Lucene search
K

14 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/12/20 4:10 p.m.74 views

Security Bulletin: Netcool Operations Insights 1.6.11 addresses multiple security vulnerabilities.

Summary Netcool Operations Insight v1.6.11 addresses multiple security vulnerabilities, listed in the CVEs below. Vulnerability Details CVEID:CVE-2023-34453 DESCRIPTION: snappy-java is vulnerable to a denial of service, caused by an integer overflow in the shuffle function. By sending a specially...

9.8CVSS9.4AI score0.99615EPSS
Exploits29Affected Software1
NVD
NVD
added 2023/09/12 2:15 a.m.33 views

CVE-2023-32005

A vulnerability has been identified in Node.js version 20, affecting users of the experimental permission model when the --allow-fs-read flag is used with a non- argument. This flaw arises from an inadequate permission model that fails to restrict file stats through the fs.statfs API. As a result...

5.3CVSS6.8AI score0.01191EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2023/09/12 2:15 a.m.32 views

CVE-2023-32005

A vulnerability has been identified in Node.js version 20, affecting users of the experimental permission model when the --allow-fs-read flag is used with a non- argument. This flaw arises from an inadequate permission model that fails to restrict file stats through the fs.statfs API. As a result...

5.3CVSS6.7AI score0.01191EPSS
Exploits1References2
OSV
OSV
added 2023/09/12 1:36 a.m.23 views

CVE-2023-32005

A vulnerability has been identified in Node.js version 20, affecting users of the experimental permission model when the --allow-fs-read flag is used with a non- argument. This flaw arises from an inadequate permission model that fails to restrict file stats through the fs.statfs API. As a result...

5.3CVSS6.8AI score0.01191EPSS
Exploits1References4
CVE
CVE
added 2023/09/12 1:36 a.m.100 views

CVE-2023-32005

CVE-2023-32005 affects Node.js 20 when using the experimental permission model. The issue stems from an inadequate permission model that fails to restrict file stats via fs.statfs, allowing a user with --allow-fs-read and a non-* path to retrieve stats on files they do not have read access to. Af...

5.3CVSS6.6AI score0.01191EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/12 1:36 a.m.22 views

CVE-2023-32005

A vulnerability has been identified in Node.js version 20, affecting users of the experimental permission model when the --allow-fs-read flag is used with a non- argument. This flaw arises from an inadequate permission model that fails to restrict file stats through the fs.statfs API. As a result...

6.3AI score0.01191EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/09/12 1:36 a.m.35 views

CVE-2023-32005

A vulnerability has been identified in Node.js version 20, affecting users of the experimental permission model when the --allow-fs-read flag is used with a non- argument. This flaw arises from an inadequate permission model that fails to restrict file stats through the fs.statfs API. As a result...

7.1AI score0.01191EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/08/19 12:0 a.m.59 views

Fedora 37 : nodejs16 / nodejs18 / nodejs20 (2023-18476abd7e)

The remote Fedora 37 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-18476abd7e advisory. https://nodejs.org/en/blog/vulnerability/august-2023-security-releases Security releases available Updates are now available for the v16.x, v18.x, a...

9.8CVSS7.3AI score0.01817EPSS
Exploits3References8
OpenVAS
OpenVAS
added 2023/08/17 12:0 a.m.24 views

Fedora: Security Advisory for nodejs20 (FEDORA-2023-d12a917ab4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.01817EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2023/08/16 12:0 a.m.35 views

Fedora 38 : nodejs16 / nodejs18 / nodejs20 (2023-d12a917ab4)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-d12a917ab4 advisory. https://nodejs.org/en/blog/vulnerability/august-2023-security-releases Security releases available Updates are now available for the v16.x, v18.x, a...

9.8CVSS7.3AI score0.01817EPSS
Exploits3References8
SUSE CVE
SUSE CVE
added 2023/08/11 2:13 a.m.5 views

SUSE CVE-2023-32005

A vulnerability has been identified in Node.js version 20, affecting users of the experimental permission model when the --allow-fs-read flag is used with a non- argument. This flaw arises from an inadequate permission model that fails to restrict file stats through the fs.statfs API. As a result...

3.7CVSS9.1AI score0.01191EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/08/11 12:0 a.m.264 views

Node.js 16.x < 16.20.2 / 18.x < 18.17.1 / 20.x < 20.5.1 Multiple Vulnerabilities (Wednesday August 09 2023 Security Releases).

The version of Node.js installed on the remote host is prior to 16.20.2, 18.17.1, 20.5.1. It is, therefore, affected by multiple vulnerabilities as referenced in the Wednesday August 09 2023 Security Releases advisory: - Permissions policies can be bypassed via Module.load CVE-2023-32002 -...

9.8CVSS7.1AI score0.01817EPSS
Exploits3References8
OpenVAS
OpenVAS
added 2023/08/10 12:0 a.m.23 views

Node.js 20.x < 20.5.1 Multiple Vulnerabilities - Windows

Node.js is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nodejs:node.js"; ifdescription...

8.8CVSS7.4AI score0.01817EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2023/08/10 12:0 a.m.21 views

Node.js 20.x < 20.5.1 Multiple Vulnerabilities - Mac OS X

Node.js is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nodejs:node.js"; ifdescription...

8.8CVSS7.5AI score0.01817EPSS
Exploits2References1
Rows per page
Query Builder