exploits5References18
AlmaLinux
AlmaLinux
added 2023/04/04 12:0 a.m.56 views

Moderate: nodejs:16 security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 16.19.1. Security Fixes: glob-parent: Regular Expression Denial of Service...

8.6CVSS8AI score0.02209EPSS
Exploits5References18
ALT Linux
ALT Linux
added 2023/03/22 12:0 a.m.75 views

Security fix for the ALT Linux 10 package node version 16.19.1-alt1

16.19.1-alt1 built March 22, 2023 Andrey Cherepanov in task 316988 March 13, 2023 Vitaly Lipatov - new version 16.19.1 with rpmrb script - CVE-2023-23918: Node.js Permissions policies can be bypassed via process.mainModule High - CVE-2023-23919: Node.js OpenSSL error handling issues in nodejs...

6.9AI score0.02209EPSS
Exploits2
IBM Security Bulletins
IBM Security Bulletins
added 2023/03/15 5:24 p.m.52 views

Security Bulletin: Multiple vulnerabilities present in IBM Answer Retrieval for Watson Discovery versions 2.10 and earlier

Summary This fix upgrades to nodejs 14.21.3. Vulnerability Details CVEID:CVE-2023-23918 DESCRIPTION: Node.js could allow a remote authenticated attacker to bypass security restrictions, caused by a flaw when enable the experimental permissions option with --experimental-policy. By sending a...

7.5CVSS6.8AI score0.02209EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/03/14 12:0 a.m.37 views

SUSE SLES12 Security Update : nodejs18 (SUSE-SU-2023:0715-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0715-1 advisory. Update to NodeJS 18.14.2 LTS: - CVE-2023-23918: Fixed permissions policies that could have been bypassed via process.mainModule...

7.5CVSS6.8AI score0.02209EPSS
Exploits2References16
OSV
OSV
added 2023/03/13 9:58 a.m.7 views

SUSE-SU-2023:0715-1 Security update for nodejs18

This update for nodejs18 fixes the following issues: Update to NodeJS 18.14.2 LTS: - CVE-2023-23918: Fixed permissions policies that could have been bypassed via process.mainModule bsc1208481. - CVE-2023-23919: Fixed OpenSSL error handling issues in nodejs crypto library bsc1208483. -...

7.5CVSS6.3AI score0.02209EPSS
Exploits2References11
Rows per page
Query Builder