Lucene search
K

63 matches found

OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.8 views

Fedora: Security Advisory (FEDORA-2024-8deaadd998)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.5AI score0.01155EPSS
Exploits0References4
Circl
Circl
added 2024/11/14 12:0 p.m.2 views

CVE-2024-27982

creationtimestamp| type| source ---|---|--- 2024-11-14 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-319-08 2025-03-28 21:29:14+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9479 2026-03-19 00:00:00+00:00| seen|...

6.5CVSS6.9AI score0.01155EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.6 views

Fedora 41 : llhttp / python-aiohttp (2024-8deaadd998)

The remote Fedora 41 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-8deaadd998 advisory. Update llhttp to 9.2.1, fixing CVE-2024-27982. Backport llhttp 9.2.1 support to python-aiohttp 3.9.3. Tenable has extracted the preceding description block...

6.5CVSS7AI score0.01155EPSS
Exploits0References2
Amazon
Amazon
added 2024/08/15 12:0 a.m.4 views

Medium: nodejs

Issue Overview: NOTE: https://nodejs.org/en/blog/vulnerability/april-2024-security-releases/ CVE-2024-27982 Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici cleared Authorization and Proxy-Authorization headers for fetch, but did not clear them for undici.request. This...

6.5CVSS6.9AI score0.01155EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.33 views

Amazon Linux 2023 : nodejs, nodejs-devel, nodejs-full-i18n (ALAS2023-2024-694)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-694 advisory. NOTE: https://nodejs.org/en/blog/vulnerability/april-2024-security-releases/ CVE-2024-27982 Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici cleared Authorization and Prox...

6.5CVSS6.6AI score0.01155EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.21 views

Photon OS 5.0: Nodejs PHSA-2024-5.0-0243

An update of the nodejs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-5.0-0243. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.2CVSS7.9AI score0.87211EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/22 2:45 p.m.37 views

Security Bulletin: QRadar Pulse application add on to IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. IBM has released a new version which addresses the vulnerabilities. Vulnerability Details CVEID:CVE-2024-27088 DESCRIPTION: medikoo es5-ext is vulnerable to a...

8.2CVSS6.7AI score0.87211EPSS
Exploits3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/08 9:24 a.m.53 views

Security Bulletin: Node.js vulnerabilities affect IBM Spectrum Control

Summary Node.js is vulnerable to remote attacker to obtain sensitive information, denial of service, HTTP request smuggling and allow a local authenticated attacker to gain elevated privileges on the system. These vulnerabilities affect IBM Spectrum Control. CVE-2024-27983, CVE-2024-22019,...

8.2CVSS9AI score0.87211EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.21 views

CBL Mariner 2.0 Security Update: nodejs18 / nodejs (CVE-2024-27982)

The version of nodejs18 / nodejs installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27982 advisory. - The team has identified a critical vulnerability in the http server of the most recent version of...

6.5CVSS7.1AI score0.01155EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.20 views

CVE-2024-27982 affecting package nodejs for versions less than 20.14.0-1

CVE-2024-27982 affecting package nodejs for versions less than 20.14.0-1. An upgraded version of the package is available that resolves this issue...

6.5CVSS7AI score0.01155EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/14 12:0 a.m.41 views

Security Bulletin: Multiple vulnerabilities in Node.js affects IBM Rational® Application Developer for WebSphere® Software (CVE-2024-27982, CVE-2024-27983)

Summary Node.js is used as runtime and SDK for Apache Cordova applications within IBM Rational® Application Developer for WebSphere® Software. Information about security vulnerabilities affecting Node.js has been published in a security bulletin. Vulnerability Details CVEID:CVE-2024-27982...

8.2CVSS6.9AI score0.87211EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/06/14 12:0 a.m.33 views

Rocky Linux 9 : nodejs:20 (RLSA-2024:2853)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:2853 advisory. c-ares: Out of bounds read in aresreadline CVE-2024-25629 nghttp2: CONTINUATION frames DoS CVE-2024-28182 nodejs: using the fetch function to retrieve...

8.2CVSS6.9AI score0.87211EPSS
Exploits2References11
RedHat Linux
RedHat Linux
added 2024/06/03 6:38 p.m.30 views

Important: Red Hat Security Advisory: nodejs security update

An update for nodejs is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.2CVSS7.1AI score0.87211EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/30 6:49 p.m.35 views

Security Bulletin: Multiple vulnerabilities in Node.js affect IBM Rational Developer for i RPG and COBOL + Modernization Tools, Java Edition (CVE-2024-27982, CVE-2024-27983)

Summary Node.js is used as runtime and SDK for Apache Cordova applications within IBM Rational Developer for i RPG and COBOL + Modernization Tools, Java Edition. Information about security vulnerabilities affecting Node.js has been published in a security bulletin. This bulletin identifies the...

8.2CVSS6.8AI score0.87211EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.31 views

Fedora: Security Advisory (FEDORA-2024-e28ccc9c17)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.6AI score0.87211EPSS
Exploits1References12
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.15 views

Fedora: Security Advisory (FEDORA-2024-f83b123d63)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.4AI score0.01155EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.16 views

Fedora: Security Advisory (FEDORA-2024-2f15e6e876)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.4AI score0.01155EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.20 views

Fedora: Security Advisory (FEDORA-2024-2ffe03eaa6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.6AI score0.87211EPSS
Exploits1References22
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.17 views

Fedora: Security Advisory for llhttp (FEDORA-2024-5dc487ee89)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.4AI score0.01155EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.16 views

Fedora: Security Advisory for python-aiohttp (FEDORA-2024-2f15e6e876)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.8AI score0.01155EPSS
Exploits0References2
Rows per page
Query Builder