Lucene search
+L

20 matches found

Chainguard
Chainguard
added 2023/11/28 2:15 a.m.72 views

CVE-2023-30585 vulnerabilities

Vulnerabilities for packages: nodejs...

7.5CVSS7.6AI score0.01467EPSS
Exploits0
Wolfi
Wolfi
added 2023/11/28 2:15 a.m.33 views

CVE-2023-30585 vulnerabilities

Vulnerabilities for packages: nodejs...

7.5CVSS7.8AI score0.01467EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/08/30 12:0 a.m.36 views

SUSE SLES15 / openSUSE 15 Security Update : nodejs12 (SUSE-SU-2023:3455-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3455-1 advisory. - CVE-2023-23918: Fixed permissions policies bypass via process.mainModule bsc1208481. - CVE-2023-32002: Fixed...

9.8CVSS6.8AI score0.03906EPSS
Exploits2References22
Tenable Nessus
Tenable Nessus
added 2023/08/24 12:0 a.m.36 views

SUSE SLES15 / openSUSE 15 Security Update : nodejs14 (SUSE-SU-2023:3408-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3408-1 advisory. - CVE-2023-32002: Fixed permissions policies bypass via Module.load bsc1214150. - CVE-2023-32006: Fixed permissions...

9.8CVSS6.8AI score0.03906EPSS
Exploits2References19
Tenable Nessus
Tenable Nessus
added 2023/08/15 12:0 a.m.30 views

Oracle Linux 8 : nodejs:18 (ELSA-2023-4536)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-4536 advisory. - Rebase to 18.16.1 Resolves: rhbz2188290 rhbz2166926 Resolves: CVE-2023-30581 CVE-2023-30588 CVE-2023-30589 CVE-2023-30590 Tenable has extracted the...

7.5CVSS6.8AI score0.03906EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/08/15 12:0 a.m.35 views

Oracle Linux 8 : nodejs:16 (ELSA-2023-4537)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-4537 advisory. - Rebase to 16.20.1 Resolves: rhbz2188289 Resolves: CVE-2023-30581 CVE-2023-30588 CVE-2023-30589 CVE-2023-30590 Tenable has extracted the preceding...

7.5CVSS6.8AI score0.03906EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/08/08 12:0 a.m.32 views

Rocky Linux 8 : nodejs:16 (RLSA-2023:4537)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:4537 advisory. - The llhttp parser in the http module in Node v20.2.0 does not strictly use the CRLF sequence to delimit HTTP requests. This can lead to HTTP Request...

7.5CVSS6.9AI score0.03906EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.34 views

AlmaLinux 9 : nodejs:18 (ALSA-2023:4330)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:4330 advisory. nodejs: mainModule.proto bypass experimental policy mechanism CVE-2023-30581 nodejs: process interuption due to invalid Public Key information in x509...

7.5CVSS6.9AI score0.03906EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.32 views

Oracle Linux 9 : 18 (ELSA-2023-4330)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-4330 advisory. - Rebase to 18.16.1 Resolves: rhbz2188292 rhbz2187683 Resolves: CVE-2023-30581 CVE-2023-30588 CVE-2023-30589 CVE-2023-30590 Tenable has extracted the...

7.5CVSS6.8AI score0.03906EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.32 views

AlmaLinux 9 : nodejs (ALSA-2023:4331)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:4331 advisory. - The llhttp parser in the http module in Node v20.2.0 does not strictly use the CRLF sequence to delimit HTTP requests. This can lead to HTTP Request...

7.5CVSS6.9AI score0.03906EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2023/08/01 9:43 a.m.61 views

Security Bulletin: IBM Event Streams is affected by multiple vulnerabilities in Node.js

Summary Vulnerabilities in node.js before 18.16.1 affect the Node.js component that is used by IBM Event Streams CVE-2023-30581, CVE-2023-30589, CVE-2023-30585, CVE-2023-30590, CVE-2023-30588. These vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2023-30589 DESCRIPTION: Node....

7.5CVSS8.1AI score0.03906EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2023/07/23 12:0 a.m.32 views

Fedora: Security Advisory for nodejs16 (FEDORA-2023-608a1417d3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.03906EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/07/23 12:0 a.m.31 views

Fedora: Security Advisory for nodejs18 (FEDORA-2023-cdddce304a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.03906EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/07/21 12:0 a.m.31 views

Fedora 37 : nodejs16 (2023-61e40652be)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-61e40652be advisory. 2023-06-20, Version 16.20.1 'Gallium' LTS, @RafaelGSS This is a security release. Notable Changes The following CVEs are fixed in this release:...

7.5CVSS6.8AI score0.03906EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2023/07/18 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2023:2861-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.03906EPSS
Exploits1References13
OpenVAS
OpenVAS
added 2023/07/10 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2023-0226)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS6.8AI score0.03906EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2023/07/05 3:18 p.m.34 views

CVE-2023-30585

A vulnerability has been identified in the Node.js .msi version installation process, specifically affecting Windows users who install Node.js using the .msi installer. This vulnerability emerges during the repair operation, where the "msiexec.exe" process, running under the NT AUTHORITY\SYSTEM...

7.5CVSS7.3AI score0.01467EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/06/28 12:0 a.m.24 views

SUSE SLES12 Security Update : nodejs18 (SUSE-SU-2023:2662-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2662-1 advisory. Update to version 18.16.1: - CVE-2023-30581: Fixed mainModule.proto Bypass Experimental Policy Mechanism bsc1212574. -...

7.5CVSS6.8AI score0.03906EPSS
Exploits2References32
OSV
OSV
added 2023/06/27 11:5 a.m.6 views

SUSE-SU-2023:2655-1 Security update for nodejs16

This update for nodejs16 fixes the following issues: Update to version 16.20.1: - CVE-2023-30581: Fixed mainModule.proto Bypass Experimental Policy Mechanism bsc1212574. - CVE-2023-30585: Fixed privilege escalation via Malicious Registry Key manipulation during Node.js installer repair process...

7.5CVSS6.6AI score0.03906EPSS
Exploits1References20
OpenVAS
OpenVAS
added 2023/06/21 12:0 a.m.26 views

Node.js 16.x < 16.20.1, 18.x < 18.16.1, 20.x < 20.3.1 Multiple Vulnerabilities - Windows

Node.js is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nodejs:node.js"; ifdescription...

7.7CVSS7.6AI score0.75116EPSS
Exploits1References1
Rows per page
Query Builder