Lucene search
K

11 matches found

NVD
NVD
added 2024/09/07 4:15 p.m.26 views

CVE-2023-30583

fs.openAsBlob can bypass the experimental permission model when using the file system read restriction with the --allow-fs-read flag in Node.js 20. This flaw arises from a missing check in the fs.openAsBlob API. Please note that at the time this CVE was issued, the permission model is an...

7.5CVSS0.00722EPSS
Exploits0References2
Wolfi
Wolfi
added 2024/09/07 4:15 p.m.22 views

CVE-2023-30583 vulnerabilities

Vulnerabilities for packages: nodejs...

7.5CVSS7.8AI score0.00722EPSS
Exploits0
Chainguard
Chainguard
added 2024/09/07 4:15 p.m.205 views

CVE-2023-30583 vulnerabilities

Vulnerabilities for packages: nodejs...

7.5CVSS7.6AI score0.00722EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2024/09/07 4:15 p.m.24 views

CVE-2023-30583

fs.openAsBlob can bypass the experimental permission model when using the file system read restriction with the --allow-fs-read flag in Node.js 20. This flaw arises from a missing check in the fs.openAsBlob API. Please note that at the time this CVE was issued, the permission model is an...

7.5CVSS6.8AI score0.00722EPSS
Exploits0References2
CVE
CVE
added 2024/09/07 4:0 p.m.527 views

CVE-2023-30583

CVE-2023-30583 : In Node.js 20, the fs.openAsBlob() API can bypass the experimental permission model when the file system read restriction is enabled with --allow-fs-read, due to a missing check in fs.openAsBlob(). The description notes this as part of the experimental feature set. Remediation/fi...

7.5CVSS7.3AI score0.00722EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/07 4:0 p.m.21 views

CVE-2023-30583

fs.openAsBlob can bypass the experimental permission model when using the file system read restriction with the --allow-fs-read flag in Node.js 20. This flaw arises from a missing check in the fs.openAsBlob API. Please note that at the time this CVE was issued, the permission model is an...

6.2AI score0.00722EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/09/07 4:0 p.m.28 views

CVE-2023-30583

fs.openAsBlob can bypass the experimental permission model when using the file system read restriction with the --allow-fs-read flag in Node.js 20. This flaw arises from a missing check in the fs.openAsBlob API. Please note that at the time this CVE was issued, the permission model is an...

7.5CVSS6.5AI score0.00722EPSS
Exploits0
OSV
OSV
added 2023/10/18 1:45 p.m.2 views

BELL-CVE-2023-30583 CVE-2023-30583 does not affect BellSoft software

Bulletin has no description...

7.5CVSS5.8AI score0.00722EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2023/07/05 3:17 p.m.30 views

CVE-2023-30583

A vulnerability has been identified in Node.js version 20, where fs.openAsBlob can bypass the experimental permission model when using the file system read restriction with the --allow-fs-read flag in Node.js 20. This flaw arises from a missing check in the fs.openAsBlob API...

5.3CVSS7.1AI score0.00722EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/06/21 12:0 a.m.29 views

Node.js 16.x < 16.20.1, 18.x < 18.16.1, 20.x < 20.3.1 Multiple Vulnerabilities - Mac OS X

Node.js is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nodejs:node.js"; ifdescription...

7.7CVSS7.1AI score0.73461EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2023/06/21 12:0 a.m.26 views

Node.js 16.x < 16.20.1, 18.x < 18.16.1, 20.x < 20.3.1 Multiple Vulnerabilities - Windows

Node.js is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nodejs:node.js"; ifdescription...

7.7CVSS7.6AI score0.73461EPSS
Exploits1References1
Rows per page
Query Builder